Building Information Governance
To govern information now requires mastery of a diverse, often international, portfolio of legal rules, technology standards, business policies, and technology, all applied across increasingly complex, distributed systems and repositories. The increased scrutiny and requirements of official agencies and business partners impose new requirements for compliance documentation and transparency. This course introduces participants to a structured design approach that will enable strong, responsive and resilient information governance to be incorporated into the design and management of digital assets. 21st century information governance must navigate and embrace records management, privacy, electronic discovery, compliance, information security, corporate governance, and transparency of operations—all of these will be considered in this course.
|10th July 2017||Oxford University Department of Computer Science||0 places remaining.|
|23rd October 2017||Oxford University Department of Computer Science||0 places remaining.|
|21st May 2018||Oxford University Department of Computer Science||0 places remaining.|
The successful participant will:
- achieve an understanding and ability to explain the diverse sources of requirements that give substance to the complexity and value of information governance;
- acquire a capability to analyse these requirements and map their detailed criteria into process models and controls that govern the creation and use of digital information assets throughout their lifecycle;
- exercise the requisite skills at analysing and navigating conflicting and non-aligned rule systems in order to structure unified approaches to governing information that are defensible and capable of rapid adaptation to changing requirements;
- evaluate alternative strategies for implementing information governance objectives across various tools, including policies, procedures, contracts, application designs, and cloud-based services.
- use the knowledge gained to develop an integrated, substantive proposal for establishing or improving information governance within a defined scope of application.
This course will present a range of substantive primary materials for review and analysis, emphasising the execution of information governance across complex systems that require navigating private and public networks, cloud-based services, mobile devices, and divergent and often conflicting third-party interests. The course will survey and consider requirements from the EU, selected member states, the United Kingdom and the United States, as well as diverse international standards organisations (International Standards Organisation, Cloud Security Alliance, Dublin Core Initiative, etc.).
- Defining Information Governance in the 21st Century
- Developing Risk and Resources for Information Governance
- Identifying the Legal Rules for Governing Information
- Identifying the Technology Standards for Governing Information
- Identifying the Business Rules for Governing Information
- Building and Executing Due Diligence Programs and Requirements Analyses
- Navigating the Hot Spots in Information Governance (topics subject to change)
- Information Security
- Cloud Services
- Bring Your Own Device
- Electronic Discovery
- Social Media
- Web Page Content
- Distributed Databases
- Big Data Analytics
- Rules-based Design for Information Governance - A Structural Model
- Building and Document Compliance with Information Governance Rules
- Strategies for Automated Execution and Enforcement
- Integrating Information Governance into Corporate and IT Governance
- Building the Business Case — the Successful Economic Arguments
At the present time, no existing textbook can reliably be recommended as a foundation for the course. Students will consider the primary texts of various national laws and regulations, standards from various international organisations, and selected best practice publications and guides issued by those organizations. Due to the dynamic and volatile nature of this field, new materials are anticipated to be incorporated into the course which are not yet currently available.