This sample questionnaire can be used to assess the processes associated with an organization’s IT strategy.
Sample questions include: Is a documented IT strategy/road map in place that defines core future IT initiatives and the associated link to business objectives/requirements? Are meetings between IT and key business departments held at least quarterly to understand any system requirements and/or issues being faced, review ongoing IT projects, and allow for alignment of IT activity to business requirements? Is evidence of the meetings retained? Have roles and responsibilities been formally defined for IT risk, security and compliance within documented job specifications?