Effectively managing an IT organization requires a solid foundation of governance and control over IT resources. Governance guides the decision rights, accountability, and behaviors of an organization. This is controlled through a series of processes and procedures that identify who can make decisions, what decisions can be made, how decisions are made, how investments are managed, and how results are measured. This section covers the critical issues and best practices in governing and controlling IT resources. Key processes like project management and quality management ensure that investments made in IT deliver on their promised value. This section is organized according to the C
T framework and covers key controls identified in the Planning and Organization Domain (Exhibit 1). C
T groups IT processes into four major domains.