ICT governance can be defined as a “framework for the leadership, organizational structures and business processes, standards and compliance to these standards, which ensure that the organization’s IT supports and enables the achievement of its strategies and objectives”.

Structure

The corporate application of ICT in social security institutions requires establishing policies and practices to carry out the wide spectrum of ICT-related activities in a consistent and systematic way. Such policies and practices are addressed by the disciplines of ICT governance and management, which aim to guide organizations (in particular, medium and large ones) to improve effectiveness and efficiency in their application of ICT.

The following guidelines are organized in three parts:

Part A, ICT Governance and Management, incorporates five sections:

A.1. ICT Governance

A.2. ICT Management

A.3. ICT Investment and Value Management

A.4. ICT Service Delivery

A.5. Data and Information Management

Part B, Key Technologies, incorporates three sections:

B.1. Interoperability

The growing extent of ICT application globally has motivated the development of standards and frameworks, notably by the International Organization for Standardization (ISO), Control Objectives for Information and Related Technology (COBIT®), IT Infrastructure Library® (ITIL®), Data Management International (DAMA), Organization for the Advancement of Structured Information Standards (OASIS), World Wide Web Consortium (W3C), Object Management Group (OMG), Dublin Core Metadata Initiative and Capability Maturity Model Integrated (CMM/CMMI).

There are three main aspects to corporate use of ICT) in social security institutions:

The use of information and communication technology (ICT) in social security institutions represents a global trend. As institutions turn to ICT, the goal is the development of solutions that enable them to accomplish their mission, providing high-quality services, satisfying stakeholders and improving efficiency of key processes. Moreover, the challenges resulting from social security’s permanent evolution require a more intensive and sophisticated use of technology in the social security domain.

The ISSA Guidelines for Social Security Administration were prepared by the ISSA General Secretariat with the ISSA technical commissions.

The management ensures the integrity of existing ICT infrastructure and averts any threat of system failure. The overall goal is to ensure the high availability of the social security services.

The management establishes a standard system of policies and procedures for the ex-post evaluation of new investments in ICT, to ensure delivery of promised benefits, services and improvements with respect to project goals, as contained and justified in the project proposal.

Investments in ICT respond to the short- and medium-term needs of the institution and are always aligned with its strategic plan. The management establishes a standard system of policies and procedures to evaluate and decide on proposals for investments in ICT infrastructure, to enhance accountability, transparency, predictability, participation and dynamism.