International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) published SO/IEC 38500 which is an international standard for Corporate governance of information technology.
ISO/IEC 38500 provides a framework for effective governance of IT to assist those at the highest level of organizations to understand and fulfill their legal, regulatory, and ethical obligations in respect of their organizations’ use of IT.
The SO/IEC 38500 standard is heavily based on the AS 8015-2005 Australian Standard for Corporate Governance of Information and Communication Technology.
It is applicable to organizations of all sizes, including public and private companies, government entities, and not-for-profit organizations. This standard provides guiding principles for directors of organizations on the effective, efficient, and acceptable use of Information Technology (IT) within their organizations.