This document discusses various aspects of IT governance including: 1. The role of auditing in improving IT governance implementation and ensuring compliance. Information security governance should be integrated with IT governance with a focus on integrity, continuity of services, and protecting information assets. 2. The importance of enterprise architecture in documenting an organization's IT assets in a structured way to facilitate management, planning, and understanding of IT investments. 3. Key IT roles and responsibilities including systems analysis, security architecture, application programming, systems programming, and network management. The importance of segregating duties within information systems. 4. Risk management concepts including risk definitions, business objectives, types of risks, and estimating annual losses based on asset