Importance of the fifth point, ‘Meet information requirements of management’
A mission statement is very important to an organization as it acknowledges a firm’s stakeholders, helps a firm to present itself favorably before its stakeholders, and helps in forming the foundation of all company objectives. The role of the CIO is to create an IT mission statement that is used to clarify the purpose of information technology organization. From Table 3.1, the fifth point to consider in a mission statement is meeting the information requirements of the management. It is important to meet the information requirements of the management because information and the knowledge related to it is a critical asset that helps in organizational function.
Information requires the full attention of the management and board members, and as such, it should be incorporated into the corporate mission statement of a company. Mission statements are communication tools for portraying the image and uniqueness of an organization. Mission statements that incorporate the fifth point, which is meeting information requirements of the management clarifies where the CIO and the company management stands inadequately protecting an organization’s information irrespective of how it is handled or processed.
Including this point also ensures that the CIO and the company management is determined in protecting the organization’s information and do all they can to achieve the information goals of the organization. It also ensures that the mission statement insignificant and unambiguous and this creates value to a firm. Including the point acts as a foundation for different management applications and ensures efficiency and effectiveness in resource allocation. In addition, considering the information requirements of the management in the mission statement helps in providing a description of the type of information that the company uses or plan to employ. This then directs the company stakeholder towards the proper use of information (Rarick, and 1995).
Three (3) points to be rolled out in the first phase
The new strategy will be addressed in a three-phase rollout plan. In the first phase of the rollout plan, various points need to be considered, including linking the mission with existing corporate mission, make the mission measurable and ensuring the mission considers long term objectives.
While linking the mission with the existing corporate mission, it is important to ensure that the IT mission does not contradict the corporate mission. The IT mission should be in line with the corporate mission to ensure the same foundation of organizational goals is met. The mission should also specify what role it would play in achieving the corporate mission. Aligning the IT mission with corporate mission is not enough. Specifying how the IT mission is going to aid in the accomplishment of the corporate mission is equally important. The third point to consider while linking the mission with the corporate mission is considering the customer reference since IT is also a driver of customer value (Rajasekar, 2013).
The next point to be rolled out in the first phase is making the mission measurable. This can be done by ensuring that there are means to measure progress. Every mission should be achievable and so having measures to assess what has been achieved is critical. There should also be means of measuring the efficiency of the mission. Another point to consider in making the mission measurable is to acknowledge employees who embody what the mission stands for. This goes a long way in reinforcing a mission and providing incentives to ensure that the mission is followed.
The third point to be rolled out in the first phase is ensuring the mission considers long term objectives. In order to consider the long term goals of the organization, the strategy should be flexible. In addition, it should be able to accommodate new opportunities and challenges. The mission should also remain stable over time (Stallings, 2009).
Additional point the CIO should include to address the topic of security
In order to ensure that the topic of security is addressed in the mission statement, the CIO should pay more attention to risk management of information. For instance, the CIO could include a statement or phrase that shows concern for the safety and security of the company information. The statement should be brief, specific, and in line with the corporate mission. It should also show concern for the information risks and ways of addressing them. Since security is a key challenge when it comes to information technology, the CIO should ensure the company executive and stakeholders that security is taken care of.
Addressing security is one way of meeting the information requirements of management. This can be done through IT risk management. There should be proper controls set in place for all IT infrastructures. Risk management of information will ensure security, confidentiality, accountability and responsibility when it comes to organizational information. By paying attention to risk management of information, the CIO will be able to ensure the security of the organization’s information, adequately address information risk and management, and engage the company’s board of directors and executives in educating employees about information management and strengthening IT controls. In addition, the company management will feel comfortable while using and sharing company information within the organization. There would be no risk of information loss or even and employees would be more willing to talk about information risks (David, 1997).