cisa-d2-governance-management-it-resource-management

IT Resource Management

isaca-cisa · framework · Production-ready

Drawn fromCISA Review Manual · ISACA peer-reviewed case sets·Reviewed May 4, 2026

How this was built ▾

Every cubelet runs through five agent passes before publishing. Each stage's output is recorded so we can trace how a claim got here.

01 · RESEARCHSource synthesisClaude Haiku
02 · WRITERSix-face draftingClaude Sonnet
03 · EDITORCoherence + clarity passClaude Sonnet
04 · QAQuality gate scoringClaude Opus
05 · PUBLISHERCatalog + graph commitClaude Haiku

This runcourse-factory-pipeline-v1

1

Face 1 of 6 · WHAT

What is IT Resource Management

IT Resource Management (ITRM) is the governance discipline that ensures an organization's IT resources — people, infrastructure, applications, data, and financial capital — are acquired, allocated, utilized, and retired in ways that maximize business value, control cost, maintain compliance, and align with strategic objectives. Within the ISACA CISA framework (Domain 2: Governance and Management of IT), ITRM is the operating model through which IT governance decisions translate into concrete resource decisions. It spans four pillars: (1) Procurement & Vendor Management — sourcing resources at appropriate cost and quality; (2) Asset Lifecycle Management — tracking resources from acquisition through disposal; (3) Financial Management & Cost Optimization — budgeting, cost allocation, TCO analysis, and ROI measurement; and (4) Human Resource Development — acquiring, developing, and retaining IT talent. ITRM is not the same as IT Project Management, which consumes resources for time-bound initiatives; ITRM governs the continuous portfolio of all IT resources that supports both ongoing operations and strategic change. ITRM is also not IT Asset Management alone, which focuses on physical inventory and lifecycle; ITRM governs the full resource portfolio, including personnel, financial capital, and services.

Where it stops · what it isn't

—ITRM IS: The ongoing governance of all IT resource types — people, infrastructure, software, services, and budget — to maximize value and control risk.
—ITRM IS NOT: IT Project Management. Project management consumes resources; ITRM governs the pool from which projects draw.
—ITRM IS NOT: IT Asset Management alone. Asset management inventories physical assets; ITRM governs the full resource portfolio including personnel, financial capital, and services.
—ITRM IS NOT: Cost-cutting. The goal is value maximization and strategic alignment, not expense reduction.
—ITRM IS NOT: Procurement. Procurement is one sub-component; ITRM governs a resource across its entire lifecycle post-acquisition.
—ITRM DOES NOT replace Enterprise Resource Planning (ERP) systems. ERP is a tool that supports ITRM, not the governance discipline itself.
—ITRM scope ends where Enterprise Architecture begins: ITRM allocates resources to capabilities; architecture defines what capabilities are needed.

Connected concepts in the graph

Every cubelet sits in a knowledge graph. Here's what this one connects to.

PART OF

CISA Domain 2: Governance and Management of IT

REQUIRES

IT Vendor ManagementIT Governance Frameworks (COBIT 2019, ITIL v4, ISO/IEC 38500)

ENABLES

IT Strategy and Portfolio ManagementEnterprise Risk Management (IT Risk dimension)Regulatory Compliance (SOX, HIPAA, GDPR, PCI-DSS)

RELATED TO

IT Performance ManagementIT Financial Management (FinOps / IT Business Management)

CONSTRAINS

IT Project Execution and Delivery

Practice this judgment ↗

Adaptive, ~8 min

Sit in the practitioner's chair ↗

Live simulator

06 · APPLYSign up to enter the judgment simulator →

Watch your judgment grow on this concept

Create a free account to unlock all 6 faces, the judgment simulator, and a mastery score that updates with every attempt.