The importance of responsibility in the IT industry has grown significantly, as it helps us build more sustainable, safer, and more efficient businesses.
Graniti's HeKa (Mental Growth) network for staff competence development is committed to promoting responsible IT on a practical level. In late 2024, we published a comprehensive support package for our experts, which provides concrete tools, operating models and background information for integrating responsibility into the everyday implementation of IT projects.
For us, responsible project management means that projects are planned and implemented in accordance with legal, ethical, economic, social and environmental requirements. Today, responsibility is driven by various regulatory areas, especially information security, environmental protection, corporate responsibility reporting and due diligence obligations, which, for example, ensure the responsibility of supply chains. These regulations provide clear guidelines for ensuring responsibility, helping companies develop risk management, training, operational resilience, documentation and stakeholder cooperation.
At the beginning of the year, the HeKa network delved into responsible IT project management, especially from a regulatory perspective. Three significant pieces of legislation – DORA (Digital Operational Resilience Act), NIS2 (Network and Information Security) Directive and Data Act – were at the centre of the discussion and we examined them. Their impact on project management is significant:
- DORA strengthens the requirements for digital capability and cyber resilience.
- NIS2 expand information security obligations and the division of responsibilities within organizations.
- Data Act brings new demands on data management and its fair distribution.
Understanding these regulations becomes a part of our experts' work and the everyday life of IT projects. At Graniitti, we ensure that our experts are able to utilize this knowledge in customer projects and thus produce added value for our customers.
