IT Governance implementation is not only preparing IT policy, standard, and procedure. It is a series of processes and a journey to realise IT benefits in order to be aligned with organization’s vision and mission. Starting with IT governance maturity assessment, execute recommendation, consultancy, evaluation, and improvement. Mitigation of Risk and Compliance with regulation or standard is a must for IT organization. While information has long been appreciated as a valuable and important asset, implementation of Information security can protect your business and customer.