Despite big data being an increasing area of focus, just 22 per cent of Australian and New Zealand IT professionals surveyed in ISACA\u2019s 2013 IT Risk\/Reward Barometer are confident their enterprise has a policy regarding how it manages big data. Instead, almost two-thirds (61 per cent) of respondents said their company has no policy around big data \u2013 and a further 17 per cent of Australasian IT professionals were unsure.Furthermore, just 5 per cent of IT professionals say their enterprise is very prepared to ensure effective governance and privacy of big data. The majority, 45 per cent, believe their organisation is \u201cadequately prepared\u201d and one-quarter (25 per cent) said they are \u201cnot prepared at all\u201d. Yet, information is currency and enterprises must not only protect and manage it, but also use it to drive business value.Conducted by ISACA, a global association of 110,000 IT security, assurance, governance and risk professionals, the IT Risk\/Reward Barometer asked 2,013 IT professionals about the risks and rewards of key trends, including big data. Big data refers to the exponentially growing bytes of information that are created and collected in today\u2019s digital world, often with datasets so large they require specialist software tools to capture, store, manage and analyse the data.\u201cWhile there has been an explosion in the data that organisations collect, the processes to manage, store and ensure the security of such information haven\u2019t been as quick to keep up,\u201d said Jo Stewart-Rattray, CISA, CISM, CGEIT, CRISC, FACS CP, director of information security and IT assurance at BRM Holdich and International Director of ISACA.\u201cAustralian and New Zealand IT professionals need to ask the tough questions to make certain their enterprises are taking the necessary measures to ensure that governance issues and privacy related concerns are properly addressed, and their systems are as secure as possible.\u201dWhen asked what the biggest challenge their enterprise is facing with regards to big data, the most-cited reason from Australian and New Zealand respondents was a lack of analytics capabilities or skills (28 per cent). The management and storage of large volumes of data came second, highlighted by 22 per cent of respondents. Compliance requirements were noted by a further 14 per cent of IT professionals.To help enterprises meet these challenges, ISACA has released a new guide based on the COBIT 5 business framework, which helps enterprises govern and manage their information\u2014COBIT 5: Enabling Information.\u201cCompanies in all industries and all geographies are struggling with massive volumes of data and increasingly complex compliance requirements,\u201d said Steven De Haes, chair of the publication\u2019s development team. \u201cWhen governance structures and processes are in place, enterprises are much more equipped to handle these challenges.\u201cAt many enterprises, information is spread across multiple isolated silos, repeated in redundant copies scattered throughout the company, and underutilised,\u201d De Haes continued. \u201cISACA\u2019s goal is to help companies simplify information governance so that they are not only able to handle the information pouring in from a vast number of channels, but also derive value from it.\u201dCOBIT 5: Enabling Information also helps enterprises deal with three key aspects of big data: fraud detection, IT predictive analytics and marketing situational awareness. It aims to provide readers with three key benefits:1. A comprehensive information model that includes all aspects of information, including stakeholders, goals and good practices.2. Guidance on how to use COBIT 5 to address common information governance issues, such as Big Data and privacy concerns.3. A deep understanding of why information needs to be governed and managed, along with clear guidance on how to accomplish that.COBIT 5: Enabling Information can be purchased from www.isaca.org\/enablinginformation. The COBIT 5 framework can be downloaded free of charge at www.isaca.org\/cobit.