how to establish IT outsourcing governance

First, organizations should establish Authority, then Rules, and then the Process to implement the rules. Authority assigns who gets licenses and who does not, rules define how to use licenses, and process defines what happens for those who follow the rules, and what happens for those who do not.  Rules and processes require different degrees of control, performance, security, and scalability. This is where on premise vs off premise, private cloud vs hybrid or public cloud decisions and service provider benchmark are requested by our clients.