In Brief
Australian enterprises will spend an estimated A$172 billion on technology in 2026. Most of that capital flows through governance frameworks designed for procurement, not investment. The distinction matters. Procurement governance asks whether you bought the right product at the right price. Investment governance asks whether the capital deployed generated returns commensurate with the risk absorbed. CFOs who apply financial rigour to technology portfolios will capture value that operational governance cannot see.
The Governance Gap
Gartner’s September 2025 regional forecast projects Australian IT spending at approximately A$172 billion in 2026, up from A$158 billion the prior year. For most enterprises, technology now sits among the largest discretionary spending categories alongside property and workforce development.
of revenue consumed by technology spending in large Australian enterprises, governed through procurement frameworks designed for commodity purchasing
ITCSAU portfolio review of 14 enterprise clients across financial services, resources, and government, 2025
Governance has not kept pace with the scale or strategic nature of this spending. In many enterprises, technology investment still flows through procurement processes optimised for vendor selection and contract negotiation. These processes answer a narrow question: did we buy the right product at the right price? They leave unanswered the question a board actually needs resolved: did the capital we deployed create value commensurate with the risk it absorbed?
When an ASX-listed financial services firm reviewed its annual technology spend of several hundred million dollars, it found that well over half the budget was classified as operational expenditure in projects that were, by any strategic measure, capability investments. The classification had been set by procurement teams following accounting guidance, not by finance leaders assessing capital strategy. The board had approved each programme individually but had never seen the portfolio in aggregate. No one had asked what the combined return was, because no governance mechanism required the question.
That pattern is common. In our experience advising enterprise clients across financial services, resources, and government, it is closer to the default than the exception. Technology spending grows, technology capability may or may not grow with it, and boards often lack the instruments to tell the difference.
Classification and the Accounting Blind Spot
Australian accounting standards permit significant discretion in how technology spending is classified between capital and operating expenditure. In practice, this discretion produces two distortions. Capitalised technology spending inflates the balance sheet with assets that may depreciate faster than the accounting schedule recognises. Expensed technology investment suppresses operating margins in the period of spending while hiding the capability asset being built.
Technology Spending: How It Is Governed vs How It Should Be
Procurement Governance
- Evaluates individual vendor proposals
- Optimises price and contract terms
- Measures compliance with specifications
- No portfolio-level return assessment
- No post-implementation outcome tracking
Investment Governance
- Evaluates capital allocation across portfolio
- Optimises risk-adjusted returns
- Measures value creation against hypothesis
- Active portfolio rebalancing
- Quarterly outcome attribution reporting
CFOs should require a third lens alongside the accounting classification: an investment classification that sorts technology spending by strategic intent. Foundational infrastructure investments sustain current operations, carry low risk, and justify standard procurement oversight. Capability investments build competitive advantage, carry medium risk with uncertain timing, and require investment committee governance with outcome tracking. Speculative investments explore new opportunities, carry high risk, and warrant venture-style staged funding with explicit kill criteria.
The proportions vary by organisation, but a typical enterprise allocates roughly 50 to 60 percent of technology spending to foundational work, 25 to 35 percent to capability building, and 10 to 20 percent to speculative initiatives. Applying a single governance framework across all three guarantees that at least two categories are misgoverned.
The Return Attribution Problem
Financial investments are evaluated against stated return expectations. Technology investments, in most organisations, are not. A capital expenditure approval paper for a cloud migration will specify costs with precision and benefits with optimism. Twelve months later, the costs are tracked to the cent. The benefits remain unmeasured.
Across our portfolio reviews, many enterprises cannot attribute specific revenue or margin outcomes to technology investments made in the past three years. The capital was deployed, the returns were assumed, and the governance framework never required anyone to confirm whether the assumption held.
The CFO’s office applies rigorous post-investment review to property acquisitions, M&A transactions, and capital equipment programmes. Technology investments of comparable scale receive no equivalent scrutiny, and the absence is hard to justify on any ground other than institutional habit. The discipline of stating an investment hypothesis, defining measurable outcomes, and reporting against those outcomes at regular intervals is standard corporate finance practice.
The regulatory environment reinforces this. APRA CPS 234 requires regulated entities to demonstrate that information security capability is commensurate with threats. ASIC director duties extend to oversight of material capital deployments. The SOCI Act imposes risk management obligations that require demonstrable investment in protective capability. A regulator asking whether your cyber investment is adequate cannot be answered if your organisation cannot measure what that investment produced.
Portfolio Governance
Most technology governance evaluates individual projects in isolation. Each has its own business case, its own approval, its own post-implementation review. No mechanism exists to evaluate whether the aggregate portfolio is balanced or whether it generates adequate returns relative to the capital consumed.
Technology Portfolio Risk Categories
| Category | Risk Profile | Return Expectation | Governance Response |
|---|---|---|---|
| Foundational (roughly half of budget) | Low, predictable | Cost avoidance, operational continuity | Standard procurement governance |
| Capability (about a quarter to a third) | Medium, uncertain timing | Revenue enablement, competitive advantage | Investment committee with outcome tracking |
| Speculative (typically under 20%) | High, uncertain return | Option value, strategic positioning | Venture-style staged funding with kill criteria |
ITCSAU portfolio review of 14 enterprise clients, 2025
Portfolio governance borrows from financial portfolio management: diversification to avoid over-concentration in a single risk category, active rebalancing to redirect capital from underperforming investments, and retirement discipline to terminate programmes that have failed to meet return thresholds rather than allowing them to absorb capital indefinitely through maintenance obligations.
CIOs manage technology programmes. CFOs manage capital. When technology spending reaches 5 to 12 percent of revenue, the portfolio perspective becomes the more consequential discipline.
A composite pattern drawn from our portfolio reviews across resources, infrastructure, and professional services clients illustrates the gap. A mid-tier resources company had more than 20 active technology programmes, each individually approved by the CIO. When the CFO reviewed them as a portfolio for the first time, most were foundational maintenance dressed up as capability investment to secure larger budgets. Only a small number were genuinely strategic, and several had no measurable return hypothesis at all. The individual approval process had worked exactly as designed. The portfolio it produced had not, because no one had been asked to govern the aggregate.
What CFOs Should Do Next
The transition from procurement governance to investment governance requires three structural changes.
Establish a technology investment committee that mirrors the capital allocation committee used for property and M&A. Include the CFO, CIO, and business unit leaders with financial accountability for technology-enabled outcomes. Review the technology portfolio quarterly against return hypotheses, not against budget compliance. Grant this committee the authority to redirect capital from underperforming programmes, not merely the authority to approve new spending.
Require investment hypotheses for all technology spending above the materiality threshold. The hypothesis must state what return is expected, when it will materialise, and how it will be measured. In our experience with enterprise portfolios, this single practice, applied consistently, improves the quality of investment decisions more than any framework or governance structure because it forces intellectual honesty about expected outcomes before capital is committed. Programmes that cannot articulate a return hypothesis should be classified as operational expenditure and governed accordingly.
Implement post-investment review as standard practice. Every technology investment above the materiality threshold should receive a formal review twelve months after deployment, comparing actual outcomes against the stated hypothesis. The review should identify the factors that drove variance between expected and actual returns, and those findings should feed directly into the next investment cycle’s approval criteria. The CFO’s office already does this for property acquisitions and M&A transactions. Extending the practice to technology is overdue. Organisations that build this feedback loop tend to improve capital allocation quality over subsequent planning cycles as the institutional knowledge accumulates.
The governance gap is real and measurable. Closing it requires no new technology and no new processes. It requires extending the capital discipline that CFOs already apply to property and M&A into the one spending category that has outgrown the governance designed to contain it.
Technology spending has outgrown procurement governance. The CFO who applies investment discipline to the technology portfolio will see the returns that operational governance was never designed to measure.
Questions for Leadership
What percentage of our technology spending is capitalised versus expensed, and does the ratio reflect our actual investment profile?
Misclassification distorts balance sheet strength and operating margins. Boards may be making decisions on distorted numbers.
Can we attribute revenue outcomes to specific technology investments made in the past three years?
Without outcome attribution, technology spending becomes an act of faith. Absence of returns data should inform allocation.
What is the expected return on our three largest technology programmes, and who is accountable for delivering it?
Programmes without named financial sponsors operate outside normal capital discipline, creating unmonitored exposure.
How do we evaluate build-versus-buy decisions for strategic technology capabilities?
Total cost of ownership for built solutions is systematically underestimated. Maintenance, talent, and technical debt extend well beyond initial capital.
What governance framework applies when technology investment decisions cross the threshold from operational to strategic?
Operational and strategic technology investments require different governance. Procurement governance applied to strategic investments suppresses essential risk assessment.
The Strategic Imperative
Technology investment governance is the CFO's emerging accountability challenge. The capital at stake is material, yet many governance settings remain procurement-led and leave returns weakly tracked. The organisations that embed financial rigour into technology portfolio management will build capability advantages that competitors cannot replicate through operational efficiency alone.
Frequently Asked Questions
What is the difference between technology procurement governance and technology investment governance?
Procurement governance evaluates whether a specific purchase meets requirements at an acceptable price. Investment governance evaluates whether deployed capital generates returns commensurate with risk across a portfolio of technology initiatives. The distinction matters because procurement governance optimises individual transactions while investment governance optimises portfolio outcomes. Most Australian enterprises apply procurement governance to technology spending regardless of scale or strategic significance.
Why should the CFO be involved in technology investment decisions?
Technology spending in large Australian enterprises now represents 5 to 12 percent of revenue, making it a material line item that directly affects capital efficiency, operating margins, and balance sheet composition. The CFO brings financial rigour that CIO-led governance typically lacks: portfolio-level return analysis, risk-adjusted capital allocation, and outcome attribution against investment theses. Without CFO involvement, technology spending operates outside the capital discipline applied to every other major investment category.
How should boards evaluate technology return on investment?
Traditional ROI metrics are necessary but insufficient for technology investments because they typically capture cost reduction but miss revenue enablement, risk mitigation, and capability building. Boards should require technology investment proposals to state explicit hypotheses about value creation, define measurable outcomes with timeframes, and report against those outcomes at regular intervals. The discipline of stating and testing investment hypotheses is more valuable than the specific metric chosen.
What is technology portfolio management and why does it matter?
Technology portfolio management applies the same principles used in financial portfolio management to an organisation's technology investments. This means balancing risk across a portfolio rather than evaluating each investment in isolation, diversifying between foundational infrastructure and speculative capability investments, and actively retiring underperforming investments rather than allowing them to consume capital indefinitely through maintenance and support costs.
What Australian regulatory frameworks affect technology investment governance?
APRA CPS 234 requires regulated entities to maintain information security capability commensurate with threats. The SOCI Act imposes risk management obligations on critical infrastructure operators. ASIC director duties extend to oversight of material capital deployments including technology. The Privacy Act 1988 creates liability for data breaches that may result from underinvestment in security. Together, these frameworks create a regulatory floor for technology investment that boards must acknowledge in their governance processes.