At the IT level, you should have a development standards group, and SOA governance should be established and reviewed in the same way as development standards (how your company reviews code, naming and testing standards, etc.) are established and reviewed. SOA governance should be beholden to the same rigor that development standards are subject to within an organization.
At the business level, a best practice for SOA governance is to establish a set of enterprise-level business processes that can be service-enabled. That way, SOA can drive not only adherence to standards, but the efficiencies of re-use as well.
More about SOA
This was first published in June 2008