What is CobiT®?
Answer: CobiT® (Control Objectives for Information and related Technology) is designed to be an information technology governance (IT Governance) aid to management in their understanding and managing of the risks and benefits associated with information and related technology. It is intended that CobiT® provide clear policy and good practice for IT Governance throughout the organization.
CobiT® (Control Objectives for Information and related Technology) is designed to be an information technology governance (IT Governance) aid to management in their understanding and managing of the risks and benefits associated with information and related technology. It is intended that CobiT® provide clear policy and good practice for IT Governance throughout the organization..jpg)
With IT often being critical to the success and survival of an entity, it is essential that the use of IT is effectively managed. CobiT® is designed to fit in between the overall business control models (e.g. COSO and CoCo) and the various IT focused models that include best practice guidelines, baseline controls and specific industry standards (e.g. ISO 9000 TickIT scheme, ISO 7498, ITSEC Common Criteria, etc.).
CobiT® creates the link between the business objectives of an entity and the specific IT and IT management tasks via statements about the Control Objectives. It classifies IT resources into 3 levels of effort: domains, processes and tasks. Domains are groups of IT processes that are in line with the management cycle or life cycle applicable to IT processes.
CobiT® is a tool to assist management with better IT Governance so that the information that an entity needs to achieve its objectives can be managed by the four broad domains:
Planning & Organization
Acquisition and Implementation
Delivery and Support
Monitoring