Download to read offline
Uploaded byAi Lun Wu
COBIT
COBIT is a framework developed by ISACA for IT governance and management, designed to bridge the gap between technical issues, business risks, and control requirements. It provides a structure for ensuring quality, control, and reliability of information systems across any organization. COBIT includes elements such as process descriptions, control objectives, and management guidelines, focusing on stakeholder needs while maintaining a holistic approach to governance and management.
More Related Content
![[DSC Europe 25] Jovan Bogicevic - Legacy to AI-Driven Defense: Transforming D...](https://cdn.slidesharecdn.com/ss_thumbnails/rsarluadt563hntyfc8q-3-251211083849-3e7bc4c0-thumbnail.jpg?width=640&height=640&fit=bounds)
![[DSC Europe 25] Debmalya Biswas - Agentification: the art of transforming man...](https://cdn.slidesharecdn.com/ss_thumbnails/r5azlggvtqiaiiusrqdr-4-251212103249-5a12c89b-thumbnail.jpg?width=640&height=640&fit=bounds)
![[DSC Europe 25] Dunja Adzic Jovanovic - AI and Cybersecurity: Defending Data ...](https://cdn.slidesharecdn.com/ss_thumbnails/o1zylpbhrtwnixxq2xj8-7-251211083048-185086f6-thumbnail.jpg?width=640&height=640&fit=bounds)
![[DSC Europe 25] Danica Soc - The Science Behind Marketing: Experimentation me...](https://cdn.slidesharecdn.com/ss_thumbnails/c0nofsggs9gw5ucmallr-3-251216103155-56bd64d1-thumbnail.jpg?width=640&height=640&fit=bounds)
![[DSC Europe 25] Branko Urosevic -Rethinking Financial Talent: Integrating Cod...](https://cdn.slidesharecdn.com/ss_thumbnails/8jjrus8ttko6qj64f58f-3-251212103250-642c6374-thumbnail.jpg?width=640&height=640&fit=bounds)
![[DSC Europe 25] Uros Pesic - The Reality of AI in Marketing.pdf](https://cdn.slidesharecdn.com/ss_thumbnails/rtkodnmtycovsllvzsyn-9-251215095918-b0c6bfe3-thumbnail.jpg?width=640&height=640&fit=bounds)
![[DSC Europe 25] Dusan Nesic - Securing Tomorrow’s Infrastructure: Why Cyber-P...](https://cdn.slidesharecdn.com/ss_thumbnails/qikbszfftyowjm2q6duw-1-251211083848-8f2ead6b-thumbnail.jpg?width=640&height=640&fit=bounds)
COBIT
- 1. Control Objectives for Informationand Related Technology
- 2. What is COBIT? ●It is a framework created by the ISACA (Information Systems Audit and Control Association) for IT governance and management. It was designed to be a supportive tool for managers—and allows bridging the crucial gap between technical issues, business risks, and control requirements. COBIT is a thoroughly recognized guideline that can be applied to any organization in any industry. Overall, COBIT ensures quality, control, and reliability of information systems in organization, which is also the most important aspect of every modern business. (Control Objectives for Information and Related Technologies)
- 3. ● It wasfounded in 1969 ● With an aim to provide thought and leadership and guidance on directing and controlling the enterprises information technology, ● it has over 85,000 members in about 140 countries. ● ISACA spreads knowledge of governance control security assurance it is responsible for developing COBIT 5. ● Assisting enterprise leaders and board of directors in the governance responsibility by providing original research and case studies What is ISACA? Information Systems Audit and Control Association
- 4. 7 key Criteria 1.Effectiveness- the information must be relevant and timely 2. Efficiency- the information mostly produced in a cost effective manner 3. Confidentiality - sensitive information must be protected from unauthorized disclosure 4. Integrity- the information must be accurate, complete and valid 5. Availability- the information must be available whenever needed. 6. Compliance- controls must ensure compliance with internal policies and with external legal regulatory requirements 7. Reliability- management must have access to appropriate information needed to conduct daily activities.
- 5. 1. Plan andOrganize (PO)- designing and managing an organization’s information systems. 2. Acquire and Implement (AI) - processes for obtaining and installing technology solutions. 3. Deliver and Support(DS) - critical processes for effectively and efficiently operating information systems and providing management needs to run an organization 4. Monitor and Evaluate(ME) - assessing the operation of an organization’s information systems COBIT 4 basic Domains
- 9. COBIT allows: 1. Managementto control benchmark security and control practices of IT systems 2. Users to be assured that adequate IT security and control exists 3. Auditors to substantiate their internal control opinions and to advise security and control manners
- 10. The various componentsof COBIT include: ● Framework – IT helps organizing the objectives of IT governance and bringing in the best practices in IT processes and domains, while linking business requirements. ● Process Descriptions – It is a reference model and also acts as a common language for every individual in the organization. The process descriptions include planning, building, running, and monitoring of all IT processes. ● Control Objectives – This provides a complete list of requirements that has been considered by the management for effective IT business control. ● Maturity Models – Accesses the maturity and the capability of every process while addressing the gaps. ● Management Guidelines – Helps in better assigning responsibilities, measuring performances, agreeing on common objectives and illustrating better interrelationships with every other process.
- 11. COBIT allows: 1. Managementto control benchmark security and control practices of IT systems 2. Users to be assured that adequate IT security and control exists 3. Auditors to substantiate their internal control opinions and to advise security and control manners The guiding principles of COBIT 5.0 are: 1. Meeting the needs of stakeholders 2. Covering the whole enterprise from end to end 3. Application of a single integrated framework 4. Ensuring a holistic approach to business decision making 5. Separating the governance from the management
- 13. REFERENCE 1. Romney &Steinbart. Accounting Information Systems. Pearson Education Limited. England. (2012). 2. https://www.simplilearn.com/what- is-cobit-significance-and-framework- rar309-article
Editor's Notes
- #3 In other words, COBIT presents a comprehensive view of the controls necessary for systems reliability. Cobit provides comprehensive framework that assists enterprises in achieving their objectives for the governance and management of the enterprise IT system Simply stated it helps enterprises to create optimal value from IT by maintaining a balance between realizing benefits and optimizing risk levels and resources use COBIT is generic and useful for enterprises of all sizes, wwhether commercial, non-profit or in the public sector
- #7 indicates that effective operation, control and governance of an information system is an ongoing process. management develops plans to organize information resources to provide the information it needs. It then authorizes and oversees efforts to acquire or build internally the desired functionality. Management then performs activities to ensure that the resulting actually delivers the desired information. finally , there is na need for constant monitoring and evaluation of performance against the established criteria.
- #11 COBIT is being used by all organizations whose primary responsibilities happen to be business processes and related technologies—all organizations and business that depend on technology for reliable and relevant information. COBIT is used by both government and private sector organizations, because it helps in increasing the sensibility of IT processes.
- #12 COBIT 5.0 addressed all the criticisms in a sustainable manner. It now encourages all organizations to govern and manage information in the most holistic and integrated manner.