Introduction to COBIT
COBIT stands for “Control Objectives for Information and related Technology”, it is a framework that was developed by ISACA (Information System Audit and Control Association). It is a set of guidance material for IT governance to manage their requirements, technical issues, and business risks.
COBIT connects IT initiatives with business requirements, monitors and improves IT management practices, and ensures quality control and reliability of information systems in an organization.
The aim of COBIT is to research, develop, publicize and promote an authoritative, up-to-date, international set of generally accepted information technology control objectives for day-to-day use by business managers, IT professionals, and assurance. Managing and controlling information is at the heart of the COBIT framework and help to ensure alignment with business requirements.
COBIT defines IT activities in a generic process model within four domains:
- Plan and Organize: This domain addresses direction to solutions, Information architecture, managing IT investments, assess the risks, quality, and project.
- Acquire and Implement: This domain acquires and maintains application software and technology infrastructure, develops as well as maintains procedures and manages changes, implements desired solutions and passes them to be turned into services.
- Deliver and Support: This domain defines and manages service levels, ensures the security of the system, educates or trains, and advises users. It receives solutions and makes them usable for end users.
- Monitor and Evaluate: This domain monitors the process, assesses internal control capability, finds independent assurance, and provides independent audit.
Principle of COBIT:
- Providing service of delivering information that an organization requires.
- Undesired events will be prevented, detected, and corrected.
- Managing and controlling IT resources using a structured set of processes.
- Fulfilling client’s requirements.
For more information on COBIT, you can refer to the Difference between COBIT and ITIL article.