ISACA.org - Informations Systems Audit and Control Association
COBIT - Control OBjectives for Information and related Technologies
COBIT is a set of auditable requirements derived from relevant standards of best practice across the IT Industry and elsewhere. COBIT is not a standard in the same context as ISO20000- IT Service Management and ISO17799 - IT Security Management both of which an IT Department may be certified against. It is however a comprehensive set of requirements with associated control objectives that IT Departments can use to guide their overall direction into a best practice state.
COBIT is structured in four DOMAINS, Planning and Organization; Acquisition and Implementation; Delivery and Support; Monitoring and Evaluation. Each Domain is divided into a number of PROCESSES which in turn are divided into ACTIVITIES/TASKs.
A Process Maturity Model exists against which an organization may judge its current level of compliance and best practice development.
COBIT documentation is available free of charge from the ISACA.ORG website.
Visit The PCAP Store at: http://www.pcap.co.uk
Last edited on Tue May 13th, 2008 12:17 pm by bobmckean
|
