Control Objectives for Information Technologies (COBIT)
What Is COBIT?
Control Objectives for Information Technologies, or COBIT, is a framework created by the Information Systems Audit and Control Association (ISACA) for IT governance and management. It is designed to help organizations manage the quality and reliability of their information systems.
Why Do Organizations Use COBIT?
COBIT is a well-recognized, established framework that can be applied to any organization in any industry. It is particularly beneficial for organizations that depend on technology for reliable and relevant information, such as organizations that sell software or provide cloud services to other businesses.
The COBIT framework links business goals with IT infrastructure and contains four domains:
Under each domain, COBIT outlines descriptions for planning, building, running, and monitoring all IT processes. COBIT also provides a list of requirements that have been considered for effective IT business control, maturity models to help assess the maturity and capability of every process, and management guidelines.
Organizations can demonstrate their commitment to sound IT governance by enrolling their IT, risk management, and audit professionals in a certification program to become proficient in applying the COBIT methodology to the management of IT systems.