COBIT®5
What is COBIT®?
COBIT® was originally an acronym for Control Objectives for Information and related Technology. Now used in short form, COBIT is used to identify the name of the framework. COBIT 5 is used globally by those who have the primary responsibility for business processes and technology, depend on technology for relevant and reliable information, and provide quality, reliability and control of information and related technology.
COBIT® 5 provides the next generation of ISACA’s guidance on the enterprise governance and management of IT. It builds on more than 15 years of practical usage and application of COBIT by many enterprises and users from business, IT, risk, security and assurance communities. Today, more than ever, information and related technologies need to be governed, managed and operated in a holistic manner—with a single, integrated process model that provides end-to-end coverage of the roles, responsibilities and practices required.
COBIT® 5 provides a comprehensive framework that assists enterprises in achieving their objectives for the governance and management of enterprise information and technology assets (IT). Simply stated, it helps enterprises create optimal value from IT by maintaining a balance between realising benefits and optimising risk levels and resource use. COBIT 5 enables IT to be governed and managed in a holistic manner for the entire enterprise, taking in the full end-to-end business and IT functional areas of responsibility, considering the IT-related interests of internal and external stakeholders. COBIT 5 is generic and useful for enterprises of all sizes, whether commercial, not-for-profit or in the public sector.
*Source: COBIT 5 FAQ's = ISACA
BENEFITS OF COBIT®
FOR INDIVIDUALS
-
Understanding of business requirements, mission objectives and their priorities
-
Understanding relationship of business systems and their associated risk appetite
-
Ability to make informed decisions to reduce information security incidents
-
Understanding of all compliance requirements for each business unit
-
Deliver this understanding and risk awareness to improve prevention, detection and recovery within an organization and provide tools to their organizations to maintain high quality information to support business decisions
-
Understand COBIT approach to governance and its relationship with other IT best practices.
*Source: The ROI of ITIL® By Reginald Lo, ITIL® 2011 Expert and Vice President for Third Sky, Inc.
FOR ORGANIZATIONS
-
Achieve strategic goals and realise business benefits through the effective and innovative use of IT.
-
Support compliance with relevant laws, regulations, contractual agreements and policies and gain competitive edge over other organizations.
-
Reduce complexity and increase cost-effectiveness due to improved and easier integration of information security standards, good practices and/or sector-specific guidelines resulting in operational excellence through reliable, efficient application of technology.
-
Improved integration of information security in the enterprise, resulting in increased user satisfaction with information security arrangements and outcomes.
-
Understanding of responsibilities and roles in cybersecurity within the organization
-
Better understanding of current cybersecurity posture and risks to the organization
-
Understanding of actions required to close gaps between current cybersecurity posture and target state
