I HOPE IT IS HELPFUL FOR YOU> BUT PLS IWANT CREDITS> OR ADD ME AND MESSAGE ME THANKS
THERE IS A NOTE FOR PRESENTERS VIEW
HAVE A GOOD DAY
KEEP CALM AND DRINK ON
NAME: Ellen Magalona
GNDR: FML
BRTHDY: FEB. 1998
@ellenmaaee
2. What is COBIT?
● It is a framework created by the ISACA (Information Systems Audit and Control
Association) for IT governance and management.
It was designed to be a supportive tool for managers—and allows bridging the crucial gap
between technical issues, business risks, and control requirements. COBIT is a thoroughly
recognized guideline that can be applied to any organization in any industry. Overall, COBIT
ensures quality, control, and reliability of information systems in organization, which is also the
most important aspect of every modern business.
(Control Objectives for Information and Related
Technologies)
3. ● It was founded in 1969
● With an aim to provide thought and
leadership and guidance on directing and
controlling the enterprises information
technology,
● it has over 85,000 members in about 140
countries.
● ISACA spreads knowledge of governance
control security assurance it is responsible
for developing COBIT 5.
● Assisting enterprise leaders and board of
directors in the governance responsibility
by providing original research and case
studies
What is ISACA?
Information Systems Audit and Control Association
4. 7 key Criteria
1. Effectiveness- the information must be relevant and timely
2. Efficiency- the information mostly produced in a cost effective manner
3. Confidentiality - sensitive information must be protected from unauthorized disclosure
4. Integrity- the information must be accurate, complete and valid
5. Availability- the information must be available whenever needed.
6. Compliance- controls must ensure compliance with internal policies and with external legal
regulatory requirements
7. Reliability- management must have access to appropriate information needed to conduct
daily activities.
5. 1. Plan and Organize (PO)- designing and managing
an organization’s information systems.
2. Acquire and Implement (AI) - processes for
obtaining and installing technology solutions.
3. Deliver and Support(DS) - critical processes for
effectively and efficiently operating information
systems and providing management needs to run
an organization
4. Monitor and Evaluate(ME) - assessing the
operation of an organization’s information
systems
COBIT 4 basic Domains
6.
7.
8.
9. COBIT allows:
1. Management to control benchmark security and control practices of IT systems
2. Users to be assured that adequate IT security and control exists
3. Auditors to substantiate their internal control opinions and to advise security and control
manners
10. The various components of COBIT include:
● Framework – IT helps organizing the objectives of IT governance and
bringing in the best practices in IT processes and domains, while linking
business requirements.
● Process Descriptions – It is a reference model and also acts as a common
language for every individual in the organization. The process descriptions
include planning, building, running, and monitoring of all IT processes.
● Control Objectives – This provides a complete list of requirements that has
been considered by the management for effective IT business control.
● Maturity Models – Accesses the maturity and the capability of every process
while addressing the gaps.
● Management Guidelines – Helps in better assigning responsibilities,
measuring performances, agreeing on common objectives and illustrating
better interrelationships with every other process.
11. COBIT allows:
1. Management to control benchmark
security and control practices of IT
systems
2. Users to be assured that adequate IT
security and control exists
3. Auditors to substantiate their internal
control opinions and to advise
security and control manners
The guiding principles of COBIT 5.0 are:
1. Meeting the needs of stakeholders
2. Covering the whole enterprise from end
to end
3. Application of a single integrated
framework
4. Ensuring a holistic approach to business
decision making
5. Separating the governance from the
management
In other words, COBIT presents a comprehensive view of the controls necessary for systems reliability.
Cobit provides comprehensive framework that assists enterprises in achieving their objectives for the governance and management of the enterprise IT system
Simply stated it helps enterprises to create optimal value from IT by maintaining a balance between realizing benefits and optimizing risk levels and resources use
COBIT is generic and useful for enterprises of all sizes, wwhether commercial, non-profit or in the public sector
indicates that effective operation, control and governance of an information system is an ongoing process. management develops plans to organize information resources to provide the information it needs. It then authorizes and oversees efforts to acquire or build internally the desired functionality. Management then performs activities to ensure that the resulting actually delivers the desired information. finally , there is na need for constant monitoring and evaluation of performance against the established criteria.
COBIT is being used by all organizations whose primary responsibilities happen to be business processes and related technologies—all organizations and business that depend on technology for reliable and relevant information. COBIT is used by both government and private sector organizations, because it helps in increasing the sensibility of IT processes.
COBIT 5.0 addressed all the criticisms in a sustainable manner. It now encourages all organizations to govern and manage information in the most holistic and integrated manner.