At this point I am aware of two IT Governance frameworks, or methodolgies, and the first on my list is COBIT.
ISACA defines COBIT as:
COBIT, issued by the IT Governance Institute and now in its fourth edition, is an internationally applicable and accepted IT governance and control framework for aligning IT with business objectives, delivering value and managing associated risks. It provides a reference framework for management, users, and IS audit, control and security practitioners. Its guidance enables an enterprise to implement effective governance over the IT that is pervasive and intrinsic throughout the enterprise.
COBIT helps provide answers to typical management questions:
- How far should we go in controlling IT, and is the cost justified by the benefit?
- What are the indicators of good performance?
- What are the key management practices to apply?
- What do others do?
- How do we measure and compare?
The best thing about COBIT is it is free! Anyone can download the complete framework publications from the primary website (linked in my sidebar) and have at them. This is a huge differentiator from ITIL, which seems to cost a fortune.
I’ll be spending the next few articles on COBIT.
No related posts.
