CobiT definition:
Management develops an enterprise IT control framework and defines and communicates policies. An ongoing communication programme is implemented to articulate the mission, service objectives, policies and procedures, etc., approved and supported by management. The communication supports achievement of IT objectives and ensures awareness and understanding of business and IT risks, objectives and direction. The process ensures compliance with relevant laws and regulations.
Control over the IT process of
Communicate management aims and direction
that satisfies the business requirement for IT of
supplying accurate and timely information on current and future IT services and associated risks and responsibilities
by focusing on
providing accurate, understandable and approved policies, procedures, guidelines and other documentation to stakeholders, embedded in an IT control framework
is achieved by
- Defining an IT control framework
- Developing and rolling out IT policies
- Enforcing IT policies
and is measured by
- Number of business disruptions due to IT service disruption
- Percent of stakeholders who understand the enterprise IT control framework
- Percent of stakeholders who are non-compliant with policy
Control objectives:
PO6 Communicate Management Aims and Direction
PO6.1 IT Policy and Control Environment
PO6.2 Enterprise IT Risk and Control Framework
PO6.3 IT Policies Management
PO6.4 Policy, Standard and Procedures Rollout
PO6.5 Communication of IT Objectives and Direction
Check out the links for details on the control objectives.
Related posts:
- PO4 Define the IT Processes, Organisation and Relationships CobiT definition: An IT organisation is defined by considering requirements for staff, skills, functions, accountability, authority, roles and responsibilities, and...
- PO5 Manage the IT Investment CobiT definition: A framework is established and maintained to manage IT-enabled investment programmes and that encompasses cost, benefits, prioritisation within...
- CobiT Domain – Acquire and Implement The second domain in CobiT is Acquire and Implement (AI). It is made up of 7 processes and 40 control...
- CobiT Domain – Deliver and Support The third domain in CobiT is Deliver and Support (DS). It is made up of 13 processes and 91 control...
- CobiT Domain – Monitor and Evaluate The fourth domain in CobiT is Monitor and Evaluate (ME). It is made up of 4 processes and 25 control...
