Control Objectives for Information and related Technology (COBIT) is an increasingly internationally accepted set of guidance materials for IT governance designed to assist in the implementation of effective IT governance throughout an enterprise. For an organisation to be successful in delivering IT resources against business requirements, IT management should put an internal control system or control framework in place.
The COBIT control framework contributes to these needs by:
Making a link to business requirements providing an set of Business Processes for IT Management Identifying the major IT resources to be leveraged - These are modelled in an Enterprise Architecture repository. Defining the management control objectives to be considered for each process Version 4.1 of COBIT is much more aligned to Enterprise Architecture than previous versions. In the COBIT Cube diagram below, the IT resources are the same as the (current state and future state) Enterprise Architecture model.
COBIT is based on five principles:
1. Meeting Stakeholder Needs 2. Covering the Enterprise End-to-End 3. Applying a Single, Integrated Framework 4. Enabling a Holistic Approach 5. Separating Governance from Management
MindMajix provides process framework for information system governance and allows organizations to develop a control structure, to link its IT objectives with business requirements. CobIT breaks down the control structure into four major domains and 34 sub domains:
With the Critical Succes Factors (CSF) in mind, CobIT guides management to deciding on Key Goal Indicators, those measurements that indicate the required outcome from the CSFs have been achieved. Therafter, management is directed to determining meaningful measures that indicate how well the IT processes are doing in enabling the goals set by IT management, to be achieved.