COBIT
The Control Objectives for Information and related Technology (COBIT) is a control framework that links IT initiatives to business requirements, organizes IT activities into a generally accepted process model, identifies the major IT resources to be leveraged, and defines the management control objectives to be considered. The latest version of COBIT is version 4.1, which consists of seven sections:
- Executive Overview
- COBIT Framework
- Plan and Organize
- Acquire and Implement
- Deliver and Support
- Monitor and Evaluate
- Appendices
COBIT is increasingly accepted internationally as a set of guidance materials for IT governance that allows managers to bridge the gap between control requirements, technical issues, and business risks. Based on COBIT 4.1, the COBIT Security Baseline focuses on the specific risks around IT security in a way that is simple to follow and implement for small and large organizations. COBIT can be found at the Information Systems Audit and Control Association (ISACA) website.4
Get Web Commerce Security Design and Development now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
