Scribd Logo
Upload

Welcome to Scribd!

  • Security and Audit Assignment

    Uploaded by

    brian
    32 views2 pages
    security

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    security

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    32 views2 pages

    Security and Audit Assignment

    Uploaded by

    brian
    security

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    NAFISA NOOR ABDIRAHMAN

    BIT-1-2682-2/2016
    BBIT 443

    DOMAINS OF COBIT
    COBIT (control objectives for information and related technologies)

    1) Evaluate, Direct and Monitor (EDM)

    Governance ensures that enterprise objectives are achieved by evaluating stakeholder


    needs, conditions and options; setting direction through prioritization and decision making;
    and monitoring performance, compliance and progress against agreed-on direction and
    objectives (EDM).

    Align, Plan and Organize (APO)

    2)The Align, Planning and Organization domain covers the use of information &
    and how best it can be used in a company to help achieve the companys
    technology goals and objectives. It also highlights the organizational and
    infrastructural form IT is to take in order to achieve the optimal results and to
    generate the most benefits from the use of IT.

    3) Build, Acquire and Implement (BAI)

    The Build, Acquire and Implement domain covers identifying IT requirements, acquiring the
    technology, and implementing it within the companys current business processes. The
    following table lists the high level control objectives for the BAI domain.

    4) Deliver, Service and Support (DSS)

    The Deliver, Service and Support domain focuses on the delivery aspects of the information
    technology. It covers areas such as the execution of the applications within the IT system and its
    results, as well as, the support processes that enable the effective and efficient execution of these IT
    systems

    5)The Monitor, Evaluate and Assess (EMA)

    This domain deals with a companys strategy in assessing the needs of the
    company and whether or not the current IT system still meets the objectives for
    which it was designed and the controls necessary to comply with regulatory
    requirements. Monitoring also covers the issue of an independent assessment of
    the effectiveness of IT system in its ability to meet business objectives and the
    companys control processes by internal and external auditors.

    BASIC PRINCIPLES OF COBIT

    OBIT 5 is based on 5 key principles for governance and management of


    enterprise Information Technology.

    2.1. PRINCIPLE 1 - Meeting Stakeholder Needs

    2.2. PRINCIPLE 2 - Covering the Enterprise End-to-End

    2.3. PRINCIPLE 3 - Applying a Single Integrated Framework

    2.4. PRINCIPLE 4 - Enabling a Holistic Approach

    2.5. PRINCIPLE 5 - Separating Governance from Managementoach

    You might also like