This core area of IT governance describes the subjects that the operative management must take into account in the control of the IT within the company. In doing this, the operative management makes use of processes in order to organise and manage the activities.
COBIT makes a generic process model available that includes all the activities that are normally present in the IT. This model is a general basic model and is understandable for both the managers of the operative IT and for any of the core business processes. The COBIT process model was laid down around the core areas of the IT governance in order to produce a link between the operative management at the implementation levels and the control level.
In order to be able to achieve effective governance, the executive company management requires that the operative management should define controls on the basis of a framework for all IT processes. The IT Control Objectives from COBIT are structured according to IT processes, and, as a result, this framework offers a clear link between the requirements of IT governance, the IT-processes and the IT controls.
COBIT concentrates on the major requirements in order to implement an appropriate management and an appropriate control of the IT, and is located at the strategic level. COBIT has been adapted to other, more detailed IT standards and Best Practices, and has been harmonised with these. COBIT integrates these different standards, in that the most important goals are integrated into a common framework, which also produces the link to the Corporate Governance and the company requirements. |
