23. Dec. 2010 Warning: Illegal string offset 'title' in /usr/www/users/playsn/pibold/wp-content/plugins/table-of-content/plugin.php on line 48
Warning: Cannot assign an empty string to a string offset in /usr/www/users/playsn/pibold/wp-content/plugins/table-of-content/plugin.php on line 48
Warning: Illegal string offset 'title-tag' in /usr/www/users/playsn/pibold/wp-content/plugins/table-of-content/plugin.php on line 50
Warning: Illegal string offset 'title-tag' in /usr/www/users/playsn/pibold/wp-content/plugins/table-of-content/plugin.php on line 52
CobIT Beratung
[Top]
CobIT (Control Objectives for Information and Related Technology) is a control model to meet the needs of IT governance and ensure the integrity of information and information systems.
The purpose of COBIT is to provide management and business process owners with an information technology (IT) governance model that helps in delivering value from IT and understanding and managing the risks associated with IT. CobIT helps bridge the gaps amongst business requirements, control needs and technical issues. It will help with linking specific IT control models to overall business control models (e.g. COSO, Coco, Cadbury and King).
CobIT is a comprehensive set of resources that contains all the information organisations need to adopt an IT Governance and control framework for enterprise control of the IT environment /IT Governance.
It is a framework that will guide management in deciding on the level of risk to accept, the most appropriate control practices and the path to follow when it is necessary to improve the level of control.
CobIT is a way for an organization to use in its attempts to balance risk and control in a cost-effective manner and to be compliant with governmental IT compliance requirements. CobIT is generally accepted as de facto guidance for compliance with several governmental regulations:
- Banking & Finance: Sarbanes-Oxley Act (SOX), Basel II, US Public Company Accounting Oversight Board (PCAOB), Gramm-Leach-Bliley Act (GLBA), also known as the Financial Modernization Act, and the Federal Financial Institutions Examination Council’s (FFIEC), MIFID (Markets in Financial Instruments Directive), SEPA (Single Euro Payments Area);
- Retail: Payment Card Industry Data Security Standard (PCI-DSS);
- Life Sciences & Healthcare: the Health Insurance Portability and Accountability Act (HIPAA), Privacy & Security);
All of these require IT audits to assure IT Governance.
Ihr Vorteil einer Beauftragung
[Top]
- Harmonizing CobIT controls for your multiple IT governance and regulatory compliance programs;
- Integrating of CobIT risks, controls and policies with assets to manage compliance security
- Supporting integration of CobIT library with Threat, Vulnerability, Identity and IT Operations Management systems to enable real-time IT governance and compliance program
- Generating reports for CobIT maturity assessment and heat-maps for your overall IT programs
- Governance: Breakdown organizational, functional and process “silos”. Ensuring that sound governance structure is in place so that the right information is available with right people at right time.
- A comprehensive, independent, evolving, large body of knowledge and educational support
- A common language and maturity model for IT process improvement
- Durchführung von COBIT-Qualifizierungsmaßnahmen für IT-Mitarbeiter
- Ermittlung des IST- und Soll-Reifegrades von IT-Prozessen sowie Erarbeitung von Maßnahmen
- Unterstützung bei der Implementierung von revisionssicheren IT-Prozessen
- Konzeption und Implementierung einer unternehmensspezifischen IT Governance.
- Making a link to the business requirements
- Organizing IT activities into a generally accepted process model
- Identifying the major IT resources to be leveraged
- Defining the management control objectives to be considered
