Cobit 2019
The Cobit (Control Objectives for Information Technology) framework provides a baseline for organisations to effectively manage and secure their information systems.
​
The Cobit 2019 framework includes the following Governance Management Objectives in its core model:
​
Evaluate, Direct and Monitor (EDM) - the governing body evaluates strategic options, directs senior management on the chosen strategic options and monitors achievement of the strategy
​
Align, Plan and Organize (APO) - Addresses the overall organization, strategy and supporting activities for enterprise I&T
​
Build Acquire and Implement (BAI) - Treats the definition, acquisition and implementation of I&T solutions and their integration into business processes
​
Deliver, Service and Support (DSS) - Addresses operational delivery and support of I&T services, including security
Monitor, Evaluate and Assess (MEA) - Addresses performance monitoring and conformity of I&T to internal performance targets, internal control objectives and external requirements
​
Each of the Governance Management Objectives defines activities with capability levels by which the organisation can be assessed. Effectively Cobit is defined in a format similar to a maturity model.
​
Stakeholder Voice addresses each of the Governance Management Objectives in separate assessments as a wide range of activities are addressed in each of the Objectives.
​
​