For those readers who are members of organizational governance, regulatory or compliance (GRC) related committees and/or information security / risk management teams, a posting recently released by the Information Systems Audit and Control Association (ISACA) is worth adding to your group’s reading resource library.
This new version of COBIT promotes seamless continuity between an enterprise’s IT department and its overall business goals, and represents a major evolution of the globally accepted framework used worldwide for more than 15 years.
According to ISACA, COBIT 5 can be tailored for all business models, technology environments, industries, locations and corporate cultures. It can be applied to:
– Information security
– Risk management
– Governance and management of enterprise IT
– Assurance activities
– Legislative and regulatory compliance
– Financial processing
Additionally, Derek Oliver, Ph.D., CISA, CISM, CRISC, CITP, FBCS, FISM, MInstISP, and co-chair of the COBIT 5 Task Force, states “…the advance interest in COBIT 5 is overwhelming. It’s clear that enterprises everywhere are aggressively seeking guidance on how to manage and ensure value from the growing mountain of information and increasingly complex technologies they are grappling with —Information is the currency of the 21st century, and COBIT helps enterprises effectively govern and manage this critical asset.”
If applicable, please pass this information along to those information security, network control or business continuity team members in your organization.