Please enable JavaScript.
Coggle requires JavaScript to display documents.
LECTURE 4: FRAMEWORKS AND STANDARDS - Coggle Diagram
LECTURE 4: FRAMEWORKS AND STANDARDS
Committee of Sponsoring Organizations (COSO)
To develop comprehensive guidelines for internal control
Internal Control
A process, affected by an entity's board of directors, management, and other personnel
COSO Components
Control Environment
Define or sets the tone of an organization
Risk Assessment
Identify and analyze relevant risks to achievement of the objectives
Control Activities
Write policies and procedures
Control activities occur throughout the organization, at all levels and in all functions
Information and Communication
Identify, capture, and communicate pertinent information.
Information form and time frame enable people to carry out responsibilities.
Monitoring
Overseeing the quality of the control activities over time
COBIT
First published in April 1996
Current version COBIT 5.0
First internationally recognized framework for IT governance and control
Developed by the ISACA IT Governance Institute (ITGI) worldwide panel of experts from industry, academia, government, and IT security
The 4 Domains in COBIT Framework
Plan and Organize
Acquire and Implement
Deliver and Support
Monitor and Evaluate
IT Infrastructure Library - ITIL
Developed by the UK government in the mid-1980s
Standard for best practices in the provision of IT infrastructure management and service delivery
Practical references and specific standards for infrastructure and services management adaptable to any organization
Evolve as a result of businesses growing dependence on information technology
