COBIT

COBIT is a set of documentation for IT Governance best practices that can help the auditor, the user (user), and management, to bridge the gap between business risks, control needs and technical issues of IT. COBIT is useful for auditors as a technique that can assist in the identification of IT controls issues.COBIT is useful to IT users because gain confidence in the reliability of the application being used. While the managers to
benefit the investment decisions in IT and infrastructure, develop strategic IT plan, menentukaninformation architecture, and decisions on procurement (procurement / purchase) of assets. Issued by the ITGI COBIT is internationally accepted as the practice of control over information, IT and related risks. COBIT is used to execute the determination of the IT and improve IT controls. COBIT also contains control objectives, audit guidance, performance and outcome metrics, critical success factors and maturity models. COBIT (Control Objective for IT) is a framework to determine the IT management process that fits in a company.COBIT in version 4, there are 34 IT Process is divided into four domains, namely:A. Planning & Organizing containing planning processes such as Strategic IT Plan, IT budget planning.2. Acquire & Implement containing implementation processes such as analysis, design and implementation of software.3. Deliver & Support which contains support processes such as SLA management, maintenance.4. Monitoring & Evaluate containing processes such as monitoring of contracts, contract compliance with legal and other sebaginya.COBIT has a maturity model (maturity models) for the control of IT processes by using the method of assessment (scoring) so that an organization can assess IT processes from the scale of its non-existent to optimized (from 0 to 5), namely:0. Non Existen,A. Initial,2. Repetable,3. Defined,4. Managed5. OptimizedThis approach was taken based on the maturity model of softwareengineering institute.COBIT-STAGE STAGE METHODCOBIT is a method of cycles that begin with the following stages:A. Information,2. Planning and organization,3. Acquisition and implementation,4. Delivery and support,5. Monitoring.Each of these stages are detailed definition, identification, determination, provision, management, assessment, monitoring, evaluation, and development.PURPOSE AND FRAMEWORK COBITCOBIT was created to provide, cover and facilitate the introduction of control framework. COBIT framework consists of several directives (guidelines), namely:A. Planning and organization (plan and organise)2. Procurement and implementation (acquire and implement)3. Delivery and support (deliver and support)4. Monitoring and evaluation (monitor and evaluate) COBIT framework also includes the following:A. Maturity ModelsTo map the status of maturity of IT processes (scale 0-5) in comparison with "the best in the class in the Industry" as well as International best practices.2. Critical Success Factors (CSFs)Implementation guidance for management is to be able to exercise control over the IT process.3. Key Goal Indicators (KGIs)Is the performance of IT processes with respect to business requirements.4. Key Performance Indicators (KPIs)Is the performance of IT processes with respect to the process goals.BENEFITS COBITa. Can help auditors, management and user (user), by helping to close the gap between business requirements, risks, controls, security, through increased security and control over all IT processes.b. COBIT can provide guidance (guidelines) are business oriented, and therefore the business process owners and managers, including auditors and users, is expected to take advantage of this guideline as well as possible.• Audit GuidelinesContain as many as 318 control objectives that are detailed (detailed control objectives) to assist the auditors in providing management assurance or suggestions for improvement.• Management GuidelinesContains directions, either in general or specific, about what must be done. Auditors Audit Guidelines can be used as additional material for designing audit procedures. Especially COBIT guidelines can be modified easily, according to the industry, the conditions in the IT company or organization, or a particular object in the IT environment.c. COBIT provides control where the user can measure the process contained in ISO 17799 and ITIL, and that can be used for process improvement.Urungkan pengeditan