...more new items
Contact the ISACA Bookstore
for further information:
Email: bookstore@isaca.org
|
Acknowledging the potential significance of COBIT's
impact on effective IT governance, control and assurance, and the
desire to make key elements available to all interested parties,
the IT Governance Institute,
in conjunction with the ISACF, proclaimed COBIT 3rd
Edition Executive Summary, Framework, Control Objectives,
Audit Guidelines (for ISACA members only), Implementation
Tool Set, and the new Management Guidelines "open standards."
These publications are available for download from this site.
Should you choose, these documents can be purchased for a nominal
fee through the ISACA bookstore.
ORDER NOW!
|
|
To research, develop, publicise and promote an authoritative,
up-to-date, international set of generally accepted IT Control Objectives
for day-to-day use by business managers as well as security, control and
audit practitioners.
COBIT has been developed as a generally applicable
and accepted standard for good Information Technology (IT) security and
control practices that provides a reference framework for management,
users, and IS audit, control and security practitioners.
| Management Guidelines |
Executive Summary |
| To ensure a successful enterprise, you must effectively manage
the effective union between business processes and information systems.
The new Management Guidelines is composed of Maturity Models,
to help determine the stages and expectation levels of control and
compare them against industry norms; Critical Success Factors,
to identify the most important actions for achieving control over
the IT processes; Key Goal Indicators, to define target levels
of performance; and Key Performance Indicators, to measure
whether an IT control process is meeting its objective. These Management
Guidelines will help answer the questions of immediate concern
to all those who have a stake in enterprise success. |
Sound business decisions are based on timely, relevant and
concise information. Specifically designed for time pressed senior
executives and managers, the COBIT Executive Summary
consists of an Executive Overview which provides a thorough awareness
and understanding of COBIT's key concepts and principles.
Also included is a synopsis of the Framework, which provides
a more detailed understanding of these concepts and principles, while
identifying COBIT's four domains (Planning & Organization,
Acquisition & Implementation, Delivery & Support, Monitoring)
and 34 IT processes. |
| Framework |
Audit Guidelines |
| A successful organization is built on a solid framework of
data and information. The Framework explains
how IT processes deliver the information that the business needs to
achieve its objectives. This delivery is controlled through 34 high-level
control objectives, one for each IT process, contained in the four
domains. The Framework identifies which of the seven information
criterion (effectiveness, efficiency, confidentiality, integrity,
availability, compliance and reliability), as well as which IT resources
(people, applications, technology, facilities and data) are important
for the IT processes to fully support the business objective. |
Analyze, assess, interpret, react, implement. To achieve
your desired goals and objectives you must constantly and consistently
audit your procedures. Audit Guidelines outlines and suggests
actual activities to be performed corresponding to each of the 34
high-level IT control objectives, while substantiating the risk of
control objectives not being met. Audit Guidelines is an invaluable
tool for information systems auditors in providing management assurance
and/or advice for improvement. |
| Control Objectives |
Implementation
Tool Set |
| The key to maintaining profitability in a technologically
changing environment is how well you maintain control. COBIT's
Control Objectives
provides the critical insight needed to delineate a clear policy and
good practice for IT controls. Included are the statements of desired
results or purposes to be achieved by implementing the 318 specific,
detailed control objectives throughout the 34 IT processes. |
An Implementation Tool Set, which contains
Management Awareness and IT Control Diagnostics, and Implementation
Guide, FAQs, case studies from organizations currently using COBIT,
and slide presentations that can be used to introduce COBIT
into organizations. The new Tool Set is designed to facilitate the
implementation of COBIT, relate lessons learned from
organizations that quickly and successfully applied COBIT
in their work environments, and lead management to ask about each
COBIT process: Is this domain important for our business
objectives? Is it well performed? Who does it and who is accountable?
Are the processes and control formalized? |
| IT Control Practice Statement |
CD-ROM |
| This newest member of the COBIT family of
products, prepared by the IT Control Practices Committee, is provided to ISACA
members only as a benefit of membership. IT control practices
expand the capabilities of COBIT by providing the practitioner
with an additional level of detail. The current COBIT
IT processes, business requirements and detailed control objectives
define what needs to be done to implement an effective control structure.
The IT control practices provide the more detailed how and why needed
by management, service providers, end users and control professionals
to implement highly specific controls based on an analysis of operational
and IT risks. The COBIT conceptual framework is thus
extended with a more specific implementation focus than is further
presented in the control practices. Control practice statements for
other COBIT control objectives will be posted as they
are completed. |
The CD-ROM, which contains all of COBIT,
is published as a Folio infobase. The material is accessed using Folio
Views®, which is a high-performance, information retrieval software
tool. Instant access to COBIT's text and graphics is
now easier than ever with flexible keyword searching and built-in
index links. (optional purchase)
A network version (multi-user) of COBIT 3rd Edition
is available. It is compatible with Microsoft Windows NT and Novell
NetWare environments. Pricing is dependent on the number of user licenses
required. Call 847.253.1545 ext. 401 or Email
the bookstore for more information. |
|
