Implementing COBIT based Process Assessment Model for Evaluating IT Controls
نویسنده
چکیده
New generations of governance models referring to either IT or Internal Control – like COBIT [1] and COSO [2] are extended with business perspective willing to gain top management’s ear. But the practice shows, this opening solely is not enough to reach a breakthrough, because models became more complicated than it could be applied without some difficulties. Very frequently exposed, that the best catalysts of improvement programs are the more and more mandatory rules coming into force. Sarbanes-Oxley Act for US SEC registrants and their affiliates (all over the world), the Basel II framework and the proposed modification of the Company Law in the EU require not only the implementation of risk management and internal control systems, but the periodic disclosure of effectiveness conclusions performed by the executive management.
منابع مشابه
Using ArchiMate to Assess COBIT 5 and ITIL Implementations
The assessment of Enterprise Governance of IT (EGIT) mechanisms, such as COBIT and ITIL, is considered highly complex and implies a duplication of resources. The main goal of this research is to reduce the complexity of EGIT mechanisms by facilitating the assessment of these mechanisms when used simultaneously. Organisational stakeholders should be able to easily understand the impact of implem...
متن کاملCOBIT 5 and the Process Capability Model . Improvements
IT governance and management in an enterprise plays an important part in generating value for the stakeholders [1]. COBIT 5 is a framework for the governance and management of IT enterprises. In 2012 the latest version of this framework was released introducing important features. One of those features is the evolution from COBIT 4.1 Maturity Model to COBIT 5 Process Capability Model. This pape...
متن کاملارائه یک مدلی جدید برای بلوغ حاکمیت بر معماری سرویسگرا
Abstract Today, Organizations require a suitable and effective governance maturity model of their Service-Oriented Architecture (SOA). This is required to assess current state and needs of their governance and then to provide a suitable framework for their governance. So far, the different SOA governance maturity models have been proposed to assess governance of SOA; however, considering the...
متن کاملSelecting IT Control Objectives and Measuring IT Control Capital
COBIT is a well-known framework for IT governance, and provides an extensive list of control objectives for IT managers. However, anecdotal evidence shows that many organizations that use COBIT do not implement the entire framework. Instead, they focus their efforts on only some of COBIT’s control objectives. We argue that this could be due to the bounded rationality of IT managers, which affec...
متن کاملAssessment of IT Governance and Process Maturity: Evidence from banking Industry
The aim of the current study is to evaluate and compare the IT governance maturity of Iran’s banking Industry and inform managers, who possess business knowledge and who may also be knowledgeable on the main aspects of COBIT, about the significant incremental risks this new technological advancement may expose the enterprise to if the proposals of possible controls are implemented by the prospe...
متن کامل