COBIT 3

Beside Common Criteria and BS 7799, the COBIT standard (Control Objectives for Information and Related Technology) elaborated by ISACA (Information Systems Audit and Control Association) is the third international standard on the basis of which the development and security of IT systems can be implemented.
COBIT is a set of internationally accepted IT control objectives which can be applied in general and is recognized in the field of IT security control and regulation.
In the elaboration of COBIT mainly the approaches of three different professional groups were taken into consideration:

For the top management, it gives help in the risk management of the continuously changing IT environment and in considering the investment alternatives for establishing controls.
For the users, it ensures the control and security of IT services.

For information system controllers, it provides a uniform ground for qualifying internal controls as well as the estimations and advising for the management.

TCSEC
ITSEC
Common Criteria 2.1 (ISO/IEC 15408:1999)
ITIL 2. (BS 15000:2000)
BS 7799-1 (ISO/IEC 17799:2000)
BS 7799-2
ISO 9000-3
COBIT 3

Print page

Top of the page

Back