COBIT 5 provides a comprehensive framework that assists organizatiions in achieving their objectives for the governance and management of enterprise IT. Simply stated, it helps organizations create optimal value from IT by maintaining a balance between realizing benefits and optimizing risk levels and resource use. It builds on more than 15 years of practical usage and application of COBIT by many enterprises and users from business, IT, risk, security and assurance communities.
COBIT 5 enables IT to be governed and managed in a holistic manner for the entire organization taking in the full end-to-end business and IT functional areas of responsibility, considering the IT-related interests of internal and external stakeholders. COBIT 5 is generic and useful for organizations of all sizes, whether commercial, not-for-profit or in the public sector.
COBIT 5 is based on five key principles:
- Principle 1: Meeting Stakeholder Needs — COBIT 5 provides all of the required processes and other enablers to support business value creation through the use of IT.
- Principle 2: Covering the Enterprise End-to-End — COBIT 5 integrates governance of enterprise IT into enterprise governance.
- Principle 3: Applying a Single, Integrated Framework — COBIT 5 aligns with other relevant standards and frameworks at a high level, and can therefore serve as the overarching framework for governance and management of enterprise IT.
- Principle 4: Enabling a Holistic Approach — COBIT 5 defines a set of enablers to support the implementation of a comprehensive governance and management system for enterprise IT.
- Principle 5: Separating Governance From Management — The COBIT 5 framework makes a clear distinction between governance and management. These two disciplines encompass different types of activities, require different organizational structures and serve different purposes.
COBIT 5 helps organizations of all sizes:
- Maintain high-quality information to support business decisions
- Achieve strategic goals with effective and innovative use of IT
- Achieve operational excellence
- Maintain IT-related risk at an acceptable level
- Optimize the cost of IT services and technology
- Support compliance with relevant laws and regulations
COBIT and Other Frameworks
COBIT 5 connects, and, where relevant, aligns to other major frameworks and standards in the marketplace, such as ITIL®, Sarbanes-Oxley, Basel III, The Open Group Architecture Forum (TOGAF®), Project Management Body of Knowledge (PMBOK®), PRINCE2®, Committee of Sponsoring Organizations of the Treadway Commission (COSO) and the International Organization for Standardization (ISO) standards. This will help stakeholders understand how various frameworks, good practices and standards are positioned, relative to each other, and how they can be used together.
The COBIT 5 product family includes the following products:
- COBIT 5 The Framework
- COBIT 5 Enabler Guides (in which governance and management enablers are discussed in detail).
- COBIT 5 Professional Guides