Control Objectives for IT (COBIT)
COBIT provided by ISACA provides control objectives for IT processes. While COSO gives a general framework, COBIT provides control objectives for each IT process. We will demonstrate where those processes are likely to be running in the Oracle solution and show the settings and configurations that may best meet those control objectives.
Managing IT processes in Oracle GRC applications to support COBIT Framework
InFission IT Audit team has implemented IT controls by following the COBIT standard that is supported by Oracle GRC applications. The COBIT framework is supported as follows:
|
COBIT Objective |
Control description |
InFission IT Control management system |
|
Plan and Organize (PO) |
Provides direction to solution delivery (AI) and service delivery (DS) |
IT plans, policies, and budgets are maintained in Oracle GRC Manager |
|
Acquire and Implement (AI) |
Provides the solutions and passes them to be turned into services |
IT project policies and procedures... |
