IT Assurance Guide: Using COBIT 


IT Assurance Guide: Using COBIT  IT Assurance Guide: Using COBIT (Member Only, 1.1M)
  IT Assurance Guide: Using COBIT (Chinese Simplified; Member Only, 1.6M)
  IT Assurance Guide: Using COBIT (Japanese; Member Only, 2.8M)
  IT Assurance Guide Appendices with COBIT Control Practices
(Member Only, 362K)
Bookstore Purchase the Book

  Provide feedback on this document
Knowledge Center  Visit the COBIT - Implementation Knowledge Center community
Knowledge Center  Visit the COBIT - Use it Effectively Knowledge Center community

Assurance steps and advice are provided for:

  • Generic controls that apply to all processes (identified by PC.n in COBIT)
  • Specific process controls (identified by domain identification and process number, e.g., PO6.3, AI4.1)
  • Application controls (identified by AC.n in COBIT) to:
    • Test the control design of the control objective
    • Test the outcome of the control objective (operational effectiveness)
    • Document control weaknesses and their impact

The assurance guide is intended for assurance professionals who require guidance in providing reliable assurance on internal controls, process improvement, financial support audit, etc. In addition, the assurance guide can be used by IT professionals who may be asked for their opinions and recommendations regarding proposed improvements.