menu image
AssuranceSecurityGovernanceMembers & LeadersProfessionals & PractitionersStudents & EducatorsExhibitors & Advertisers
menu shadow
Overview
Stay Competitive
Strategy
My ISACA
COBIT
 COBIT Online
 COBIT Publications
 Obtain COBIT
 COBIT Mapping
 COBIT Campus
 COBIT Training
 Case Studies
 Articles
 Accolades
 FAQ
 Feedback
 Project
 Acknowledgments
Val IT
Exam Registration
Education & Conferences
Professional Resources
Downloads
Code of Professional Ethics
Chapter Leader Resources
Computer Donation
Boards & Committees
Career Centre
spacer image
Print this page
spacer image

Home Members & Leaders COBIT

Learn More About Submitting Your Organization For A COBIT Case Study!

COBIT Case Studies by Industry

How Organizations Around the World Are Customizing COBIT to Their Benefit

For COBIT case studies prior to 2002, click here.

.: Consulting/IT :.
Enterprise Date How Used? Why COBIT?

Data Sec Logo
Datasec, Uruguay

March 2003

Datasec, a consulting firm, developed COBIT-based software used by many organizations, including BROU (the country's most important financial institution).
  • Great value because it improved the IT management structure
  • Mapped roles and responsibilities for boards, senior managers and professionals

Dongbu Logo
Dongbu HiTek

January 2009

The company used COBIT to standardize its business processes based on global standards, comply with K-SOX and ISO 27001, and implement IT governance for Real Time Enterprise (RTE).
  • It provides global best practices for IT business processes.
  • It is complementary with major international standards, ITIL, the ISO 27000 series and PMBOK.
  • It provides a common language.

Jefferson Wells Logo
Jefferson Wells, USA

November 2007

Jefferson Wells used COBIT to assess existing controls and make recommendations on new controls for a client. For the IT controls, there is an assessment form that maps COSO to COBIT, and results are recorded directly into a database.
  • COBIT helped break down (COSO-related) information into understandable requirements.
  • Comprehensive guidance helped the client’s organization build the high-priority controls it needs.


The Manta Group, Canada

December 2006

COBIT helped clients improve their processes and achieve alignment with business goals through relevant and practical controls and metrics.
  • Is the only internationally accepted framework to provide a complete model for governing and attaining value from investments in IT
  • Educated IT and business management regarding the value of IT governance

Sun Microsystems Logo
Sun Microsystems, USA

June 2005

In light of Sarbanes-Oxley and other legislation, Sun’s IT department sought a common framework to view and measure IT’s alignment and contribution to the overall business strategy.
  • Supported IT control activities in a resource-constrained environment.
  • Enabled a common language to be used across processes

Unisys logo
Unisys Corporation, USA

September 2005

COBIT helped Unisys standardize IT strategy to support global operations, align the IT infrastructure with the company’s overall business strategy and help with Sarbanes-Oxley compliance.
  • Is an external standard against which to be measured
  • Provided a comprehensive view of the IT enterprise and a good approach to problem-solving
Education :: Energy :: Financial Services/Insurance :: Government
Healthcare/Related :: Manufacturing/Transportation
.: Education :.
Enterprise Date How Used? Why COBIT?

Blackboard Inc.

April 2007

COBIT is a powerful way to navigate change and improve IT governance.
  • Helps IT leaders assess current operations and incorporate them into due diligence activities
  • Creates strong relationships with external auditors

Curtin University of Technology, Western Australia

July 2002

As the university's Information Management Services (IMS) expressed concern about IT governance, the internal audit team learned about COBIT, was impressed with its content and proposed its implementation. COBIT soon was adopted as a university standard.
  • Substantially increase acceptance
  • Helped use results of audits as an opportunity to plan improvements
Consulting/IT :: Energy :: Financial Services/Insurance :: Government
Healthcare/Related :: Manufacturing/Transportation
.: Energy :.
Enterprise Date How Used? Why COBIT?

Adnoc Logo
Adnoc Distributions

December 2008

Adnoc then implemented the three most important and relevant COBIT processes, according to the current budget and resources availability. The three processes selected focused on change management, business continuity and service level management.
Currently, Adnoc uses COBIT in combination with other best practices, including portions of ITIL, as well as ISO 27001 and PMBOK standards.
Additional COBIT processes, including one related to data management, have been identified for the next phase of implementation.
  • Adnoc felt that no other standard offered a complete framework to address all the elements of a process, including measurements, key performance indicators (KPIs) and key goal indicators (KGIs)
  • Found to be more general and business-oriented than other standards/frameworks
  • Encompasses most of the elements of an IT environment, while most other standards/frameworks focus on one respective area
Consulting/IT :: Education :: Financial Services/Insurance :: Government
Healthcare/Related :: Manufacturing/Transportation
.: Financial Services/Insurance :.
Enterprise Date How Used? Why COBIT?

Central Bank of the Republic of Armenia
Central Bank of the Republic of Armenia

February 2009

The IT audit division uses COBIT when performing audits, and risk assessments are conducted according to COBIT processes.
  • The board selected COBIT after conducting global research and finding that COBIT was well known and internationally respected.


Pension–Fennia

October 2008

Pension–Fennia used COSO ERM and COBIT to maximize its effectiveness and optimize the maturity of its controls. By using this combined approach, the organization was able to clarify the mutual goals and responsibilities of its business units and IT.
  • To use COBIT’s maturity approach as a complement to COSO ERM
  • To deepen the synergy and mutual understanding between business units and IT, and between IT and its service providers.

Kuwait Turkish Bank Logo
Kuwait Turk Participation Bank

April 2007

Kuwait Turk initially implanted COBIT to comply with requirements set by the Banking Regulation and Supervision Agency of Turkey (BRSA), but soon realized that the use of COBIT provided many additional benefits, including more controlled and integrated IT processes.
  • Came highly recommended
  • Internationally accepted and easily maps to other leading standards


Canadian Tire Financial Services, Ltd.

February 2007

COBIT helped communicate to IT and management why they needed to care about effective controls and provide a framework for implementation.
  • COBIT was selected as the framework with which to comply because its control objectives are internationally recognized and considered to be effective at controlling IT-related processes

Prudential, Asia

September 2006

The adoption of COBIT was supported by Prudential’s CEO and board members. COBIT has helped Prudential’s Asia IT team achieve enhanced communication between IT and business operations and responsiveness in project management
  • Helped provide a uniformed platform to sustain growth and eliminate risks

Allstate, USA

June 2004

After Sarbanes-Oxley, Allstate began using COBIT to evaluate IT governance
  • Provided the board of directors with a high level of assurance
  • Helped ensure alignment between business strategies and technology investments

Charles Schwab & Co., Inc., USA

September 2002

With increased regulatory exposure, senior management recognized the need for an improved IT governance and control framework.
  • The four focal points for the infrastructure universe element were:
    • Structure and strategy
    • Methodologies and procedures
    • Measurement and reporting
    • Tools and technology
Consulting/IT :: Education :: Energy :: Government :: Healthcare/Related :: Manufacturing/Transportation
.: Government :.
Enterprise Date How Used? Why COBIT?

U.S. Department of Veterans Affairs

June 2009

 A new organizational structure for centralized IT management was based on industry best practices including COBIT and Val IT, both of which provide a framework for IT governance plans, structures and investments.
  • Bridges the gaps among control requirements, technical issues and business risks.
  • Enables clear policy development and best practices
  • Emphasizes regulatory compliance

Government of Dubai
Government of Dubai

April 2009

 The Financial Audit Department (FAD), the supreme audit institution of Dubai, recognized the need to promote, formalize and improve IT governance practices within Dubai as the extensive usage of IT is widely accepted as an essential component in providing services to citizens, residents and business entities.
  • Team members of the IS audit section of FAD are mostly members of ISACA who hold the CISA, CISM or CGEIT designation. COBIT had already been adopted as the resource serving as the overall framework for IS audit methodology since 2000.
  • The team decided to promote the best practices of COBIT resources among its audit community. COBIT provides control objectives, control practice statements and other resources supporting assurance processes as a global reference framework and benchmark.

Ontario Pension Board Logo
Ontario Pension Board

September 2007

 OPB uses COBIT for continual improvement of IT value and control. The self-evaluation process enabled development of a service catalogue and better alignment with OPB’s outsource service provider.
  • Provide better and more personalized service
  • A comprehensive framework for IT governance that helps close gaps, optimize IT investments, ensure effective service delivery and provide measures

Region of Peel Logo
Region of Peel

August 2007

Due to the financial significance of IT investment, length of time since the last review and the rate of change in IT, the Region’s CIO and director of Internal Audit agreed that an assessment be conducted using COBIT.
  • Represents consensus of global experts
  • Strongly focused on control, and less on execution
  • Peel Region’s experience with COBIT exceeded expectations

Bahrain Civil Service Bureau

February 2007

After analysing existing internal controls using the COBIT framework, a maturity model matrix was prepared and COBIT controls were applied to eliminate weak points.
  • COBIT is the most comprehensive, globally respected framework.
  • It can be customised for each organization.
  • It is an effective framework for implementing and improving IT governance.

Province of Mendoza, Argentina

November 2004

To enhance IT governance and assure residents that the management of public funds was well-monitored, recommended COBIT because it is an internationally accepted standard for good IT governance.
  • Allowed for the standardization of criteria regarding controls over IT
  • Provided senior management with executive guidance on identifying risks and implementing corrective measures.

U.S. House of Representatives, USA

July 2002

COBIT became a key tool for running the operations of the House and for audits of the House.
  • An IT governance framework that enabled management to establish clear roles and responsibilities.
Consulting/IT :: Education :: Energy :: Financial Services/Insurance
Healthcare/Related :: Manufacturing/Transportation
.:Healthcare/Related:.
Enterprise Date How Used? Why COBIT?

Erickson Logo
Erickson Retirement Communities

June 2009

To achieve secure information management, resilient processes, risk management and adaptive processes using COBIT as the controls framework.
  • Bridges the gap among control requirements, technical issues and business risk.
  • Is a tremendous asset to the IT Governance and Process Excellence Program.
Consulting/IT :: Education :: Energy :: Financial Services/Insurance :: Government :: Manufacturing/Transportation
.: Manufacturing/Transportation :.
Enterprise Date How Used? Why COBIT?

Harley-Davidson, USA

September 2006

COBIT helped meet the challenge of getting management, IT and audit speaking the same language and working toward increased control.
  • An internationally accepted standard for IT governance and control
  • Benchmarked controls compliance
  • Harmonized with leading guidance

Tembec, Canada

May 2006

Implemented COBIT to increase governance, strategically align IT and the business and standardize processes
  • Improve endor-neutral framework
  • Developed by a world-class organization
Consulting/IT :: Education :: Energy :: Financial Services/Insurance :: Government :: Healthcare/Related


nav menu image
spacer image
Assurance | Security | Governance
Members & Leaders | Professionals & Practitioners | Students & Educators | Exhibitors & Advertisers
Info Request | Join | Bookstore | My ISACA | About ISACA
Home | Site Map | Shopping Cart | Logout | Contact Us
spacer image
menu shadow

Terms Of Use | Privacy Policy | IP Guidelines
© 2009 ISACA All rights reserved.
3701 Algonquin Road, Suite 1010, Rolling Meadows, Illinois 60008 USA