ISACA Now Blog

Knowledge & Insights > ISACA Now > Posts > Case study on using COBIT 5 for strategy implementation

Case study on using COBIT 5 for strategy implementation

| Posted at 11:18 AM by ISACA News | Category: COBIT-Governance of Enterprise IT | Permalink | Email this Post | Comments (0)

On a couple of previous occasions I have written about the fact that ISACA is using COBIT 5 and COBIT 5 Implementation to formalize and guide implementation of Strategy 2022 (S22). It has been enlightening to use COBIT’s business-oriented principles to govern and manage a non-IT project. Certainly, some adjustments have had to be made to render COBIT exactly pertinent to our goals, but that is one of the strengths of COBIT: It lends itself to customization by every enterprise that uses it, and, in fact, urges the user to exercise judgment to make it relevant guidance for the situation at hand.

I mentioned in previous blogs that we would be issuing a case study once we are well into the “business as usual” portion of implementation. I am pleased to advise you that the case study is now available and is posted to the web site. Of course, even though the case study has been finalized, our implementation of S22 is not over. S22 has a 10-year horizon—but this seemed an opportune time to conclude the case study, given the stage to which we have progressed. We hope you find value in reading about the steps we used, the challenges we addressed, the adjustments we made and the lessons we learned (and are still learning) along the way.

The case study makes it clear how we feel about the benefits of working with COBIT:

There is no question among those working on the S22 initiatives that using COBIT 5 has enabled a more productive outcome to date. The rigor required by starting with defining stakeholders, their drivers and their needs, then proceeding to describe the as-is and to-be states, has sparked a deeper analysis of each initiative. It has enabled achievement of a more in-depth, profound understanding of the problems, so that they are addressed in the most effective way, as opposed to trotting out easy and obvious “solutions” so that another task can be checked off the list. COBIT 5 has also surfaced the deep layers of interdependences among the initiatives, thus “forcing” a holistic, rather than siloed, planning approach. Recognizing the interdependencies has made it clear that issues cannot be dealt with on a piecemeal basis, but rather as parts of a whole.


Based on the success of using COBIT to implement strategy, ISACA is applying COBIT 5 to other specific activities as well. Gradually, the intent is to expand COBIT’s scope to cover broader enterprise issues. We hope you find the case study interesting and useful, and will agree with us that COBIT is an effective and valuable framework for governance and management of IT…and more.

Susan Caldwell



There are no comments yet for this post.
You must be logged in and a member to post a comment to this blog.