Home / Resources / COBIT

COBIT

Effective IT Governance at Your Fingertips

Build your expertise in the globally accepted framework for optimizing enterprise IT governance.

Why COBIT
COBIT

A right-sized governance solution…tailor-fit for your enterprise.

COBIT® 2019 is the most recent evolution of ISACA’s globally recognized and utilized COBIT framework.

Effective Governance

Governance icon

Effective governance over information and technology is critical to business success, and this new release further cements COBIT’s continuing role as an important driver of innovation and business transformation.

More Implementation Resources

wheels

In addition to the updated framework, COBIT now offers more implementation resources, practical guidance and insights, as well as comprehensive training opportunities. Implementation is now more flexible, enabling you to right-size your governance solution using COBIT, and training opportunities will help you to derive maximum ROI from your solution.

Access the COBIT Toolkit

Easy Integration

Integration icon

COBIT 2019 is specifically designed to play well with others. Guidance is provided to help you integrate the industry standards, guidelines, regulations and best practices unique to your enterprise into your governance solution using COBIT.

COBIT Case Studies

Illustration of a 3 sheets of paper overlayed on one another

COBIT case studies demonstrate the benefits, common applications, and uses of COBIT. Explore our library of case studies, or submit one yourself.

View Now

Industry News Articles

News and Trends

A collection of the latest relevant articles providing insight, practical tips and knowledge sharing from experts in security, risk, governance, privacy and audit.

Browse Now

What’s New in COBIT 2019: Design Guide

What’s New in COBIT 2019: Design Guide

This new Design Guide fills an important need for COBIT users—how to put COBIT to practical use, offering prescriptive how-to information.

View Video

Introducing COBIT 2019

Introducing COBIT 2019

Good governance is a vital element of strategy formulation and business transformation success, and COBIT 2019 can help chart that path forward.

View Video

Current COBIT Users Gain Even More from COBIT 2019

Current COBIT Users Gain Even More from COBIT 2019

This revised governance framework contains everything you value about COBIT 5, plus exciting new features and focus areas.

View Video

Right-Size Your Governance of Enterprise Information &Technology

Right-Size Your Governance of Enterprise Information & Technology

If you are new to COBIT, there has never been a better time to reevaluate your enterprise governance program.

View Video

Additional Resources

Governance Article
Using COBIT for Value-Based Direction Setting

Every organization goes through a phase in its life cycle that leaves it with 2 options: transform or decline.

1 February 2022
White Paper
Governance Roundup - What Are You Doing About Environmental, Social and Governance Factors in Your Enterprise? | Digital | English

Learn about the importance of establishing an environmental, social and governance (ESG) framework and applying it to the daily operations of your enterprise.

31 January 2022
PDF
Webinar Supplemental Handout

Demystifying IT Governance Roles in a Dynamic Business Environment

Mark Thomas, Escoute Consulting
Webinar
Demystifying IT Governance Roles in a Dynamic Business Environment

In today’s rapidly evolving and disruptive business environment, it is more important than ever to tailor your IT governance system to ensure continued value creation. Key to a successful transformation is to focus on the knowledge, skills and abilities of the enterprise’s most valuable resource: people.

Archived Until: 29 October 2021
Infographic
The Building Blocks of I&T Governance

Build a solid I&T governance strategy by learning the fundamentals and five critical aspects of every effective framework. Find out the most common challenges facing I&T governance today and how you can bridge the gap between technology and business stakeholders.

September 2020
Blog Post
IT Governance Value and the Pandemic

Today, more than ever, people, business and information & technology are related: I&T are essential resources to facilitate the survival of people and business.

18 September 2020
Blog Post
IT Governance and the COVID-19 Pandemic

COVID-19 has left a deep impact on society. It still affects the way we live and the way we work. Companies changed their delivery models, and many more people are now working remotely to adhere to new social distancing protocols. No organization was...

12 August 2020
Book
COBIT Focus Area: Information Security | Print | English

COBIT Focus Area: Information Security provides guidance related to information security and how to apply COBIT to specific information security topics/practices within an enterprise.

Infographic
The Business Value of IT Governance

IT Governance has never been more critical for organizational success. Develop a strategic approach that will help you streamline your processes, create a robust continuity plan, effectively evaluate and assess risk, align goals and maximize the return on your technology investments.

June 2020
Blog Post
Don’t Get Caught Without Good Governance When the Tide Goes Out

In my many weeks of working from home recently due to the COVID-19 pandemic, I’ve been on regular peer group calls listening to the challenges that my colleagues have dealt with in getting their companies situated to effectively work remotely.

18 May 2020
Blog Post
Utilize IT Governance for Stronger Enterprise Alignment

Ineffective governance has a substantial impact on business alignment and risk management. Malformed alignment can result in improper identification of sensitive data, critical services and substandard security controls.

1 May 2020
Blog Post
Communicating the Value of IT Governance

A network patch management tool to be procured is often seen mainly as an expense by the finance department, and therefore queried subjectively or even rejected.

22 April 2020
White Paper
Rethinking Data Governance and Management | Digital | English

Having a strong data governance and management program in place is key to the data transformation necessary to leverage big data, advanced analytics and more—the technologies that help maximize the potential value of your organization’s data.

1 January 2020
Book
Implementing the NIST Cybersecurity Framework Using COBIT 2019 | Print | English

Many enterprises lack an approach to integrate cybersecurity standards and enterprise governance of Information & Technology (EGIT). This lack of approach leaves them unable to establish systematic—yet flexible and achievable—governance and management objectives, processes, and capability levels to make measured improvements toward cybersecurity goals.
Video Series
APMG International ISACA Webinar

Using COBIT and CGEIT to achieve enterprise governance success!
Developing an Enterprise Innovation Practice
Publications
Illustration of a book

Get a great read and clearer understanding of COBIT® 2019.

Optimize enterprise governance of information and technology (EGIT), and learn how to implement the framework for maximum enterprise value.

IT Control Objectives for Sarbanes-Oxley, 4th Edition

IT Control Objectives for Sarbanes-Oxley, 4th Edition

ISACA’s IT Control Objective for Sarbanes-Oxley, 4th Edition provides guidance on the assessment of the effectiveness of internal control over financial reporting (ICFR) in attestation of the management assessment, to comply with the Sarbanes-Oxley Act of 2002 (SOX).

Learn More

COBIT 2019 for Small and Medium Enterprises

COBIT SME

This is a focused publication that can serve IT governance functionaries in small and medium enterprises looking for detailed guidance on the applying the COBIT 2019 Model to their organizations.

Learn More

COBIT Focus Area: DevOps Using COBIT 2019

md-wcb19do

The term “DevOps” is used to refer to a set of concepts and practices that bring together, align and functionally conjoin software developers and other participants in the software development life cycle. COBIT Focus Area: DevOps Using COBIT 2019 offers guidance for the governance and management of DevOps.

Learn More

COBIT Focus Area: Information and Technology Risk

MD-WCB19IRFA

COBIT Focus Area: Information & Technology Risk provides guidance related to information and technology (I&T) risk and how to apply COBIT to I&T risk practices. The publication is based on the COBIT core guidance for governance and management objectives, and it enhances the core guidance by highlighting risk-specific practices and activities as well as providing risk-specific metrics.

Learn More

COBIT Focus Area: Information Security

WCB19IS

COBIT Focus Area: Information Security provides guidance related to information security and how to apply COBIT to specific information security topics/practices within an enterprise. The publication is based on the COBIT core guidance for governance and management objectives, and enhances the core guidance by highlighting security-specific practices and activities as well as providing information security-specific metrics.

Learn More

COBIT 2019 Framework: Introduction and Methodology

LG-CB19FIM

The heart of the COBIT framework incorporates an expanded definition of governance and updates COBIT principles while laying out the structure of the overall framework.

  • New concepts are introduced and terminology is explained—the COBIT Core Model and its 40 management objectives provide the platform for establishing your governance program
  • The performance management system is updated and allows the flexibility to use maturity measurements as well as capability measurements
  • Introductions to design factors and focus areas offer additional practical guidance on flexible adoption of COBIT 2019, whether for specific projects or full implementation.

Learn More

COBIT 2019 Framework: Governance and Management Objectives

LG-CB19FGM

This publication contains a detailed description of the COBIT Core Model and its 40 governance/management objectives. Each governance/management objective and its purpose are defined and then matched up with the related process, Alignment Goals and Enterprise Goals.

Learn More

COBIT 2019 Design Guide: Designing an Information and Technology Governance Solution

LG-CB19DGD

This new publication fills an important need for COBIT users—how to put COBIT to practical use. It offers prescriptive how-to information for the user, such as:

  • Tailoring a governance system to the enterprise’s unique circumstances and context
  • Defining and listing various design factors and how they relate to the new COBIT 2019 concepts
  • Describing the potential impact these design factors have on implementation of a governance system, and
  • Recommending workflows for creating the right-sized design for your governance system

Learn More

COBIT 2019 Implementation Guide: Implementing and Optimizing an Information and Technology Governance Solution

LG-CB19IGIO

This guide is an updated version of the previous COBIT 5 Implementation Guide, taking a similar approach to implementation. However, the new terminology and concepts of COBIT 2019, including the design factors, are built into this guidance. When combined with the COBIT 2019 Design Guide, COBIT implementation has never been more practical and custom-tailored to specific governance needs.

Learn More

Implementing the NIST Cybersecurity Framework Using COBIT 2019

WCB19NIST

Additional Guidance

Many enterprises lack an approach that integrates cybersecurity standards and enterprise governance of I&T (EGIT) to establish systematic—yet flexible and achievable—governance and management objectives, processes and capability levels to make measured improvements toward cybersecurity goals This publication describes proven practices to anticipate, understand and optimize I&T risk by implementing the US National Institute of Standards and Technology (NIST) Framework for Improving Critical Infrastructure Cybersecurity version 1.1 using COBIT 2019. Features of this publication include:

  • NIST CSF Implementation
  • Correlating CSF guidance with measurable governance and management practices
  • Mapping of CSF steps and activities to COBIT 2019
  • Appendices for quick reference and further considerations

Learn More

Other COBIT Publications

COBIT

Gain additional insight and guidance on leveraging the COBIT framework to create and maintain the most effective governance of enterprise technology and information.

View COBIT 5 Publications

Certification and Training
COBIT

Affirm your ability to optimize enterprise governance of I&T with a globally accepted COBIT® credential.

Prep for COBIT exam success with your choice of training.

Certificate
COBIT 5 Certificates

ISACA’s COBIT 5 credentials affirm holders among the world’s most-qualified enterprise IT governance professionals.
Certificate
COBIT Certificates

Prove your knowledge and understanding of key principles and concepts of COBIT.
Certificate
Implementing the NIST Cybersecurity Framework Using COBIT 2019 Training and Certificate Program

Build on your expertise in not just understanding NIST and COBIT® 2019, but also in implementing the globally accepted frameworks together. Gain the know-how to integrate cybersecurity standards and enterprise governance of Information & technology (EGIT). Intended for COBIT 2019 users with foundational knowledge of the framework and a basic understanding of cybersecurity concepts.
Certificate
COBIT Design and Implementation

COBIT 2019 is a framework for the governance and management of enterprise information and technology (I&T) that supports enterprise goal achievement. This program is intended for more experienced COBIT users who are interested in more advanced use of the framework (i.e., designing governance systems and running governance improvement programs).
COBIT

Learn more about COBIT Credentialing Partners


Learn More

Quick Links

Resources

COBITISACA JournalPress ReleasesResources FAQs
Insights and Expertise
News & Trends
Frameworks Standards and Models