Is your organisation implementing the COBIT IT governance framework and/or the ITIL Suite of service management best practice?
Closely aligned with ISO27001, the ISO/IEC 27002:2005 standard serves as a practical guideline for all members of staff as they initiate, implement and maintain information security. An understanding of the best practice guidance as outlined in ISO27002 is essential to achieving the goals of COBIT and ITIL service management programmes.
COBIT is an IT governance control framework that helps organisations meet today’s business challenges in the areas of regulatory compliance, risk management and aligning IT strategy with organisational goals. Although information security is one of these goals, COBIT does not supply any guidance to how to achieve this objective. This is provided by the ISO27002 Standard which draws on the experience of practitioners in over 40 countries to set out best practice for the delivery of an effective information security programme.
If you are considering implementing COBIT in your organisation, we can also recommend that you consider attending our COBIT Foundation training course. Please click here for further details.