COBiT Flashcards

1
Q

What are the 5 Domains of COBiT

A
Evaluate, Direct, Monitor--EDM
Align, Plan, Organize--APO
Build, Acquire, Implement--BAI
Deliver, Service, Support--DSS
Monitor, Evaluate, Assess--MEA
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

EDM

A

Evaluate Direct and Monitor

Processes for Governance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

APO

A

Align, Plan, and organize

Processes for Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

BAI

A

Build, Acquire, and Implement

Processes for Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

DSS

A

Deliver, Service, and Support

Processes for Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

MEA

A

Ensure governance framework setting and maintenance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

EDMO2

A

Ensure benefits delivery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

EDMO3

A

Ensure risk optimization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is COBIT

A

CoBIT stand for Control Objectives for Information and Related Technologies. It’s a good-practice framework created by ISACA (Information Systems Audit and Control Association) for IT management and governance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the Latest Version of CoBIT

A

CoBIT 5, was released 2012, with the Information Security addon released later in the same year

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Corporate ICT Governance AS 8015 – 2005 defines corporate ICT governance as

A

The system by which the current and future use of ICT is directed and controlled. It involves evaluating and directing plans for the use of ICT to support and monitor the organisations use to accomplish plans. It also includes strategies and policies for ICT within an organisation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is ISO38500

A

Describes the governance of IT without going into details on processes and management systems. The framework is made up of definition, principles, model, and acceptable use of it. It also provides advise to those guiding, informing or assisting directors.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the six guiding principles for effective , efficient and acceptable use of IT.

A
 Responsibility
 Strategy
 Acquisition
 Performance
 Conformance
 Human behaviour
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is CoBIT Framework

A

This is a framework with series of principles that links business goals to IT goals.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

what are the 12 COBIT 5 for Information Security principles

A

A – Support the Business
 A1 – Focus on the business
 A2 – Deliver quality & value to the stakeholders
 A3 – Comply with relevant legal & regulatory requirements
 A4 – Provide timely & accurate information on security performance
 A5 – Evaluate current & future information threats
 A6 – Promote continuous improvement in Information Security
 B – Defend the Business
 B1 – Adopt a risk-based approach
 B2 – Protect classified information
 B3 – Concentrate on critical business applications
 B4 – Develop systems securely
C – Promote Responsible Security Behaviour
 C1 – Act in a professional & ethical manner
 C2 – Foster a security-positive culture

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

what are CoBIT Enablers

A

The enablers are factors that individually and collectively influence governance
and management over enterprise IT

17
Q

What are the 7 categories of COBIT enablers

A
  1. Principles, Policies & Frameworks
  2. Processes
  3. Organisational Structures
  4. Culture, Ethics & Behaviour
  5. Information
  6. Services, Infrastructure & Applications
  7. People, Skills & Competencies
    Enablers 5, 6 & 7 are resources of various kinds