Module 2: Principles

Question 1

Which two sets of principles are COBIT2019 based on?

Answer 1

1. Governance System Principles: Principles describing the core requirements of a governance system for Enterprise Information and Technology
2. Governance Framework Principles: Principles of a Governance Framework that can be used to build a governance system for the enterprise.

Question 2

Name the 6 Governance System Principles

Answer 2

1. Provide Stakeholder Value
2. Holistic Approach
3. Dynamic Governance System
4. Governance Distinct from Management
5. Tailored to Enterprise Needs
6. End-to-End Governance System

Question 3

Name the 3 Governance Framework Principles

Answer 3

1. Based on a Conceptual Model
2. Open and Flexible
3. Aligned to Major Standards

Question 4

Describe Governance System Principle: Provide Stakeholder Value

Answer 4

Each enterprise needs a governance system to satisfy stakeholder needs and to generate value from the use of IandT. Value reflects a balance between Benefits / Risks / Resources. Enterprises needs an actionable strategy and governance system to realize this value

Question 5

Describe Governance System Principle: Holistic Approach

Answer 5

Governance system for IandT is build from different components and different types that works together in a holistic way

Question 6

Describe Governance System Principle: Dynamic Governance System

Answer 6

Governance system must be dynamic. When any of the design factors change, e.g., change in strategy or technology, the impact on the EGIT should be considered. A dynamic view of EGIT will ensure viable and future proof EGIT

Question 7

Describe Governance System Principle: Governance Distinct from Management

Answer 7

A governance system should clearly distinguish between governance and management activities and structures.

Question 8

Describe Governance System Principle: Tailored to Enterprise Needs

Answer 8

The governance system should be customized to the enterprise’s needs, using design factors as parameters to customize and prioritize the governance components

Question 9

Describe Governance System Principle: End-to-End Governance System

Answer 9

Governance system should cover the Enterprise end-to-end, not only the IT function but all technology and information processing within the Enterprise, regardless of where such processing happens.

Question 10

Describe Governance Framework Principle: Based on Conceptual Model

Answer 10

A governance framework should be based on a conceptual model, identifying the key components, and relationships among them to allow consistency and automation

Question 11

Describe Governance Framework Principle: Open and Flexible

Answer 11

A governance framework should be open and flexible, it should allow addition of new content and ability to address new issues in the most flexible way whilst maintaining integrity and consistency.

Question 12

Describe Governance Framework Principle: Aligned to Major Standards

Answer 12

A governance framework should be aligned to the relevant major standards, frameworks and regulations

Question 13

Name the 4 areas where COBIT2019 improves on prior versions

Answer 13

1. Flexibility and openness: Design Factors enables COBIT2019 to be tailored. The architecture enables adding focus areas or modifying existing ones
2. Currency and Relevance: The model supports referencing the latest IT standards and compliance regulations
3. Prescriptive application: The model and tailoring allows for COBIT to be prescriptive governance system
4. Performance management of IT: The structure of COBIT’s performance management model is integrated into the conceptual model. Maturity and Capability concepts are introduced for better alignment with CMMI (Capability Maturity Model Integration)