COBIT as a Framework for Enterprise Governance of IT

  • Wim van Grembergen
  • Steven de Haes


COBIT (Control Objectives for Information and Related Technologies) is a freely available industry framework that describes a set of best practices for management, control and assurance of information technology, and organizes them around a logical framework based on 34 IT processes. This chapter describes the COBIT framework and explains how it can be leveraged as an instrument for Enterprise Governance of IT.


Control Objective Service Level Agreement Control Practice Maturity Level Process Goal 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

Further Reading

  1. ITGI, 2006a, IT Control Objectives for Sarbanes-Oxley, 2nd Edition, from
  2. ITGI, 2006b, COBIT Mapping – Overview of International IT Guidance, 2nd Edition, from
  3. ITGI, 2007a, COBIT 4.1, from
  4. ITGI, 2007b, IT Assurance Guide, from
  5. Van Grembergen, W. (Ed.), 2004, Strategies for Information Technology Governance. Hershey, PA: Idea Group Publishing. Google Scholar
  6. Van Grembergen, W., Van Brempt, H., and De Haes, S., 2007, Prioritizing and Linking Business and IT Goals in the Financial Sector, in Proceedings of the 40th Hawaii International Conference on System Sciences (HICSS). Google Scholar
  7. Van Grembergen, W., De Haes, S., and Amelinckx, I., 2003, Using COBIT and the Balanced Scorecard as Instruments for Service Level Management, Information Systems Control Journal, vol. 4. Google Scholar
  8. Van Grembergen W., De Haes S., Moons J., 2005, IT Governance: Linking Business Goals to IT Goals and COBIT Processes, Information Systems Control Journal, vol. 4.Google Scholar

Copyright information

© Springer Science+Business Media, LLC 2009

Authors and Affiliations

  • Wim van Grembergen
    • 1
  • Steven de Haes
    • 2
  1. 1.Sint PauwelsBelgium
  2. 2.MalleBelgium

Personalised recommendations