COBIT as an Audit Framework:COBIT provides a comprehensive framework for governance, management, and audit of IT processes, aligning IT goals with business objectives.
Why This is Correct:COBIT includes guidelines for auditors to evaluate IT controls and their effectiveness in achieving organizational objectives.
Why Other Options Are Incorrect:
B. PCI-DSS: Focuses on cardholder data security, not a comprehensive audit framework.
C. ISO 27002: Provides best practices for information security but not an audit framework.
D. NIST SP 800-30: Focuses on risk assessments, not audits.
References:EC-Council references COBIT as the preferred framework for conducting IT governance and audit activities.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit