Which of the following represents the BEST reason for an organization to use the Control Objectives for Information and Related Technology (COBIT) as an Information Technology (IT) framework?
A.
It allows executives to more effectively monitor IT implementation costs
B.
Implementation of it eases an organization’s auditing and compliance burden
C.
Information Security (IS) procedures often require augmentation with other standards
D.
It provides for a consistent and repeatable staffing model for technology organizations
COBIT (Control Objectives for Information and Related Technology) provides a comprehensive framework for managing and governing IT. It focuses on aligning IT operations with organizational goals, streamlining audit readiness, and supporting regulatory compliance.
Auditing and Compliance Burden:
COBIT includes control objectives and guidelines that map directly to compliance requirements (e.g., SOX, GDPR). EC-Council CISO highlights the importance of frameworks like COBIT in reducing compliance complexity and ensuring consistent implementation of controls.
Why COBIT Is the Best Choice:
It ensures alignment between IT objectives and business goals.
Facilitates efficient internal and external audits by standardizing processes.
Reduces redundant work by integrating compliance and operational controls.
Alignment with EC-Council CISO Principles:
This option aligns with the EC-Council CISO’s focus on efficiency and risk-based compliance management.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit