Audit and Assurance

Expand all | Collapse all

IT Governance Framework in accordance with COBIT and CIS Controls

  • 1.  IT Governance Framework in accordance with COBIT and CIS Controls

    Posted 27 Jan, 2020 07:42
    Edited by Yolanda Theophilus 27 Jan, 2020 07:42
    HI Everyone,

    If I wanted to help a company to establish a IT Governance Framework, is there a template that you can provide to help me guide me as to what topic areas to cover? I want to follow the CIS controls so only limit it to the controls that align with the COBIT Framework.

    Does anyone have an example or template of a IT Governance Plan, IT Governance Implementation and IT Governance Model template?

    Thank you,

    ------------------------------
    Yolanda Theophilus
    2019 Online Forum Topic Leader
    Risk and Audit Consultant, CPA, MBA, CISA
    ------------------------------


  • 2.  RE: IT Governance Framework in accordance with COBIT and CIS Controls

    Posted 28 Jan, 2020 16:42
    You can give this a go> https://www.cisecurity.org/wp-content/uploads/2017/03/Poster_Winter2016_CSCs.pdf

    It is a mapping of CIS controls to all major standards including CoBiT 5 which you can use as the foundation for drafting the framework.

    Regards
    Jacques

    ------------------------------
    Jacques Le Roux
    Senior Internal Auditor
    ------------------------------



  • 3.  RE: IT Governance Framework in accordance with COBIT and CIS Controls

    Posted 29 Jan, 2020 06:55
    Thanks for this @Jacques Le Roux this is great.  A bit dated given some of the more recent updates to PCI and NIST CSF but still a great starting point to focus on.
    Best,
    Nina​

    ------------------------------
    Nina Chow
    Managing Director
    ------------------------------



  • 4.  RE: IT Governance Framework in accordance with COBIT and CIS Controls

    Posted 30 Jan, 2020 05:53
    Edited by Yolanda Theophilus 30 Jan, 2020 05:56
    I located this mapping before, thank you. I was wondering if there is an "IT Governance template "that aligns with CIS controls. My focus is to obtain an IT Governance document for management to use as a guide .

    ------------------------------
    Yolanda Theophilus
    2019 Online Forum Topic Leader
    Risk and Audit Consultant, CPA, MBA, CISA
    ------------------------------



  • 5.  RE: IT Governance Framework in accordance with COBIT and CIS Controls

    Posted 29 Jan, 2020 09:25
      |   view attached
    Hi Yolanda,

    Here is a mappig CIS with Cobit 5 and other frameworks...

    Greetings

    ------------------------------
    Hector Jimenez
    IT & Cybersecurity Auditor
    ------------------------------



  • 6.  RE: IT Governance Framework in accordance with COBIT and CIS Controls

    Posted 04 Feb, 2020 01:22
    Hi Hector,

    Thanks for the great share.

    ------------------------------
    Murtuza Syed
    Internal Audit Manager
    ------------------------------



  • 7.  RE: IT Governance Framework in accordance with COBIT and CIS Controls

    Posted 10 Feb, 2020 10:06
    Edited by Yolanda Theophilus 10 Feb, 2020 10:06
    Does anyone happen to have an example of a IT Governance document established by a company to see what it may include?

    ------------------------------
    Yolanda Theophilus
    2019 Online Forum Topic Leader
    Risk and Audit Consultant, CPA, MBA, CISA
    ------------------------------