98%(94)92 out of 94 people found this document helpful
This preview shows page 2 - 4 out of 6 pages.
management, information access management, cryptography policy management, physical security management, operational security management, network security management, supplier relationship management, security incident management, security continuity management, and security compliance management. The benefits of the ISO family are that it offers a standardized
list of guidelines for an organization to follow which also overlaps with other frameworks for a comprehensive cybersecurity management program. COBIT 5: COBIT provides enterprise governance and management like no other framework. It is highly accepted around the world as a standard in IT security (Cobit, n.d.). COBIT is a risk management and risk assessment framework that organization use to help secure their information from cyber threats. COBIT is an end-to-end framework with two perspectives on risk, the risk function perspective, and the risk management perspective. The risk function perspective offers organizations the tools they need to sustain efficient and effective risk governance and management system. The risk management perspective offers the organization a risk management perspective to identifying, analyzing, and responding to risk (Ahmed, H. 2017).The 5 functions of COBIT are evaluate, direct, and monitor; align, plan, and organize; build, acquire, and implement; deliver, service, and support; and monitor, evaluate, and assess. Many ofthese functions align perfectly with the ISO family and the NIST frameworks. The benefits of COBIT are optimized risk prevention, and separation of governance and management in the separate domains.