Paper Harmonizes COBIT, ITIL, and ISO 17799

ITGI and the UK government's Office of Government Commerce (OGC) have released a paper that shows how ITIL and ISO 17799 can be mapped up under the COBIT framework.  This seems like a valuable thing to me, since one of the main complaints about COBIT (from an IT manager's perspective), is that it is not detailed enough.  By mapping ITIL and ISO to COBIT, more detailed guidance is provided for the two very important parts of the framework: security and operations.

You can learn more about this paper at ISACA's website.  The URL is: https://www.isaca.org/Template.cfm?Section=Home&CONTENTID=22493&TEMPLATE=/ContentManagement/ContentDisplay.cfm

Comments

• Anonymous
  March 20, 2006
  Just had a look at this paper and it's brilliant.  Ok, maybe I've been in the ITIL, COBIT, 17799 cloud for too long, but I've been looking for something like this for awhile.
  
  Schlarg, CISSP
• Anonymous
  July 09, 2007
  I also believe that complying with ISO 17799 regulations can help complying with COBIT 4.0 along with many other regulations and standards also. A crosswalk between different regulations poster from Symantec is a very useful tool. This poster is crosswalk between: Sarbanes Oxley, HIPAA, Payment Card Industry (PCI), GLBA, NERC standards CIP and PIPEDA (Canada) http://www.compliancehome.com/symantec/