The European Union recently announced it has selected COBIT (Control Objectives for Information and related Technology), a set of guidelines on IT security and governance, as one of three international standards for its agricultural paying agencies. The other two are the ISO Standard 17799 and Bundesamt für Sicherheit in der Informationstechnik: IT-Grundschutzhandbuch (IT Baseline Protection Manual).
COBIT, which is issued by the IT Governance Institute (ITGI), offers management, users and IS audit, control and security practitioners a reference framework for measuring performance, ascertaining success factors and using maturity models for benchmarking. The EU Directorate General of Agriculture has used the system since 2001, when the office began training the teams that audit operations that impact approximately half of the EU’s total budget, which was about 98 billion Euros last year.
“At that time, we proposed that they use COBIT,” said Georges Ataya, a member of the ITGI steering committee and professor at the Solvay School of Business in Brussles, Belgium, who also helped the Directorate train auditors from the outset. “It took us quite a few months to convince them that COBIT should be used for the training. Then we started to lobby to have them use it as a base for their controls as well. We presented the different aspects to them, showing how each one of the IT processes in COBIT could help them in one or another situation. Today, COBIT is going to allow them to have one common auditing standard that can cover…
Please log in or subscribe to read this article