What is COBIT®?

COBIT® is a globally accepted framework, providing an end-to-end business view of the governance of enterprise IT. It is driven by thought leadership and guidance from business, IT and governance experts around the world.

COBIT® is the only business framework for the governance and management of enterprise IT. It incorporates the latest thinking in enterprise governance and management techniques and provides globally accepted principles, practices, analytical tools and models to help increase the trust in, and value from, information systems.

The COBIT® framework describes seven categories of enablers:

Principles, Policies & Frameworks

The vehicle to translate desired behavior into practical guidance for day-to-day management.


Describes an organized set of activities to achieve certain objectives.

Organizational Structures

The key decision-making entities in an enterprise.

Culture, Ethics & Behavior

These traits of individuals and the enterprise are a major success factor in governance activities.


Required for keeping the organization running and well-governed.

Services, Infrastructure & Applications

Includes the technology that provides the enterprise with IT processing and services.

People, Skills & Competencies

Required for successful completion of all activities and for making correct decisions and taking corrective actions.

Where did COBIT® come from?

COBIT® is based on research that was overseen by both ISACA’s Knowledge Board and Framework Committee. The detailed results and deliverables were quality-controlled throughout the development process by a dedicated task force of experienced volunteer professionals.

A draft design document was issued for public exposure and the feedback was integrated into the development work to produce the final COBIT® products. Before being issued, the draft development products were distributed to more than 100 subject matter experts around the world to obtain their professional review.

Once ready, draft versions of COBIT® were made available to the public for review. Comments were received, suggesting further improvements for consideration. Survey questions concerning the level of satisfaction of the work at the draft stage were included in the public exposure activity. Based on the review comments, the development team made changes as appropriate.

The final product was approved by COBIT® Task Force members, the Framework Committee and the Knowledge Board.

Who is COBIT® for?

Enterprises of all sizes, whether commercial, not-for-profit or in the public sector can benefit from COBIT®.

COBIT® is about creating optimal value from IT by maintaining a balance between realizing benefits and optimizing risk levels and resource use. The framework addresses both business and IT functional areas across an enterprise and considers the IT-related interests of internal and external stakeholders.

It helps enterprises:

  • Maintain high-quality information to support business decisions.
  • Achieve strategic goals and realize business benefits through the effective and innovative use of IT.
  • Achieve operational excellence through reliable, efficient application of technology.
  • Maintain IT-related risk at an acceptable level.
  • Optimize the cost of IT services and technology.
  • Support compliance with relevant laws, regulations, contractual agreements and policies.

What online resources are available for COBIT®?

The COBIT® 5 home page on ISACA's web site is your one-stop resource for IT governance subject matter. It includes:

  • The COBIT® 5 product family.
  • COBIT® implementation and use discussions in ISACA's Knowledge Center.
  • Frequently asked questions (FAQs).
  • COBIT® 5 news.
  • Videos to learn what experts have to say about COBIT® 5.
  • Documents that can be customized for speeches and presentations.

Many of these resources are free to non-members of ISACA (such as the COBIT® 5 Framework and Toolkit). Some can only be accessed with a valid ISACA membership.

Click here for more information.

What is the COBIT® course roadmap?