COBIT Compliance Solution

COBIT provides a process framework for information system governance. It helps organizations develop a control structure to link their IT objectives with business requirements. COBIT breaks down the control structure into four major domains:

• Planning and Organization
• Acquisition and Implementation
• Delivery and Support
• Monitoring

Benefits of MetricStream IT GRC Solution

• Provides an out-of-the-box COBIT GRC library with:
  • Risk and control assessment questionnaires and surveys for all domains
  • Audit questionnaires
  • Policies and content mapped to domains for faster implementation
• Integrates with UCF controls for managing updates to the COBIT control framework
• Harmonizes COBIT controls for multiple IT governance and regulatory compliance programs such as BASEL, AML, PCI, and HIPAA
• Integrates COBIT risks, controls, and policies with assets to manage compliance security
• Supports integration of the COBIT library with systems for managing threats, vulnerabilities, identities, and IT operations
• Generates reports for COBIT maturity assessments, and heat-maps for the overall IT GRC program