Compliance: COBIT
Control Objectives for Business & Related Technology (COBIT), is a guide of best practices for audit and risk management of Information Systems
COBIT is used as a support for IS audit and control by many private and public enterprises and organizations.
COBIT allows evaluation and control of the information environment so that it constantly contributes to the companies objectives.
COBIT depicts all information system by 34 processes regrouped into 4 domains:
- Planning and organization (PO)
- Acquisition and implementation (AI)
- Delivery and support (DS)
- Monitoring (M)
IS Decisions proposes a range of software solutions that will support certain of these processes:
| COBIT Process | IS Decisions Aptitude | IS Decisions Solution | IS Decisions solution's features |
|---|---|---|---|
| PO1 - Define a strategic IT plan |
Know | WinReporter | Search, report and archive configuration settings |
| PO2 - Define the information architecture |
Know | WinReporter | Search, report and archive configuration settings |
| PO8 Ensure compliance with external requirements |
All | All | IS Decisions solutions allow organizational and/or regulatory compliance |
| AI2 - Acquire and maintain application software |
Know | WinReporter | Inventaire exhaustif des applications |
| Search, report and archive configuration settings | |||
| AI3 Acquire and maintain technology infrastructure |
Know | WinReporter | Comprehensive hardware, software and system audit for Windows resources. |
| Report permissions applied to files, folders and shares | |||
| Report applied hotfixes | |||
| Search, report and archive configuration settings | |||
| AI5 - Install and accredit systems |
Know | WinReporter | Comprehensive hardware, software and system audit for Windows resources. |
| AI6 Manage changes |
Control | UserLock | Identification of users connected to the environment |
| Search, report and archive user connectivity | |||
| FileAudit | Identification of accesses to a file or folder | ||
| Search, report and archive file and folder accesses | |||
| Act | RemoteExec | Remote application execution | |
| Remote system action execution | |||
| Resource updating | |||
| DS3 - Manage performance and capacity |
Know | WinReporter | Comprehensive hardware, software and system audit for Windows resources |
| DS5 Ensure systems security |
Know | WinReporter | Search, report and archive security settings |
| Report applied security hotfixes | |||
| Report permissions applied to files, folders and shares | |||
| Detection of unauthorized/illegal software | |||
| Control | UserLock | Identification of users connected to the environment | |
| Session duration per user | |||
| Disconnect or lock a user account | |||
| Computer access restriction for specific user accounts/groups | |||
| FileAudit | Identification of users whose access has been denied to a file or folder | ||
| Search, report and archive user access to files or folders | |||
| EvenTrigger | Administrator alert in case of suspicious behavior | ||
| Act | RemoteExec | Remote installation of security hotfixes by batch | |
| DS8 Assist and advise IT customers |
Know | WinReporter | Search, report and archive environment changes |
| Report hardware, software and system settings for a resource | |||
| Control | UserLock | Identification of users connected to the environment | |
| Session duration per user | |||
| Disconnect a user | |||
| FileAudit | Identification of users accessing files or folders | ||
| Identification of the type of access required by a user | |||
| Search, report and archive user access to files or folders | |||
| DS9 Manage the configuration |
Know | WinReporter | Comprehensive hardware, software and system audit for Windows resources. |
| Search, report and archive configuration settings | |||
| Report permissions applied to files, folders and shares | |||
| Report applied hotfixes | |||
| DS10 Manage problems and incidents |
Know | WinReporter | Search, report and archive configuration settings |
| Control | EvenTrigger | Windows event log monitoring | |
| Administrator alert upon incident detection | |||
| Automatic action execution in response to an incident | |||
| Search, report and archive incidents | |||
| Act | RemoteExec | Corrective action execution | |
| Settings or configuration modification | |||
| DDS11 Manage Data |
Know | WinReporter | Comprehensive hardware, software and system audit for Windows resources. |
| Search, report and archive configuration settings | |||
| Report permissions applied to files, folders and shares | |||
| S1 Monitor the process |
Control | EvenTrigger | Windows event log monitoring |
| Administrator alert upon incident detection | |||
| Automatic action execution in response to an incident | |||
| Search, report and archive incidents |