COBIT 5 has now become a business necessity for many companies worldwide due to its effective approach to aligning IT with business goals. It is particularly popular in South Africa where organisations are required to establish enterprise architecture management as a key business capability according to the South African government. Guidance for implementing COBIT can be found in the official COBIT manuals.


What is COBIT?

COBIT 5 is the most recent version of ISACA's globally adopted framework for the governance and management of enterprise IT. COBIT 5 builds on the previous version, COBIT 4.1, by including the governance activity elements of ISO 38500 (Corporate Governance of IT) and the additional activities of other ISACA frameworks including Val IT, Risk IT, BMIS and ITAF as well as other areas of IT governance.

COBIT 5 enables organisations to meet the needs of business challenges on the subjects of regulatory compliance, risk management and alignment of IT strategy with organisational goals. The COBIT framework is documented in the COBIT 5 Manual.

COBIT 5 addresses the latest thinking on the governance of information technology, and offers internationally accepted principles, analytical tools and models to build trust in, and deliver value from, information systems.

Download our COBIT 5 Briefing Paper

For a more in-depth view of COBIT and how it has been used to benefit South African organisations, download a free copy of our latest briefing paper >>


Benefits of using COBIT

The COBIT framework can help organisations of all sizes to:

  • maintain high-quality information to aid decision making;
  • achieves strategic goals and deliver business advantages through the effective and innovative use of IT;
  • achieve operational excellence through reliable, economical application of technology;
  • maintain IT-related risk at an acceptable level;
  • optimise the cost of IT services and technology;
  • supports compliance with relevant laws, regulations, service level agreements and policies; and
  • help maximise the trust in, and value from, enterprise information and technology.

By implementing COBIT, organisations can be assured that the governance of IT is supported, ensuring that IT is aligned with business to maximum benefit, and that IT resources are used responsibly and IT risks are managed appropriately.

According to the international IT governance association ISACA, COBIT is essential for companies as it simplifies their efforts by implementing a single organisation-wide Governance, Risk and Compliance (GRC) framework.

COBIT 5 is an important IT governance milestone for all companies, whatever their level of maturity: it can provide a roadmap for a fast-track approach to implementation for new companies, as well as giving a better handle to the Governance of Enterprise IT (GEIT) for companies which already have a GRC environment in place.


How is COBIT structured?

COBIT 5 clearly differentiates between the governance and management of IT, and works around five principles:

  • COBIT Principle 1: Meeting Stakeholder Needs
  • COBIT Principle 2: Covering the Enterprise End-to-End
  • COBIT Principle 3: Applying a Single Integrated Framework
  • COBIT Principle 4: Enabling a Holistic Approach
  • COBIT Principle 5: Separating Governance from Management

Additionally, there are seven 'enablers' and a Process Reference Model (PRM) which identifies five sets of processes:

  • COBIT Process 1: Evaluate, Direct and Monitor
  • COBIT Process 2: Align, Plan and Organise
  • COBIT Process 3: Build, Acquire and Implement
  • COBIT Process 4: Deliver, Service and Support
  • COBIT Process 5: Monitor, Evaluate and Assess

COBIT 5 is composed of 37 processes in total: five for governance and 32 for management. Unlike COBIT 4.1, which used a process maturity model, COBIT 5 uses a Process Assessment Model (PAM), designed in accordance with the set of technical standard ISO15504.

COBIT 5 is a more sophisticated and complex framework than COBIT 4.1. To learn more about COBIT, read the full set of COBIT 5 publications.


COBIT 5 Resources

IT Governance SA provides a wide range of COBIT information and resources for South African IT professionals, including COBIT books and toolkits. Below are some suggestions:

  • Governance and Internal Controls for Cutting Edge IT: This new book wil help you minimise risk and maximise returns from new technologies, using the COBIT 5 framework.
  • COBIT 5 Documentation Toolkit: Simplify the process of COBIT implementation with this purpose-built toolkit. It provides documentation templates that cover all 37 COBIT processes, and ready-to-use policies and procedures. This toolkit will save you time and money when implementing COBIT as it will accelerate the implementation of IT governance while helping you to avoid dead-ends. Take a free trial version of the COBIT 5 Documentation Toolkit.
  • COBIT Manual: The core COBIT manual provides all the details of the COBIT framework.
  • COBIT Publication Suite: The entire set of COBIT 5 publications from ISACA.

We deliver books and tools in South Africa with international shipping costs that are lower than ever. To find out more click here.


COBIT 5 training courses

We provide classroom and in-house APMG-accredited COBIT 5 Foundation course and COBIT Implementation course for South African organisations, where you will have the opportunity to discuss the framework with the course tutor and explore issues more in-depthly.

Our courses will build your knowledge and understanding of the COBIT 5 framework and help you understand how effective COBIT implementation can help your organisation achieve its strategic IT goals.

For more information on our COBIT and IT governance classroom and in-house courses please contact us on 00 800 48 484 484 or email

Please note that our training courses are delivered in English only.


You may be also interested in: