1.信息和相关技术的控制目标(COBIT):
信息和相关技术的控制目标(COBIT)是IT服务治理的框架。 COBIT是指一套实践和指南,可通过开发,实施和持续改进IT治理和管理来帮助管理层最大程度地利用其IT资源。它是由信息系统审核和控制协会(ISACA)创建的。
COBIT的核心组成部分包括:
- 控制目标
- 成熟度模型
- 管理方针
- 流程说明和框架
COBIT的优点:
- 风险最小化
- 业务规模独立
- 环境法规
- 效率与生产力
- 管治
COBIT的缺点:
- 实施不容易
- 需要经验丰富的分析师
- 缺乏连接规格
2.信息技术基础设施库(ITIL):
信息技术基础架构库(ITIL)是用于IT服务管理的框架,有助于使IT服务与业务需求保持一致。它是一组最佳实践和计划,旨在管理组织的IT服务并改善IT服务以更好地满足公司的需求。它由AXELOX创建并注册为商标。
ITIL的核心组件包括:
- 服务策略
- 服务设计
- 服务过渡
- 服务运营
- 持续改善服务
ITIL的优点:
- 更好的风险管理
- 成本透明度
- 改善服务质量
- 框架整合
ITIL的缺点:
- 需要进行广泛的培训
- 实施ITIL的成本很高
- 破坏企业现状
COBIT和ITIL之间的区别:
S.No. | COBIT | ITIL |
---|---|---|
01. | Control Objectives for Information and Related Technology in short called as COBIT. | Information Technology Infrastructure Library in short ITIL. |
02. | It is a framework for the IT service governance. | It is a framework for the IT service management and helps in aligning IT services with the needs of business. |
03. | COBIT is a set of practices and guidelines to help management to get the most out of IT resources by developing, implementing, monitoring and improving technology governance. | ITIL is a set of best practices, planning and selection designed to manage an organizations IT services and improving IT services to better meet the company’s need. |
04. | It is created by the ISACA (Information systems audit and control association). | It is created and trademarked by the AXELOX. |
05. | It focuses on Information technology systems management (ITSM) but it has a wider scope than ITIL. | It also focuses on Information technology systems management (ITSM) but it has a little less scope than COBIT. |
06. | Its main function is to map IT processes. | Its main function is to map IT service level management. |
07. | Core components of COBIT includes Control objectives, Maturity models, Management guidelines, Process descriptions and Framework. | Core components of ITIL includes Service strategy, Service design, Service transition, Service operation and Continuous service improvement also called as 5 principle of ITIL. |
08. | It is mainly used for defining audit and compliance requirements for IT. | It is mainly used for helping to define operational IT service management processes. |
09. | The certificate helps individuals as a knowledgebase in service management and eventually the organization for effective management of IT services. | The certificate helps individuals in their career for performing IT governance roles and eventually the organization for improved customer satisfaction. |
10. | A top down approach and focuses more on IT service governance. | A bottom up approach and focuses more on IT service management. |