1. 信息和相关技术(COBIT)的控制目标:
信息和相关技术的控制目标 (COBIT) 是 IT 服务治理的框架。 COBIT 是指一套实践和指南,通过开发、实施和持续改进 IT 治理和管理,帮助管理层充分利用其 IT 资源。它由信息系统审计和控制协会 (ISACA) 创建。
COBIT 的核心组件包括:
- 控制目标
- 成熟度模型
- 管理指引
- 流程描述和框架
COBIT 的优点:
- 风险最小化
- 业务规模 独立性
- 环境法规
- 效率和生产力
- 治理
COBIT 的缺点:
- 不易实施
- 需要有经验的分析师
- 缺乏连接规范
2. 信息技术基础设施库(ITIL):
信息技术基础架构库 (ITIL) 是 IT 服务管理的框架,有助于使 IT 服务与业务需求保持一致。它是一组旨在管理组织 IT 服务和改进 IT 服务以更好地满足公司需求的最佳实践和规划。它由 AXELOX 创建并注册商标。
ITIL 的核心组件包括:
- 服务策略
- 服务设计
- 服务过渡
- 服务运营
- 持续改进服务
ITIL的优点:
- 更好的风险管理
- 成本透明
- 提高服务质量
- 框架集成
ITIL 的缺点:
- 需要广泛的培训
- 实施 ITIL 成本高昂
- 颠覆企业现状
COBIT 和 ITIL 的区别:
S.No. | COBIT | ITIL |
---|---|---|
01. | Control Objectives for Information and Related Technology in short called as COBIT. | Information Technology Infrastructure Library in short ITIL. |
02. | It is a framework for the IT service governance. | It is a framework for the IT service management and helps in aligning IT services with the needs of business. |
03. | COBIT is a set of practices and guidelines to help management to get the most out of IT resources by developing, implementing, monitoring and improving technology governance. | ITIL is a set of best practices, planning and selection designed to manage an organizations IT services and improving IT services to better meet the company’s need. |
04. | It is created by the ISACA (Information systems audit and control association). | It is created and trademarked by the AXELOX. |
05. | It focuses on Information technology systems management (ITSM) but it has a wider scope than ITIL. | It also focuses on Information technology systems management (ITSM) but it has a little less scope than COBIT. |
06. | Its main function is to map IT processes. | Its main function is to map IT service level management. |
07. | Core components of COBIT includes Control objectives, Maturity models, Management guidelines, Process descriptions and Framework. | Core components of ITIL includes Service strategy, Service design, Service transition, Service operation and Continuous service improvement also called as 5 principle of ITIL. |
08. | It is mainly used for defining audit and compliance requirements for IT. | It is mainly used for helping to define operational IT service management processes. |
09. | The certificate helps individuals as a knowledgebase in service management and eventually the organization for effective management of IT services. | The certificate helps individuals in their career for performing IT governance roles and eventually the organization for improved customer satisfaction. |
10. | A top down approach and focuses more on IT service governance. | A bottom up approach and focuses more on IT service management. |