When it comes to small and medium sized enterprises (SMEs), there is no one-size-fits-all approach to governance for enterprise information and technology. ISACA’s new publication, COBIT for Small and Medium Enterprises, provides tailored guidance on developing and implementing governance practices to SMEs that have limited in-house IT skills and/or capacity, lack complex IT infrastructure, are cost conscious, have a short span of control and outsource more complex tasks.
The guide is geared toward organizations with up to 250 full-time employees in which 30 to 70 employees work daily with IT systems and services, including business managers, IT managers, quality or security professionals and internal auditors.
COBIT for Small and Medium Enterprises details how to start an information and technology governance program, COBIT components, the structure of the COBIT governance and management objectives, and shares a practical example using the publication. The publication serves as a starting point and a working guide to develop a tailored enterprise governance system for information and technology.
COBIT for Small and Medium Enterprises can be downloaded at https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004L2noEAC. Additional COBIT resources and publications can be found at www.isaca.org/resources/cobit.