CobiT / ISO 20000 / ITIL / ISO 27001



Hi,

My first question is:
Between CobiT / ISO 20000 / ITIL / ISO 27001, who is the best, who
is the most easy to implement?

Firstly a company can get certified to ISO 20000 and ISO 27001 which
are internationally acclaimed standards and rest ITIL and Cobit are
framework which states the best practices.

Just to give a brief about the various frameworks and standards:

ISO 27001 is a standard which explains on the security framework and
the controls to be selected on the basis of the Risk assessment or gap
analysis done.It is a people process technology standard which
concentrates on all three facets ie people process and technology at a
macro level.It also magnifies on putting a management system in place.

ISO 20000 is a standard which focuses on the IT service management.It
is an integrated process approach to effectively deliver managed
services to meet the business and customer requirements.

ITIL or Information technology infrastructure library provides a
framework with detailed description of a number of important IT
practices with comprehensive checklists, tasks and procedures that can
be tailored to any IT organization.

The Control Objectives for Information and related Technology (COBIT)
is a set of best practices ie framework for information technology
(IT) management created by the Information Systems Audit and Control
Association.COBIT provides managers, auditors, and IT users with a set
of generally accepted measures, indicators, processes and best
practices to assist them in maximizing the benefits derived through
the use of information technology and developing appropriate IT
governance and control in a company.


So depending on the business requirement and current scenario you can
decide on the certification or the framework.

• Project management guidle ?

PMP can be used a project management guide .


Thanks and Regards,

Harshal Mehta CISM CEH
Consulting Division|Wipro Limited
Mumbai
Mobile : + 91 9819066601