Course Category: Information Controls & Security
Course Duration: 3 Days
Hours: 21 Contact Hours

Course Background

Managing IT as an organisational resource is essential for good business value and risk management. Control Objectives for Information and Related Technology (COBIT) provides best practices in IT governance for IT professionals and managers. COBIT 5 provides a comprehensive set of measures, indicators, processes and control objectives across a broad spectrum of IT processes. This course prepares you for the COBIT 5 Foundation Exam.

What is IT Governance

IT Governance consists of the leadership, organisational structures and processes that ensure IT sustains and extends the organisation’s strategies and objectives. Further, effective IT governance can predict the value an organisation generates from IT.

What is COBIT 5

COBIT 5 is a set of information for the effective implementation of IT governance and management. COBIT 5 is based on five key principles and seven categories of enablers for the governance and management of enterprise IT. The COBIT 5 framework covers the complete spectrum of IT and can be tailored to an organisation’s specific needs. COBIT helps organisations maximise the return on their IT investment and achieve strong alignment between business and IT strategy, all at a level of risk acceptable to the enterprise.

COBIT 5 builds and expands on COBIT 4.1 by integrating other major frameworks, standards and resources, including Val IT and Risk IT from ISACA, ITIL®, and related standards from the International Organisation for Standardisation (ISO).

Learning Objective

  • Prepare for and sit the COBIT 5 Foundation Exam
  • Navigate and apply the COBIT 5 framework for governance and management of enterprise IT
  • Assess the COBIT 5 product architecture and the five key principles
  • Govern and manage IT using the COBIT 5 enablers
  • Evaluate the concepts of the new Process Assessment Model (PAM)

Workshop Activities

  • Evaluating the differences between governance and management
  • Investigating the implementation pain points and triggers
  • Applying COBIT 5 to assess the effectiveness of various processes
  • Assessing people, skills and competencies for successful completion of all activities


Anyone with a background in the governance or management of information and information systems will find this course beneficial. Additionally, as COBIT helps address the needs of all stakeholders across the enterprise by maximising the value from information technology, it is suitable for anyone with a background in the delivery or support of IT systems.

Who Should Attend

This course is valuable for those who want to achieve the COBIT 5 Foundation Certificate or who need COBIT 5 training. This course is also useful for those who want to gain knowledge of the scope and structure of COBIT 5 or want to improve IT Governance in their or their clients’ organisations.

Who Will Benefit

This course is valuable for anyone wishing to achieve the COBIT 5 Foundation Certificate. This course is also useful for those who want to gain knowledge of the scope and structure of COBIT 5 or want to improve IT Governance in their or their clients’ organisations.

Training and Exam Duration

Training: 3 days

The course material shall be issued on the first day of the course during registration.

Exam: 40 minutes duration

Exam Pattern

50 multiple choice questions.

The questions are of differing difficulty and therefore assigned differing amounts of points. The exam is closed-book, i.e. no materials are allowed to be used. The candidate must achieve at least 25 marks or 50% to pass.

Course Content

Overview and key features of COBIT 5

  • The Reasons for the Development of COBIT 5
  • The History of COBIT
  • The Drivers for developing a Framework
  • The Benefits of using COBIT 5
  • The COBIT 5 Format & product Architecture
  • COBIT 5 and other Frameworks

The 5 Principles of COBIT 5

  • Introducing the 5 Principles
  • Principle 1 – Meeting Stakeholder Needs
  • Principle 2 – Covering the Enterprise End-to-End
  • Principle 3 – Applying a Single Integrated Framework
  • Principle 4 – Enabling a Holistic Approach
  • Principle 5 – Separating Governance from Management

The 7 Enablers of COBIT 5

  • Recap & Overview on Principle 4 – Enabling a Holistic Approach
  • Enabler 1 – Principles, Policies and Framework
  • Enabler 2 – Processes
  • Enabler 3 – Organisational Structures
  • Enabler 4 – Culture, Ethics and Behaviour
  • Enabler 5 – Information
  • Enabler 6 – Services, Infrastructure and Applications
  • Enabler 7 – People, Skills and Competencies
  • Appendix – Walk Through on using Goals cascade to scope Processes

Training and Exam Duration

Introduction to COBIT 5 Implementation

  • The Life cycle Approach
  • Inter related Components of the Life cycle
  • Understanding the Enterprise internal and external factors
  • Key success factors for implementation
  • The 7 phases of the Life cycle model explained
  • The 7 Change Enablement Characteristics used in the Life cycle
  • Change Enablement Relationships to the Continual Improvement Life cycle
  • Making the Business Case
  • Appendix : Summary of the differences between COBIT 4.1 and COBIT 5

Process Capability Assessment

  • Introduction and Purpose of the Guide
  • Syllabus Learning Areas & Topics
  • Process Assessment explained:
  • What is a process assessment
  • What is the COBIT Assessment Programme
  • The differences between Capability and Maturity Assessment
  • Differences to the COBIT 4.1 CMM
  • Overview of the COBIT 5 Capability Model & Assessments
  • The Process Reference Model (PRM)
  • The Process Assessment Model (PAM)
  • The Measurement Framework
  • Introduction to the Assessor Training Steps

Exam preparation

  • Exam Tips & Tricks
  • Mock Exam


ISACA is a non-profit, independent association that advocates for professionals involved in information security, assurance, risk management and governance. ISACA engages in the development, adoption & use of globally accepted, industry-leading knowledge & practices for information systems.

More information about ISACA is available at

Course Category: Information Controls & Security
Course Duration: 3 Days
Hours: 21 Contact Hours