Which of the following best describes the relationship between CobiT and ITIL?

A.
CobiT is a model for IT governance, whereas ITIL is a model for corporate governance.

B.
CobiT provides a corporate governance roadmap, whereas ITIL is a customizable framework for IT service management.

C.
CobiT defines IT goals, whereas ITIL provides the process-level steps on how to achieve them.

D.
CobiT provides a framework for achieving business goals, whereas ITIL defines a framework for achieving IT service-level goals.

Explanation:
C: The Control Objectives for Information and related Technology (CobiT) is a framework developed by the Information Systems Audit and Control Association (ISACA) and
the IT Governance Institute (ITGI). It defines goals for the controls that should be used to properly manage IT and ensure IT maps to business needs, not specifically just security
needs. The Information Technology Infrastructure Library (ITIL) is the de facto standard of best practices for IT service management. A customizable framework, ITIL provides
the goals, the general activities necessary to achieve these goals, and the input and output values for each process required to meet these determined goals. In essence, CobiT
addresses “what is to be achieved,” while ITIL addresses “how to achieve it.”
A is incorrect because, while CobiT can be used as a model for IT governance, ITIL is not a model for corporate governance. Actually, Committee of Sponsoring
Organizations of the Treadway Commission (COSO) is a model for corporate governance. CobiT is derived from the COSO framework. You can think of CobiT as a way to meet
many of the COSO objectives, but only from the IT perspective. In order to achieve many of the objectives addressed in CobiT, an organization can use ITIL, which provides
process-level steps for achieving IT service management objectives.
B is incorrect because, as previously stated, CobiT can be used as a model for IT governance, not corporate governance. COSO is a model for corporate governance. The
second half of the answer is correct. ITIL is a customizable framework that is available as a series of books or online, for IT service management.
D is incorrect because CobiT defines goals for the controls that should be used to properly manage IT and ensure IT maps to business needs, not just IT security needs. ITIL
provides steps for achieving IT service management goals as they relate to business needs. ITIL was created because of the increased dependence on information technology
to meet business needs.