Control Objectives for Information and Related Technologies
ISACA's framework for the governance and management of enterprise IT. It helps boards and executives ensure IT delivers value, manages risk, and stays aligned with business goals through defined objectives and maturity assessments. Auditors frequently use it as the yardstick for evaluating IT governance.