Objectives for Information and Related Technology (COBIT) framework. COBIT consolidates control standards from many different sources into a single framework that allows (1) management to benchmark security and control practices of IT environments, (2) users to be assured that adequate IT security and controls exist, and (3) auditors to substantiate their internal control opinions and to advise on IT security and control matters. The COBIT 5 framework describes best practices for the effective governance and management of IT. COBIT 5 is based on the following five key principles of IT governance and management. These principles help organizations build an effective governance and management framework that protects stakeholders investments and produces the best possible information system.