Accounting Information Security and IT Governance Under COBIT 5 Framework: A Case Study

Abstract

This paper aims to explore the role of applying information technology governance using the COBIT 5 framework in improving the security of accounting information systems. The paper also aims to assess the level of governance of information technology in the Trade Bank of Iraq TBI through COBIT 5 processes, including 4 dimensions of planning and organization, acquisition and implementation, support and delivery, and monitoring. The study uses a qualitative approach through a case study conducted at the Iraqi Bank of Commerce. The results show that applying the COBIT 5 governance mechanisms of information technology reduces data processing risks and improves automated accounting information systems' security. The results also show that the Trade Bank of Iraq can implement the COBIT 5 Framework. Also, the accounting system used in the Bank has all the features of information technology governance that, on the one hand, ensure confidentiality of customer information and, on the other hand, prevent the system from penetrating. The results of the current study provide a better understanding of stakeholders on the nature of IT governance in the light of the COBIT 5 framework and its role in enhancing accounting information security.