In 2005, the European Commission selected COBIT as one of the three internationally accepted standards to be used to provide information security and controls over its agricultural paying agencies.
Regulation (EC) No 465/2005 was adopted on 22 March 2005. Paying agencies associated with the European Agricultural Guidance and Guarantee Fund (EAGGF) and, from 2007, its successors – the EAGF (European Agricultural Guarantee Fund) and EAFRD (European Agricultural Fund for Rural Development) – were required to select either COBIT, ISO 17799 or IT-Grundschutz as the basis for their information security.
The European Court of Audit uses COBIT in the performance of its audits, including IT governance reviews. The Val IT framework is recognised and used by the European Parliament IT Directorate, the central IT service provider for the whole of parliament, and Val IT is used to prioritise IT investments and business-as-usual work requests into four different business domains.
COBIT in the public sector
The benefits of COBIT implementation have been achieved by public sector and governmental agencies across Europe. The table below lists where COBIT is used within the regulatory bodies throughout Europe.
- Greece - COBIT framework recognised and standards based on COBIT were adopted by the banking industry
- Lithuania - COBIT is being used by the National Audit Office of the Lithuanian Republic for auditing the IT activities in the government sector. COBIT was translated into Lithuanian as only material in the state language can be used in state-approved methodologies. COBIT is used as the official material for governmental organisations, and private audit and consulting companies, especially if they have business relations with government institutions.
- Poland - COBIT is recognised by the Inspector General of Poland.
- Romania - COBIT has been adopted for internal use within the public sector and government agencies.