A process of collecting and evaluating evidence (i.e. an audit) to determine whether a computer system has been designed to maintain data integrity and safeguard assets, and whether it allows organisational goals to be achieved effectively, and resources used efficiently. Source: INTOSAI
An audit that evaluates the IT processes and structures against best practices. CobiT is a framework of good practices for Information Technology.
A formal, independent and systematic assessment of the IT system that must meet specific criteria such as effectiveness, integrity, confidentiality, completeness, availability, compliance, reliability.