Purpose of the ISO 27002 Framework: The objective of the ISO 27002 standard is to provide the necessary guidance to organizations wishing to develop an information security program. It uses best practices to improve the reliability of information security in interorganizational relationships. (COBIT Mapping of ISO, 2006, p. 18).COBIT: The goal of COBIT is to develop an IT governance control framework that is not only current but globally accepted by IT professionals and business leaders. 'business. (COBIT Mapping of NIST, 2007, p. 7).NIST: The purpose of NIST SP800-53 is to provide guidance to U.S. government agencies for identifying information systems security controls. The rules and recommendations apply to all parts of an information system that deal with the storage, management, or reporting of government data. (COBIT Mapping of NIST, 2007, p. 18).ITIL: The goal of ITIL is to design a low-cost, efficient, and vendor-neutral standard for IT services, based on best practices, improving customer satisfaction and can be rolled out in stages.3. Strengths of