• ITIL provides a guide to improve the management process to make an organization more effective and efficient. This hopes to improve efficiency and affect the bottom line by providing an organization with a comprehensive view. B4. Evaluate the weaknesses of each framework.• ISO 27002 was established to explicitly cover IT security issues and not the full range of IT functions. • COBIT is designed to be a comprehensive IT governance program and does not provide a detailed security methodology. It is designed to adopt best practices and does not take into account information security specifics.• NIST publications are very narrow in scope and an organization must combine multiple publications to cover all bases.• ITIL is a guide to improve the management process, not to provide details on information security. The improvement process is based on ISO standards and refers users to ISO for ISMS-related questions. (ISACA, 2008) B5. Discuss the certification and accreditation process of