Purpose of the ISO 27002 framework: The purpose of ISO 27002 is to provide the necessary guidance to organizations interested in developing an information security program. Use best practices to improve information security assurance when dealing with interorganizational relationships. (COBIT Mapping of ISO, 2006, p. 18).COBIT: The purpose of COBIT is to develop a framework for IT governance control that is not only current but globally accepted by IT professionals and business leaders. (COBIT Mapping of NIST, 2007, p. 7).NIST: The purpose of NIST SP800-53 is to provide U.S. government agencies with guidance for identifying security controls for information systems. The rules and recommendations apply to all parts of an information system that store, manage, or communicate government data. (COBIT Mapping of NIST, 2007, p. 18).ITIL: The purpose of ITIL is to design a low-cost, efficient, vendor-neutral standard for IT services that is based on best practices, improves customer satisfaction, and can be distributed in phases.3. Strengths of