COBIT, or Control Objectives for Information Related Technology) is an international standard that defines the requirements for the security and control of sensitive data. It also provides a reference framework. COBIT is a set of best practices for controlling and security sensitive data that measures security program effectiveness and benchmarks for auditing. The open standard comprises an executive summary, management guidelines, a framework, control objectives, an implementation toolset and audit guidelines. According to Analysys Mason, about 8 percent of cloud service providers follow the COBIT security standard.