Review the following governance models both in the textbook and via a search of library and web resources and answer the related questions below: Control Objectives for Information and Related Technology (COBIT); ISO 27002; Information Technology Infrastructure Library (ITIL); and Operationally Critical Threat, Asset and Vulnerability Evaluation (OCTAVE). You can also use models from NIST’s Framework for Improving Critical Infrastructure Cybersecurity Identify section.
a. Provide an overview of each of the above models, make sure to clearly separate each model
b. Discuss some reasons why an organization may choose one of the governance models over another.