[摘要] ERP applications have evolved into enterprise-wide applications, which are generallyacknowledged today as a critical component in an organisation's information strategy.When implementing an ERP application, the control and governance of all IT processesare critical to ensure that value is delivered, risks are managed and that the investmentin IT (ERP) delivers a reasonable return.It should, therefore, be important to focus on mitigating IT process risks that have animpact on the ERP environment, so that the level of residual risk is acceptable andaligned with the business objectives.This assignment focuses on using the generally accepted IT framework, COBIT (ControlObjectives for Information and related Technology), as governance and control model.The criticality of each COBIT control objective (IT process) is evaluated by applying theCOBIT control objectives in an ERP environment. Specific reference is also made toQmuzik as an ERP application.By applying COBIT in an ERP environment, the most critical IT processes applicable toERP are identified, in order to ensure that the minimum process controls for these ITprocesses are designed and implemented.