Fathimatus Zahrotun Nisa',Ganes Dwi Febrianti,Navy Nurlyn Ajrina

DOI: https://doi.org/10.47065/bulletincsr.v4i1.313

2023-12-13

Abstract:The use of Information Technology (IT) is an important part of all business activities, especially in the service sector. It is important to ensure the security, availability and integrity of their systems. The impact of failure in IT Risk Management greatly influences success. The implementation of IT Risk Management is needed to be able to help companies in the event of losses. In its use, a framework is needed that functions to identify, evaluate and manage existing risks. Therefore, this research will show the COBIT framework that is suitable for managing existing risk management. This research was carried out using the Systematic Literature Review method which started from the stages of formulating research questions, literature search, literature selection, data extraction and discussion aimed at answering Research Questions. In this research, 25 articles were found which were used as literature sources. The research results show that COBIT 2019 is the version of COBIT most often used in IT Risk Management in the industrial service sectors. In implementing COBIT, companies face various challenges such as lack of in-depth understanding of COBIT, lack of work process documentation and lack of operational standards for risk control and incompatibility of IT strategy with company strategy. This research also found that there are 8 points of COBIT implementation strategy to help service industry companies achieve organizational goals more effectively and efficiently through IT risk management.

Samsinar Samsinar,Rudolf Sinaga

DOI: https://doi.org/10.19184/bst.v10i2.30325

2022-06-28

BERKALA SAINSTEK

Abstract:Reliable and up-to-date information services are one of the parameters for the achievement of an organization's performance, including for a university, which is currently required to be able to adapt to technological advances to produce graduates who can master information technology to support the competence of their respective fields. The curriculum changes launched by the current government are also proof that the application of information technology in higher education is a must. Seeing this, universities have a difficult task, especially at the implementation stage of implementing information technology, because they must prepare not only infrastructure but also human resources who can develop good information system governance. Therefore it is necessary to carry out an IT governance audit. From the results of observations made, XYZ College has utilized information technology in academic services and other information services. However, it was found that information technology governance does not yet have a standard so that it is considered not to be able to meet the desired goals, and instead will cause various problems including uncontrolled operational costs and other problems. The purpose of this study is to measure the performance of information technology governance at XYZ College using the COBIT 2019 framework. Based on the results of an audit conducted from 7 EGIT components, namely processes, organizational structure, information flow and items, people skills and competencies, policies and procedures, culture, ethical behavior, and service infrastructure and application are on average at level 3, it can be concluded that the application of information technology has been running, the infrastructure is adequate but does not have good governance procedures or standards. It is recommended that XYZ Higher Education make standards for information technology governance as well as periodic evaluations of the use of all components of information technology, both software, hardware, and brainware.

Nurhaflah Soraya,Iskandar Muda,Eliyah A M Sampetoding

DOI: https://doi.org/10.36733/jia.v1i2.7753

2023-12-01

Abstract:Information Systems Audit has a main role in the value of any organization from developing countries such as integrity, reliability, security, and privacy. Many researchers are interested in the topic of information systems audit due to the large number of recent business failures. Some research focuses on the current cases from developing countries so this research will give a comprehensive overview of information systems audit. Research gap in the existing literature raised the following research question: What are the difficulties and challenges experienced by developing countries in terms of Information Systems Auditing? The narrative literature review for information systems research was undertaken in line with the theory approach to systematic review. This research analyzed a number of categories that aligned with the grand theories related to difficulties and challenges in the implementation of the Information Systems Audit. In conclusion, this literature review shows that the countries face various challenges and difficulties regarding Information Systems Audit which consists of legislation and policies, culture, education, and human resources.

Marco Viriyatama Lim,Melissa Indah Fianty

DOI: https://doi.org/10.46729/ijstm.v4i5.955

2023-09-27

Abstract:A retail company faced challenges such as network issues, unreliable third-party databases, and a lack of employee understanding of input transactions and the introduction of new products or services. The research employed interviews and questionnaires to address these issues and assess the company's information technology governance using the 2019 COBIT framework. The findings would help identify appropriate processes to address the company's difficulties. The prioritized domains included APO12 - Risk Management, BAI03 - Solution Identification and Development, BAI06 - IT Change Management, and BAI10 - Configuration Management. The research revealed that APO12 reached level 3 (highly achieved), while BAI03 and BAI06 reached level 4 (significantly achieved), and BAI10 achieved level 4 (completely achieved), aligning with the company's expectations. These results determine the company's IT governance level and have the potential to enhance its capabilities.

Cris Kuntadi,Cipto Juwanto,Muhammad Irvan Zakaria

DOI: https://doi.org/10.38035/dijefa.v4i2.1851

2023-05-17

Abstract:Previous research or relevant research is very important in a research or scientific article. Previous research or relevant research serves to strengthen the theory and penomena of relationships or influences between variables. This article aims to review the factors affecting the preparation of government financial statements, namely: the application of government accounting standards, the use of information technology and internal control systems, a literature study of State Financial Management. The purpose of writing this article is to build a hypothesis of influence between variables to be used in future research. The results of this literature review article are: 1) The application of Government Accounting Standards affects the Preparation of Government Financial Statements, 2) The use of Information Technology affects the Preparation of Government Financial Statements, 3) The Internal Control System affects the Preparation of Government Financial Statements.

English Else

Muthmainnah Muthmainnah,Desvina Yulisda,Veri Ilhadi

DOI: https://doi.org/10.52088/ijesty.v2i1.223

2021-11-29

Abstract:The use of Information Technology (IT) in higher education is said to be useful if its application is in accordance with the vision and mission of the organization. Academic information system audit is a method of assessing or assessing academic information systems to ensure that the governance and management functions of the information system are implemented properly. Unimal is a university that has implemented information technology in its operational processes. In achieving the organization's vision, the use of IT in the organization must always be monitored so that the services provided to users can be maximized, including by conducting an audit process to identify the level of IT maturity so that IT management can find solutions from processes that are considered less than optimal. This study aims to measure the level of capability of Unimal Academic Information Technology using COBIT 5 Domain APO (Align, Plan, and Organise) in the APO01, APO02, APO04 and APO11 processes. The focus of the research is also based on the need for priority processes in the Malikussaleh University environment and research related to the APO domain has not been carried out. The purpose of this study in general is to analyze Academic Information Technology using the COBIT 5 framework in the APO domain at the Malikussaleh University, as well as to provide solutions for improving academic information technology and IT implementation at the Malikussaleh University.

Anugrahi Bawani Sipayung,Roni Yunis,Elly Elly,

DOI: https://doi.org/10.34010/injuratech.v2i2.8085

2022-12-01

International Journal of Research and Applied Technology

Abstract:IT governance evaluation can help organizations to improve the quality of IT services, reduce risks, maximize IT performance and achieve their goals effectively. Mikroskil University is one of the universities that utilize the use of IT in supporting its business processes. Mikroskil University has an IT unit/department that is responsible for IT management and IT governance as well as dealing with IT/IS-related issues, namely the Information System and Digital Transformation (SITD). Based on the initial study conducted, several problems arise in higher education IT governance, so it is necessary to carry out an evaluation. This evaluation uses the COBIT 2019 framework because it is more flexible and there are design factors that can make it easier to get process objectives that will be evaluated as the main focus of the organization. This framework makes it easier for researchers to evaluate processes in universities. The domain that becomes the objective of IT governance in this research is BAI11 (Managed projects). The results of this study indicate that the capability level of Mikroskil University is at level 1 (performed). Meanwhile, the maturity level is at level 2 (managed). Based on the results of the capability and maturity level values, a gap value will be sought to be used as a basis for making recommendations for improvement. The results of this study provide recommendations for improvement to achieve the expected targets of higher education. Mikroskil University's capability level is at level 1 (performed). Meanwhile, the maturity level is at level 2 (managed). Based on the results of the capability and maturity level values, a gap value will be sought to be used as a basis for making recommendations for improvement. The results of this study provide recommendations for improvement to achieve the expected targets of higher education. Mikroskil University's capability level is at level 1 (performed). Meanwhile, the maturity level is at level 2 (managed). Based on the results of the capability and maturity level values, a gap value will be sought to be used as a basis for making recommendations for improvement. The results of this study provide recommendations for improvement to achieve the expected targets of higher education.

Sherly Sherly,Melissa Indah Fianty

DOI: https://doi.org/10.34288/jri.v6i2.267

2024-03-11

Jurnal Riset Informatika

Abstract:This research aims to enhance information technology (IT) governance in a financial technology company by focusing on peer-to-peer lending services. The main challenges faced by the company involve a lack of system design details, leading to post-implementation imperfections and negative impacts on business process performance, including unnecessary delays and adjustments. The lack of transparency in system evaluation is also a hindrance caused by incomplete recording of test results. Therefore, this research aims to address these challenges by utilizing the COBIT 2019 framework. The study employs a qualitative approach, utilizing data obtained through interviews and literature studies supported by the COBIT Tool Kit. The analysis is conducted on three main objectives: security management, solution identification, and IT change management, to identify disparities between the current status and desired targets. The analysis results highlight the need for improvements in specific aspects, including the lack of system design details, more precise information in the change process, and deficiencies in recording test results. Recommendations for improvement involve the development of more detailed guidelines for system design, enhanced documentation of changes, and improvements in testing instructions and result reporting. Additionally, recommendations focus on enhancing capabilities through proactive evaluation, refining security plans, developing more adaptive solution acquisition strategies, and improving testing practices. Thus, this research underscores the importance of strategic improvements within the IT and Information Systems governance framework to shape a more effective and transparent operational environment in Financial Technology companies.

English Else

Nadia Lawita,Anis Chariri

DOI: https://doi.org/10.32486/aksi.v8i1.482

2023-06-02

Jurnal AKSI (Akuntansi dan Sistem Informasi)

Abstract:This article aims to fill the research gap by providing a systematic literature review on the factors that influence the effectiveness of accounting information systems from an organizational perspective. This research method uses a literature review process or the results of a literature review obtained through reading sources in the field of accounting information systems. The results of the literature review are research found in journals published from 2013 to 2021. The components used in measuring the Effectiveness of Accounting Information Systems are based on the DeLone and McLean Information System Success Model Theory, including Information Quality, System Quality and Service Quality

Esteban Pérez Calderón,Samer Azeez Alrahamneh

DOI: https://doi.org/10.17261/pressacademia.2023.1871

2024-02-01

Pressacademia

Abstract:Purpose- The goal of this study is to conduct a bibliometric analysis of papers relevant to information technology (IT) and auditing that were published in the Web of Science Core Collection database between 1978 and 2022. Methodology- This study does a bibliometric analysis of 2991 audit and information technology publications from a pool of 7738. It works in two steps: descriptive performance metrics and co-word analysis. The descriptive metrics include publishing patterns, productive nations and authors, effect on certain areas and journals, number of citations by country, and publications with the highest citations. The co-occurrence analysis maps the ties between concepts by utilizing social network analysis methods to investigate the field's interconnections. Findings- This study identifies six major trends in IT and auditing: increased technology use in internal auditing, the demand for information security expertise, transparency in the digital age, technology for ethical auditing, cloud-based auditing with blockchain, and post-COVID IT continuous auditing standards. These trends highlight the need for auditors to adapt to evolving technology and ethical considerations, prioritizing data security and privacy. Additionally, the survey reveals key authors, publications, and countries in this field, offering valuable insights for industry leaders and potential research collaborations. Conclusion- This study provides a complete overview of the topic of IT and auditing by integrating several methodological techniques. This study provides direction for future research in addition to offering significant insight into the main research trends, issues, and problems in this subject. Keywords: Information technology, auditing, co-occurrence analysis, bibliometric analysis. JEL Codes: M41, M42

Amalka Peliarachchi,Janaka Wijayanayake

DOI: https://doi.org/10.4038/jdrra.v1i1.8

2023-12-31

Abstract:In today's rapidly evolving environment, two critical factors for organizations to maintain their competitive edge are speed to market and adaptability. Over the past ten years, a significant number of organizations have achieved success in delivering IT services by utilizing IT management frameworks. One widely adopted framework in this domain is ITIL, an abbreviation for the IT Infrastructure Library. ITIL serves as a guiding framework, facilitating the attainment of high-quality IT service management at an organizational level. When it comes to software development, it is crucial for managers and development teams to select an appropriate methodology that aligns with their project's needs. Agile software development is one prominent approach based on iterative and incremental development. It has gained significant prominence in the IT industry due to its ability to enhance project development processes. Combining ITIL and Agile methodologies has proven to be a valuable strategy for streamlining project development in the IT industry. This fusion results in what is known as the Agile-ITIL combined framework, often referred to as A-ITIL. This paper primarily focuses on the integration of ITIL processes with agile phases, shedding light on the amalgamation of ITIL and Agile with other frameworks and technologies. Furthermore, it examines the utilization of ITIL and Agile in various companies, offering valuable insights into how these methodologies can be applied effectively. Consequently, this publication is a valuable resource for researchers seeking comprehensive knowledge in the ITIL and Agile-related domains. It aims to identify potential avenues for future research and development in this dynamic field.

Rizki Parid Adam

DOI: https://doi.org/10.31092/jpkn.v4i2.1921

2023-01-23

Jurnal Pajak dan Keuangan Negara (PKN)

Abstract:This study aims to examine and analyze the relationship between time budget pressure and auditor competence on the quality of internal audit with an understanding of information systems as a moderating variable at the ministry of finance inspectorate. The method used in this study is a comparative causal research method which aims to determine the causal relationship of the independent variables, namely time budget pressure and auditor competence with the dependent variable, namely the quality of internal audit with the moderating variable understanding of information systems. The research population was 374 people with a sample of 87 people who were determined by purposive sampling technique. Data collection techniques using a questionnaire. Based on hypothesis testing, budget pressure has a positive but not significant effect on the quality of internal audits and auditor competence has a significant positive effect on audit quality. an understanding of the information system as a moderating variable cannot weaken the influence of the budgetary pressure variable on the quality of internal audit and an understanding of the information system as a moderating variable cannot strengthen the influence of auditor competence on the quality of internal audit.

Farah Ashma Nadiyah,Balqis Maharani,Dien Noviany Rahmatika

DOI: https://doi.org/10.61132/eksap.v1i3.278

2024-06-27

Abstract:In the ever-growing digital era, auditing has become an increasingly inseparable part of infIn the ever-growing digital era, auditing is becoming an increasingly inseparable part of information technology. The role of technology in auditing has undergone a significant transformation, leading to what we now know as information technology auditing. This phenomenon not only affects how audits are conducted, but also impacts overall audit quality. Aims to determine the effect of information technology on audit quality. Therefore, the author reviewed several previous research journals originating from various sources including Google Scholar, Semantic Scholar, and Garuda Ministry of Education and Culture. Using the SLR method, the author filtered from these sources 50 journals that were appropriate to the topic. The results of this journal research show that there is a contribution between technology and audit quality in increasing audit efficiency, effectiveness and reliability which can influence audit quality.

Ankur Shukla,Basel Katt,Livinus Obiora Nweke,Prosper Kandabongee Yeng,Goitom Kahsay Weldehawaryat

DOI: https://doi.org/10.1016/j.cosrev.2022.100496

2022-07-29

Abstract:System security assurance provides the confidence that security features, practices, procedures, and architecture of software systems mediate and enforce the security policy and are resilient against security failure and attacks. Alongside the significant benefits of security assurance, the evolution of new information and communication technology (ICT) introduces new challenges regarding information protection. Security assurance methods based on the traditional tools, techniques, and procedures may fail to account new challenges due to poor requirement specifications, static nature, and poor development processes. The common criteria (CC) commonly used for security evaluation and certification process also comes with many limitations and challenges. In this paper, extensive efforts have been made to study the state-of-the-art, limitations and future research directions for security assurance of the ICT and cyber-physical systems (CPS) in a wide range of domains. We conducted a systematic review of requirements, processes, and activities involved in system security assurance including security requirements, security metrics, system and environments and assurance methods. We highlighted the challenges and gaps that have been identified by the existing literature related to system security assurance and corresponding solutions. Finally, we discussed the limitations of the present methods and future research directions.

Cryptography and Security,Software Engineering

Junyi Chen

DOI: https://doi.org/10.55267/iadt.07.13907

2023-11-16

Abstract:The industries significantly rely on information technology for effective operations; however, there are hazards like data breaches and system breakdowns. Information system audits are essential to reducing these risks, ensuring quality control, and optimizing the system. These audits evaluate gaps in controls, non-compliance concerns, and vulnerabilities, allowing for the installation of efficient risk mitigation measures. Information system audits are essential for locating and reducing hazards related to an organization's information systems.Vulnerabilities, threats, and control flaws can be found through routine audits, which then allows for the deployment of the necessary controls and risk-reduction measures. Additionally, audits support quality assurance by assessing data reliability, accuracy, and completeness, as well as system performance, regulatory compliance, and industry best practices.The deployment of remedial steps to improve data integrity and system reliability is made possible by their assistance in assisting organizations in identifying gaps and flaws. Information system audits also aid system optimization by revealing details about the functionality and performance of the system.  An extensive evaluation of the literature and case study analysis was used to perform the research.For the analysis of this research, a sequential mixed technique (qualitative and quantitative) study was conducted. Delphi questionnaires were used twice to conduct the study. It encompasses organizations and entities involved in various aspects including but not limited to logistics companies, freight carriers, shipping and distribution firms, public transportation agencies, and supply chain service providers. Data from the semi-structured interviews for the qualitative study were collected via a Delphi survey, and 14 nodes and six themes were then generated.Audits assist organizations in identifying areas for improvement and informing decisions about system upgrades or alterations by analyzing system utilization, response times, resource allocation, and scalability. The results of this study highlight the importance of information system audits in assuring the prosperity, effectiveness, and resilience of businesses engaged in supply chain operations. Organizations can attain a greater level of enterprise risk management, quality assurance, and system optimization, which will improve supply chain operations in general, by managing risks, improving data quality, and optimizing system performance.

Vega Putra Pradana,Muharman Lubis,Lukman Abdurrahman,Raied Ali Alqahtani,Ikhlas Fuad Zamzami,Rafian Ramadhani

DOI: https://doi.org/10.62123/enigma.v1i2.20

2024-04-20

Abstract:This study examines the application of the COBIT 2019 framework within the Faculty of Industrial Engineering at Telkom University, specifically focusing on the Monitor, Evaluate, and Assess (MEA) domain to assess IT management performance against the standards set by the Independent Accreditation Body for Informatics and Computer Science (LAM-INFOKOM). Through a meticulous analysis, a significant gap was identified in MEA01.04 - Analyze and Report Performance, indicating a lack of proper documentation for change recommendations in objectives and metrics. Recommendations to bridge this gap include the incorporation of a Research Analyst role, clarification of responsibilities, provision of data analysis training, enhancement of inter-team communication, establishment of clear policy guidelines, and the creation of specialized record formats. These suggestions aim at improving the alignment of IT governance with both COBIT and LAM-INFOKOM standards, enhancing IT performance management, and ensuring a strategic fit between IT operations and organizational goals. The findings underscore the critical role of structured IT governance in achieving operational excellence and sustaining competitive advantage in the digital era.

Punto Widharto,Zaldy Suhatman,Rizal Fathoni Aji

DOI: https://doi.org/10.12928/telkomnika.v20i2.21668

2022-04-01

TELKOMNIKA (Telecommunication Computing Electronics and Control)

Abstract:The very close involvement of technology in the banking industry makes almost all banking activities and products currently dependent on information technology (IT). PT BPRS Bhakti Sumekar (PT BBS Bank) is one of the banks that realizes the importance of IT in the digital era and has included IT as part of the company's strategic plan. The company states that compliance with regulations, best practices, and standards is key to a successful IT implementation. In this study, the measurement of the capability level of corporate IT governance was conducted to determine what IT priorities were based on the company's strategic objectives and what recommendations could be given based on best practices to improve IT services in support of the company's strategic goals. The framework to be used is control objective for information and related technology (COBIT); the most widely used framework suitable for service-oriented organizations. The results of research using COBIT 2019 show how IT governance is needed by the company and what should be prioritized. The measurement results found that there is still a gap between management's expectations and the current level of capability and provide recommendations on what companies need to improve performance in order to meet expectations.

Roy Mandagi,Raymond Manopo,Elvis Ronald Sumanti

DOI: https://doi.org/10.59141/jist.v5i7.1215

2024-07-26

Jurnal Indonesia Sosial Teknologi

Abstract:This systematic literature review examines the design, implementation, and evaluation of accounting information systems (AIS) in religious institutions, focusing on mosques and churches. The review synthesizes findings from English and Bahasa Indonesia sources to identify common themes, challenges, and best practices in AIS development within religious contexts. A comprehensive search strategy was employed, guided by predefined criteria, to select relevant studies published between 2014 and 2024. Key findings highlight the importance of AIS in enhancing financial transparency, accountability, and efficiency in religious organizations. The review also identifies gaps in existing research and provides recommendations for future studies in this area.

Septaria Salasi Permatasari,Trinandari Prasetya Nugrahanti

DOI: https://doi.org/10.62237/jna.v1i3.162

2024-09-22

Abstract:Along with increasingly rapid economic development, the role of internal audit in companies is becoming increasingly important, especially for corporate governance. The trend of globalization is intensifying, and trade between countries is increasingly dense. This brings economic benefits to the company while increasing risks. In order to survive and thrive, companies must face more challenges. On the one hand, enterprises should increase investment in internal governance management, and establish institutions such as shareholder meetings, boards of directors, manager levels and supervisory boards, and gradually standardize corporate governance structures. On the other hand, strengthening the company's internal audit can not only improve the company's operational conditions, but also discover problems within the company in a timely manner and control them effectively. However, compared to other developed countries in Indonesia, the internal audit system was established too late, so these units have different experiences in learning from abroad, thus causing many problems in establishing internal audit institutions in Indonesia, and many companies do not do so. pay attention to internal audits. The purpose of this research is to provide an overview of the relationship between the internal audit function and corporate governance in companies.

Fachrizal,*Ahmad Nurul Fajar,,

DOI: https://doi.org/10.35940/ijitee.a3965.039520

2020-03-30

International Journal of Innovative Technology and Exploring Engineering

Abstract:The purpose of this research is to know the priority IT process in IT department at XYZ Organization and to know the level of capability in each IT process priority at IT department at XYZ organization. The data used and processed in this research were obtained from interviews with IT Director, IT Governance Supervisor, IT Development Supervisor, IT Operations Supervisor and Information Management Supervisor, and also observed the processes in the IT department. The result is obtained by priority IT processes and the level of capability in each of the priority IT processes at XYZ Organization. Based on the case study analysis, in order to create IT governance in accordance with the standards in the COBIT 5 framework, the organization have to improve IT governance thoroughly and continuously and fulfill the criteria in the COBIT 5 framework for all IT process in XYZ Organization.