Samsinar Samsinar,Rudolf Sinaga

DOI: https://doi.org/10.19184/bst.v10i2.30325

2022-06-28

BERKALA SAINSTEK

Abstract:Reliable and up-to-date information services are one of the parameters for the achievement of an organization's performance, including for a university, which is currently required to be able to adapt to technological advances to produce graduates who can master information technology to support the competence of their respective fields. The curriculum changes launched by the current government are also proof that the application of information technology in higher education is a must. Seeing this, universities have a difficult task, especially at the implementation stage of implementing information technology, because they must prepare not only infrastructure but also human resources who can develop good information system governance. Therefore it is necessary to carry out an IT governance audit. From the results of observations made, XYZ College has utilized information technology in academic services and other information services. However, it was found that information technology governance does not yet have a standard so that it is considered not to be able to meet the desired goals, and instead will cause various problems including uncontrolled operational costs and other problems. The purpose of this study is to measure the performance of information technology governance at XYZ College using the COBIT 2019 framework. Based on the results of an audit conducted from 7 EGIT components, namely processes, organizational structure, information flow and items, people skills and competencies, policies and procedures, culture, ethical behavior, and service infrastructure and application are on average at level 3, it can be concluded that the application of information technology has been running, the infrastructure is adequate but does not have good governance procedures or standards. It is recommended that XYZ Higher Education make standards for information technology governance as well as periodic evaluations of the use of all components of information technology, both software, hardware, and brainware.

Jesslyn Kurniawan,Wella Wella

DOI: https://doi.org/10.31937/si.v14i2.3223

2023-12-21

Abstract:PT XYZ is a management consulting company in Jakarta. This company has many products related to information technology. Therefore, measuring the capability of information technology governance at PT XYZ was carried out. The measurement of information technology governance capability is based on problems that are often faced by companies in terms of project management followed by problems related to the company's IT budget and human resources skilled in information technology. Capability measurement is carried out using COBIT 2019 with a qualitative approach. Using data collection methods with interviews and literature study. The results of the data collection showed that there were 3 COBIT 2019 domain processes that matched the company's problems, namely APO06 - Managed Budget and Costs, APO07 - Managed Human Resources, and BAI11 - Managed Projects. The results of the capability measurement carried out concluded that the three selected domain processes namely APO06, APO07, and BAI11 were achieved at level 2 or can be categorized as Fully Achieved so that companies get several recommendations for improvement to improve the quality of their information technology governance and reach a higher level.

Rokhman Fauzi,Rahmat Mulyana

DOI: https://doi.org/10.25124/ijies.v4i02.75

2020-07-30

International Journal of Innovation in Enterprise System

Abstract:The assessment of IT governance maturity is part of the assurance function. The assessment is carried out to ensure technology support in achieving business goals. In this context, companies should comply with regulations, as well as the need to continue to improve the quality of implementation of IT governance. The average value of PT X's IT governance maturity in Year 2 has increased from 3.21 to 3.26. There is an increase in the average score of 0.05 over one year. Success factors in implementing IT governance must be maintained and encouraged to continue the grow. This research was conducted to identify what organizational initiatives to increase the maturity and what the key factors are. Factors identification is done using evidence analysis method based on CSF references and attributes criteria. The results of the analysis obtained key factors that strengthen the maturity. The main factors are CSF2 providing IT infrastructure that supports the development and exchange of IT applications and services (21.72%), and CSF4 staff development to meet professional IT HR qualifications (17.39%). On the other hand, maturity attribute which gave the biggest contribution was ATR1 related to policies and procedures (34.6%), and ATR3 related to defining goals and actions (30.77%).

Marco Viriyatama Lim,Melissa Indah Fianty

DOI: https://doi.org/10.46729/ijstm.v4i5.955

2023-09-27

Abstract:A retail company faced challenges such as network issues, unreliable third-party databases, and a lack of employee understanding of input transactions and the introduction of new products or services. The research employed interviews and questionnaires to address these issues and assess the company's information technology governance using the 2019 COBIT framework. The findings would help identify appropriate processes to address the company's difficulties. The prioritized domains included APO12 - Risk Management, BAI03 - Solution Identification and Development, BAI06 - IT Change Management, and BAI10 - Configuration Management. The research revealed that APO12 reached level 3 (highly achieved), while BAI03 and BAI06 reached level 4 (significantly achieved), and BAI10 achieved level 4 (completely achieved), aligning with the company's expectations. These results determine the company's IT governance level and have the potential to enhance its capabilities.

Punto Widharto,Zaldy Suhatman,Rizal Fathoni Aji

DOI: https://doi.org/10.12928/telkomnika.v20i2.21668

2022-04-01

TELKOMNIKA (Telecommunication Computing Electronics and Control)

Abstract:The very close involvement of technology in the banking industry makes almost all banking activities and products currently dependent on information technology (IT). PT BPRS Bhakti Sumekar (PT BBS Bank) is one of the banks that realizes the importance of IT in the digital era and has included IT as part of the company's strategic plan. The company states that compliance with regulations, best practices, and standards is key to a successful IT implementation. In this study, the measurement of the capability level of corporate IT governance was conducted to determine what IT priorities were based on the company's strategic objectives and what recommendations could be given based on best practices to improve IT services in support of the company's strategic goals. The framework to be used is control objective for information and related technology (COBIT); the most widely used framework suitable for service-oriented organizations. The results of research using COBIT 2019 show how IT governance is needed by the company and what should be prioritized. The measurement results found that there is still a gap between management's expectations and the current level of capability and provide recommendations on what companies need to improve performance in order to meet expectations.

L H Atrinawati,E Ramadhani,T P Fiqar,Y T Wiranti,A I N F Abdullah,H M J Saputra,D B Tandirau,H M J Saputra and D B Tandirau

DOI: https://doi.org/10.1088/1742-6596/1803/1/012033

2021-02-19

Journal of Physics: Conference Series

Abstract:University XYZ is a state university in East Kalimantan, which established in 2014. All of its academic and non-academic activities are supported by information technology managed by the Information and Communication Technology Unit (ICT Unit). University XYZ implements an information technology governance system that aims to support the University XYZ business strategy and goals optimally. Information technology governance systems must be well managed to support business process activities in University XYZ. This study aims to evaluate the capability of information technology governance system using the COBIT 2019 framework. This study uses COBIT 2019 design tools and core model to evaluate University XYZ governance system, then provide assistance in determining a governance system that is adjusted to the COBIT 2019 capability level assessment. The result of this research is a recommendation of the core model or process and the capability level that must be implemented by University XYZ. This research will conclude that there are 11 Governance and Management Objectives that have a priority of more than 50%. This study conducts an evaluation phase of the core model or process so that recommendations are obtained for the development of information technology governance.

Albaar Rubhasy,Dewi Murti Milasari

DOI: https://doi.org/10.33322/petir.v13i1.891

2020-03-21

Petir

Abstract:The purpose of this study is to evaluate the level of IT maturity that occur in XYZ Shipping Company using COBIT 4.1 framework as a best practice in information technology audit. The company is highly depend on Key Logistics System as a core system in shipping process. For this reason, the company wants to focus on internal processes by increasing efficiency while minimizing costs, so COBIT IT Process was chosen: PO3, AI2, AI5, AI3, AI4, AI7, PO6, DS3, DS7, DS8, DS9, PO5, and DS6. An assessment was conducted on 26 Key Logistics System users as respondents. Stages of research to be carried out include: identification of the COBIT 4.1 process; data collection; measurement of current and target maturity levels; gap analysis; and preparation of recommendations. Result has shown that the average maturity score of the Key Logistics System is 3,50 or in maturity level 4 (managed). At this level the key logistics system process has been carried out and part of it has been standardized. However, results shows that there are some gaps below the target, such as IT Process PO5, AI2, and AI5 which have maturity level 3 (defined). In order to improve the maturity level, XYZ Shipping Company has to optimize the IT investement, application maintenance, and IT resources.

Anugrahi Bawani Sipayung,Roni Yunis,Elly Elly,

DOI: https://doi.org/10.34010/injuratech.v2i2.8085

2022-12-01

International Journal of Research and Applied Technology

Abstract:IT governance evaluation can help organizations to improve the quality of IT services, reduce risks, maximize IT performance and achieve their goals effectively. Mikroskil University is one of the universities that utilize the use of IT in supporting its business processes. Mikroskil University has an IT unit/department that is responsible for IT management and IT governance as well as dealing with IT/IS-related issues, namely the Information System and Digital Transformation (SITD). Based on the initial study conducted, several problems arise in higher education IT governance, so it is necessary to carry out an evaluation. This evaluation uses the COBIT 2019 framework because it is more flexible and there are design factors that can make it easier to get process objectives that will be evaluated as the main focus of the organization. This framework makes it easier for researchers to evaluate processes in universities. The domain that becomes the objective of IT governance in this research is BAI11 (Managed projects). The results of this study indicate that the capability level of Mikroskil University is at level 1 (performed). Meanwhile, the maturity level is at level 2 (managed). Based on the results of the capability and maturity level values, a gap value will be sought to be used as a basis for making recommendations for improvement. The results of this study provide recommendations for improvement to achieve the expected targets of higher education. Mikroskil University's capability level is at level 1 (performed). Meanwhile, the maturity level is at level 2 (managed). Based on the results of the capability and maturity level values, a gap value will be sought to be used as a basis for making recommendations for improvement. The results of this study provide recommendations for improvement to achieve the expected targets of higher education. Mikroskil University's capability level is at level 1 (performed). Meanwhile, the maturity level is at level 2 (managed). Based on the results of the capability and maturity level values, a gap value will be sought to be used as a basis for making recommendations for improvement. The results of this study provide recommendations for improvement to achieve the expected targets of higher education.

Inna Madiyaningsih,Kalamullah Ramli

DOI: https://doi.org/10.31943/gw.v14i2.476

2023-08-15

Gema Wiralodra

Abstract:Based on the report security year 2022 from company Z in the ICT sector, it was found that on the report firewall security, 96% of level threat is level critical, and 4% is level high. Report email security is session domain 27.3%; Session limits 15.35 %; Forti Guard AntiSpam-IP 3.11%, and the rest is receipt verification; directory filter and access control relay denied. With the challenge of current cyber-attacks, precious data assets need analysis to measure the the level of IT maturity that can ensure stakeholders' interest and maximize benefits and opportunities through technology information. We overcome limitations by analyzing IT maturity using COBIT 5. Research focused only on the APO13 and DSS05 process domains. A study was done to identify the problems based on results observation, checking, and use of a questionnaire in a direct manner. Measurement is done through method evaluation self and interviews deep with the IT team and all power expert who has COBIT certification 5. Analysis results show that the measurement level for the APO13 domain is 3, and for DSS05 is level 2. These results still need to be below the set level 4 target management; therefore, building a framework to monitor, track, and record security data in real time is necessary. With the build framework, Work can help lower the threat level from a critical level to a high level and increase the COBIT Maturity Level to APO13 and DSS05 according to organizational targets.

Jonathan Sutanto,Melissa Indah Fianty

DOI: https://doi.org/10.33379/gtech.v8i2.4114

2024-04-05

Abstract:This research was conducted with the main objective of evaluating and improving Information Technology (IT) Governance in an Indonesian media company facing significant challenges due to digital transformation. In the methodological approach, the study utilized the COBIT 2019 framework, involving planning, field implementation, reporting, and follow-up processes. The results of the capability level evaluation revealed a gap between actual achievements and desired targets, especially in the aspects of Managed Innovation (APO04) and Managed IT Changes (BAI06). The implications of these findings emphasize the need for improvements in activities related to managed innovation and IT change. The conclusion of this research underscores the urgency of effective IT governance in navigating the dynamics of digital transformation. It is hoped that these findings will serve as a guide for media companies and other organizations to formulate robust IT policies, enhance sustainable operations, and drive innovation in this digital era.

Ananda E S Setyadji,Arief R R Putrananda,Daffa H Permadi,Rais I Nustara,Reyhan B Pratama,Tegar A Masyhuda,Eva Hariyanti

DOI: https://doi.org/10.33387/jiko.v6i2.6182

2023-08-06

JIKO (Jurnal Informatika dan Komputer)

Abstract:Information Technology Governance is currently widely implemented in companies. One of the domains that can be of concern is risk management. The application of TKTI in this domain can help companies identify, evaluate, reduce, and manage risks related to their business to achieve company goals better. In this case, three frameworks can be considered, including NIST, ISO 27001, and Octave, but implementing these frameworks only sometimes goes as planned. This study aims to identify the factors that cause the ineffectiveness of implementing Information Technology Governance (ITG) in the risk management domain using the NIST, ISO 27001, and Octave frameworks. Through an analysis of existing literature and data processing, this study found that factors such as lack of understanding of the framework, lack of adequate resources, and implementation challenges play an essential role in ineffectiveness. This study concludes by providing valuable insights for organizations seeking to strengthen their risk management capabilities.

Syinsyina Arifa,Rizal Isnanto,Rinta Kridalukmana

DOI: https://doi.org/10.20527/jtiulm.v8i2.176

2023-11-05

Jurnal Teknologi Informasi Universitas Lambung Mangkurat (JTIULM)

Abstract:University Helpdesk as an information system service provider provided by PTIPD University assists students, staff, and lecturers in solving problems using information systems and networks, as well as updating information online and offline. Based on the Regulation Minister of Religion of the Republic of Indonesia Number 17 of 2013 to improve the quality of university delivery and services, and GUG (Good University Governance) implementation, governance framework is needed to align the vision, mission, and objectives. IT governance framework covering management, operational, maintenance, monitoring, and evaluation processes. The analysis of IT governance with COBIT 2019 resulted in the preparation of recommendations based on the mapping of the domain (area) of the 2019 COBIT design factors. These recommendations are needed for an analysis of the maturity level of PTIPD university helpdesk information technology governance. The research data were taken from annual reports and Key Performance Indicators, observations, and interviews. Based on Design Factors 1-11 to determine domain area, the result is needing improved governance perspective APO12-Managed Risk and DSS05-Managed Security Services. The focus area is risk management and service security management in terms of data and information. The expected ability level is at level 4, while the current ability level analysis is at level 2, the gap level analysis is 2 levels different. The result is to get 12 recommendations and 2 main recommendations using the Fuzzy-AHP method based on the weighting of the criteria of Regulation number 12 of 2012 the management of information technology in university.

Fathimatus Zahrotun Nisa',Ganes Dwi Febrianti,Navy Nurlyn Ajrina

DOI: https://doi.org/10.47065/bulletincsr.v4i1.313

2023-12-13

Abstract:The use of Information Technology (IT) is an important part of all business activities, especially in the service sector. It is important to ensure the security, availability and integrity of their systems. The impact of failure in IT Risk Management greatly influences success. The implementation of IT Risk Management is needed to be able to help companies in the event of losses. In its use, a framework is needed that functions to identify, evaluate and manage existing risks. Therefore, this research will show the COBIT framework that is suitable for managing existing risk management. This research was carried out using the Systematic Literature Review method which started from the stages of formulating research questions, literature search, literature selection, data extraction and discussion aimed at answering Research Questions. In this research, 25 articles were found which were used as literature sources. The research results show that COBIT 2019 is the version of COBIT most often used in IT Risk Management in the industrial service sectors. In implementing COBIT, companies face various challenges such as lack of in-depth understanding of COBIT, lack of work process documentation and lack of operational standards for risk control and incompatibility of IT strategy with company strategy. This research also found that there are 8 points of COBIT implementation strategy to help service industry companies achieve organizational goals more effectively and efficiently through IT risk management.

Francis Anderson Kojongian,Mewati Ayub

DOI: https://doi.org/10.28932/jutisi.v7i1.3434

2021-04-24

Jurnal Teknik Informatika dan Sistem Informasi

Abstract:In order to achieve the company goals, in Universitas Kristen Maranatha, Information system becomes the main tool and Information Technology infrastructure become the backbone in running the company business model, along with the increasing of portfolio application, number of Information Technology services and the amount of human resources. Universitas Kristen Maranatha requires an international standard instrument to measure several domains, both Manage and Operation domains, holistically. By implementing frameworks such as COBIT 5 or COBIT 5 for IT RISK, ISO 31000: 2018, the company is able to measure planning effectiveness, strategic policies implementation, IT service management measured by Service Level Agreement, monitoring and evaluation. In this research, there are 7 domains implemented as follows: EDM01-Ensure Governance Framework Setting and Maintenance, EDM03- Ensure Risk Optimization, AP002- Manage Strategy, APO09- Manage Service Agreements, AP012-Manage Risk, BAI01-Manage Programmes and Projects, BAI05- Manage Organizational Change Enablement.

English Else

Nendi Juhandi,Saefudin Zuhri,Mochammad Fahlevi,Rinto Noviantoro,Muhammad Nur abdi,Setiadi

DOI: https://doi.org/10.1051/e3sconf/202020216003

2020-01-01

E3S Web of Conferences

Abstract:Information technology is a technology for obtaining, processing, storing and distributing various types of information files by utilizing computers and telecommunications born of strong drives to create new innovations and creativity that can overcome all laziness and slowness of human performance. The recent phenomenon of several large companies listed on the Indonesia Stock Exchange shows that there is an improper management of the company, especially in supervision, thereby reducing the value of the company. The result is proven that developed companies, especially in developed countries, use supervision not only as a leader but also technology that can automatically detect fraud and is useful as a step to prevent fraud in companies. Corporate governance is still lacking in Indonesia and other developing countries, making the level of supervision at the company does not run optimally so that the potential for fraud is still quite large. This research contributes to fill the void level of supervision in companies in Indonesia that are still experiencing fraud, so the solution in supervision is to maximize the role of information technology in companies in Indonesia.

Jason Nathanael Holman,Ririn Ikana Desanti

DOI: https://doi.org/10.31937/si.v15i1.3475

2024-06-03

Abstract:Information technology (IT) management is a process that a corporation or organization must carry out, particularly in terms of data management. The research employs a case study of a pipe manufacturer that has implemented a human resources system to manage employee information. To avoid problems in the data management process that can impede company performance, the company must have good information technology governance capabilities in the data management process. This research will focus on measuring and evaluating the capability of information technology governance at the company, as well as making recommendations to improve the company's existing IT governance. The COBIT 2019 framework will be used to assess the company's IT governance capabilities using qualitative data collected from collaborative interviews with the company and supported by previous research literature. The measurement focus will be on IT infrastructure for data management and operations management to support the data management process. APO01 - Managed I&T Management Framework, APO14 - Managed Data, and DSS01 - Managed Operations are the COBIT 2019 processes to be monitored. The study's findings include the realization of IT governance capabilities in the APO01 domain and a lack of IT governance capabilities in the other two domains, namely APO14 and DSS01. The capability level is stopped at level 2 for the APO14 and DSS01 domains, which is one level below the declared aim of level 3. The recommendations will center on enhancing the IT governance skills of the two domains that fail to meet the company's capability targets.

Caecilia Ika Pramita Ady,Prihanto Ngesti Basuki,Augie David Manuputty

DOI: https://doi.org/10.33557/journalisi.v1i2.17

2019-09-02

Journal of Information Systems and Informatics

Abstract:Information Technology (IT) governance is used to manage and optimize IT resources in supporting organizational goals. The Legal Section of the Regional Secretariat of Salatiga City as part of a government organization has built E-Legal Drafting information system to develop the functions of making regional legal products as well as the realization of e-government development in the legal field. The COBIT framework supports IT governance by providing work support to regulate IT alignment with the organization's business objectives. The results of this study are expected to show an overview of the implementation of IT governance in E-Legal Drafting information system from APO domain within the COBIT 5 framework, show the current system information level of capability and performance that is obtained from the measurement of capability levels, and also providing evaluation and recomendation based on the results of the gap analysis to help obtain the quality of information systems expected by the Legal Section of the Regional Secretariat of Salatiga City.

Fachrizal,*Ahmad Nurul Fajar,,

DOI: https://doi.org/10.35940/ijitee.a3965.039520

2020-03-30

International Journal of Innovative Technology and Exploring Engineering

Abstract:The purpose of this research is to know the priority IT process in IT department at XYZ Organization and to know the level of capability in each IT process priority at IT department at XYZ organization. The data used and processed in this research were obtained from interviews with IT Director, IT Governance Supervisor, IT Development Supervisor, IT Operations Supervisor and Information Management Supervisor, and also observed the processes in the IT department. The result is obtained by priority IT processes and the level of capability in each of the priority IT processes at XYZ Organization. Based on the case study analysis, in order to create IT governance in accordance with the standards in the COBIT 5 framework, the organization have to improve IT governance thoroughly and continuously and fulfill the criteria in the COBIT 5 framework for all IT process in XYZ Organization.

Ray Farhan Mubarak,Melissa Indah Fianty

DOI: https://doi.org/10.51519/journalisi.v5i3.545

2023-09-01

Journal of Information Systems and Informatics

Abstract:The integration of Information Technology (IT) in companies comes with its own set of challenges. One major issue is the loss of operational data, which directly affects the company's workflow and disrupts its activities. To tackle this problem, the company assesses its IT capability using the COBIT 2019 framework. This framework outlines the objectives of different IT processes and assigns predetermined values to each process. The assessment reveals three levels of IT capability for specific processes within the company: EDM03 (Ensured Risk Optimization) at level 3, APO13 (Managed Security) at level 2, and MEA03 (Managed Compliance with External Requirements) at level 3. The company aims to reach level 4 for these processes. Consequently, recommendations for improvement primarily focus on enhancing the management of information security risks and information security management systems, as well as increasing compliance with policies and regulations.

Sherly Sherly,Melissa Indah Fianty

DOI: https://doi.org/10.34288/jri.v6i2.267

2024-03-11

Jurnal Riset Informatika

Abstract:This research aims to enhance information technology (IT) governance in a financial technology company by focusing on peer-to-peer lending services. The main challenges faced by the company involve a lack of system design details, leading to post-implementation imperfections and negative impacts on business process performance, including unnecessary delays and adjustments. The lack of transparency in system evaluation is also a hindrance caused by incomplete recording of test results. Therefore, this research aims to address these challenges by utilizing the COBIT 2019 framework. The study employs a qualitative approach, utilizing data obtained through interviews and literature studies supported by the COBIT Tool Kit. The analysis is conducted on three main objectives: security management, solution identification, and IT change management, to identify disparities between the current status and desired targets. The analysis results highlight the need for improvements in specific aspects, including the lack of system design details, more precise information in the change process, and deficiencies in recording test results. Recommendations for improvement involve the development of more detailed guidelines for system design, enhanced documentation of changes, and improvements in testing instructions and result reporting. Additionally, recommendations focus on enhancing capabilities through proactive evaluation, refining security plans, developing more adaptive solution acquisition strategies, and improving testing practices. Thus, this research underscores the importance of strategic improvements within the IT and Information Systems governance framework to shape a more effective and transparent operational environment in Financial Technology companies.

English Else