Good IT Governance Research Articles

PENGUKURAN TINGKAT KEMATANGAN TATA KELOLA TEKNOLOGI INFORMASI STUDI KASUS: PT. TRIPLE “A”

In today's digital age, information technology (IT) plays a vital role in supporting and improving a company's business performance. This article measures the degree of IT governance maturity in PT. Triple “A” Securities using the Weill and Ross IT Governance model as well as the COBIT 4.1 framework. The scope of the research includes the analysis of the plan and organize process in COBIT 4.1 and the measurement of the maturity rate using the COBIT 4.1 Maturity Model. The results of the study show that some IT processes in PT are at the initial (initial) and repeatable (repeatable) maturity levels, with an average maturity rating of 1.85, indicating that the company is between level 1 (ad hoc) and level 2 (repetable). Further analysis is done on IT decisions, business strategy, IT strategy, and process control. The conclusions of this study provide insight into the IT governance patterns that exist in the PT. Triple “A” Securities and suggest areas of improvement to improve the maturity of IT governance in the future. This research is also expected to be a benchmark for companies in managing IT more effectively and efficiently, as well as identifying obstacles and encouraging the implementation of good IT governance.

Information Technology Governance Analysis to Reduce Information Security Risks Using Cobit 2019: A Case Study of Manufacturing Companies

PT Krakatau Steel (Persero) Tbk is a company engaged in the manufacturing industry that utilizes digital transformation to improve efficiency, optimize facilities and assist organizations in making business decisions quickly. However, there are new challenges in implementing digital transformation, namely increasing dependence on information technology (IT) and triggering high potential threats to information security. Therefore, good information technology governance is needed in managing information security. The research method is based on the Control Objectives for Information Technologies (COBIT) framework version 2019 as the best guide in managing information technology governance. The research was conducted in several stages, including data collection through observation of policy documents and interviews with employees of the BEICT (Business Enables & Information Communication Technology) Department who are responsible for managing services and maintaining the company's digital assets. Evaluation of the maturity level was carried out on 8 priority objectives consisting of EDM03, EDM05, APO12, APO13, APO14, BAI09, DSS05, and MEA04 based on design factor assessment. The results of the analysis of selected domain activities, the IT governance maturity level was at 2.56 (managed level). Indicates that the organization has managed and implemented information security activities, but some activities do not yet have written policies or procedures. With recommendations in the form of proposed improvements to the aspects of people, processes and technology, it is hoped that it can increase the level of maturity of IT governance in reducing information security risks and supporting digital transformation programs.

The IT Governance Role on Internal Accountability and Performance in Higher Education Institutions: Testing the Intervening Role of Performance Measurement System and IT Capabilities

Purpose: This study examined the role of IT governance practices on internal accountability and performance of higher education institutions (HEIs) through two intervening variables, namely performance measurement system (PMS) and IT capabilities. Also, it examined the IT governance role in PMS implementation and IT capabilities.Method: This study was conducted at HEI on the Island of Java using a survey approach with hypothesis testing by employing a structural equation modelling-partial least square technique (SEM-PLS). 149 HEIs were successfully included in this study.Findings: The results implied that IT governance could directly promote good PMS implementation and IT capabilities. Furthermore, IT governance was found not to be directly related to internal accountability and performance of HEIs, but it had to go through the PMS implementation as intervening. These results indicate that good IT governance did not necessarily provide added value to HEIs if it is not accompanied by a good PMS implementation. Novelty: This study presents empirical evidence that addresses the research gap on the role of IT governance on internal accountability and performance by putting the PMS policy as intervening variable. This study also presents novelty in terms of setting, namely HEIs where competitive advantage is needed to maintain viability, in the midst of increasingly stringent HEIs competition.

ANALISIS IMPLEMENTASI DATA SECURITY, INTENTION FOR COMPLIANCE, DAN KERANGKA COBIT DI PERUSAHAAN: TINJAUAN LITERATUR SISTEMATIS

One way to protect organizational data is to comply with security standards set by regulations and industry standards. The purpose of this compliance is to ensure that the organization meets the security requirements set by the competent authorities and avoids the risk of penalties or sanctions for breaches of privacy and data security. COBIT (Control Objectives for Information and Related Technology) is an IT management framework used by organizations to ensure that data security and privacy are well maintained. The purpose of this research is to find out the forms of implementation of data security management, intention for compliance with the COBIT framework in companies over the last 10 years. This research is expected to provide a scientific contribution to the direction of research in the field of data security management and provide managerial contributions regarding the urgency and challenges of COBIT implementation as part of good IT governance.

A Analysis of Information System Audit Using Control Objectives for Information and Related Technology 5 Framework on Permata Hebat Application

Permata Hebat application is an application created as a service to develop micro businesses among housewifes in Semarang City. However, to fulfill this expectation, of course, the application needs good IT management or governance, so that the application can be optimally utilized by its users. However, since its operation on March 23, 2021, it is not yet known how the quality or level of management capability or IT governance services run by the organization. Information system audit itself is an activity to evaluate and ensure that the system has met the standards. Meanwhile, one of the frameworks that can be used to conduct an audit is COBIT 5. COBIT 5 is a good practice whose processes have been adapted to current standards. As for the process control used is the Deliver, Services, and Support (DSS) domain. The results of the calculation show that for domains DSS01, DSS03, and DSS06 each received a maturity level value of 0.60, 0.52, and 0.61 or at level 1 performed. Meanwhile, domains DSS02, DSS04, and DSS05 each received maturity level values of 0.45, 0.35, and 0.42 or are still at level 0 incomplete. Therefore, there is still a need for a lot of improvement or improvement in each process. The goal is that the system can run in accordance with organizational expectations.

Measurement of Capability Level Using Cobit 5 Framework (Case Study PT Permodalan Nasional Madani)

The development of information technology brings every company to take advantage of the technology they have. The utilization of information technology must be supported by good information technology governance. PT Permodalan Nasional Madani (PNM) is an Indonesian State-Owned Enterprise (BUMN) that is engaged in financial services. PT Permodalan Nasional Madani aims to assist the development of micro, small, medium, and cooperative enterprises. PT Permodalan Nasional Madani uses the PNM Digi application system in running the company. With the existing problems, PT Permodalan Nasional Madani needs to evaluate its IT governance by conducting an information technology audit. In conducting the audit, a framework is needed, namely COBIT 5 to measure the level of capability possessed by the company. This audit is carried out using the information technology audit stages that focus on 4 to 5 COBIT 5 processes that are priority improvements. The results of this audit will be in the form of an audit report containing findings, measurement results of capabilities, impacts if not corrected, level of gaps, and recommendations for improvement to recommendations for increasing levels for PT Permodalan Nasional Madani.

Information technology governance in University of Muhammadiyah Palembang using framework COBIT 5 domain; Evaluate, Direct and Monitor (EDM)

This study aims to find out about Information Technology management at Muhammadiyah University of Palembang and to get right advice in managing Information Technology from the University level to the Study Program. Regarding benchmarks in Information Technology Governance use the Cobit 5 framework with the Evaluate, Direct and Monitor domains. Monitoring and evaluation was carried out using a questionnaire distributed to lecturers and employees at the Muhammadiyah University of Palembang and the researchers did observations on the management of higher education information technology governance. Based on the questionnaire result, the highest gap occurs in sub domain 4, which is 3.65 while the observation result towards the capability level is at level 3 with a value of 56.67%, the sub domain ensuring resource optimization has the highest capability value of 66.67%. Based on the data obtained using the EDM domain, the University of Muhamadiyah Palembang has to set Standard Operating Procedures (SOP) and Work Instructions (IK) so every five processes can run well to create good IT governance.

Developing Beru Subdistrict’s Population Data Service Application towards Paperless Office and Good IT Governance

Many government and private institutions have begun using information systems to process data and produce quality information. Likewise, the Beru Village Office is a government agency that takes care of population administration as a form of service to the community. Beru Village currently uses a computer as a tool to help with administration related to services. However, making certificates are still manual using Microsoft word. This gives rise to inefficient time spent in mail creation and data search, and often, there are missing and damaged documents. In terms of storage room efficiency, if all these files are converted into digital form or digitized, then storage space is more effective, duplication costs are more efficient, and the use of paper for documents is minimized, or called a paperless office. This reduces the environmental impact of the overuse of writing and is cost-effective, time-saving, efficient, and more productive. With a digital format, the dissemination of information becomes more accessible and faster as a manifestation of the paperless offices towards e-document-based institutions. This is why the idea of doing research and developing applications is given. The main shot is to create the implementation of a subdistrict towards a paperless office and Good IT Governance, as well as pilot projects for other agencies in processing data efficiently and entering the digital era.

Harmonization of Communication Channels: The Impact of IT Governance on Organizational Interactions

Harmonization of communication channels is a critical factor in achieving efficiency and effectiveness of internal communication in an organization. This research will explore how good IT governance can improve the overall harmonization of communication channels within an organization, as well as how this impacts interactions between organizational members. This research uses a qualitative approach with descriptive methods. The results of this research reveal that effective Information Technology (IT) governance contributes significantly to the harmonization ofcommunication channels within the organization. Good integration between various communication platforms, maintained information security, and flexibility in responding to changing communication needs are the main points that strengthen the effectiveness of organizational interactions. In addition, careful risk management and compliance with technology policies and regulations also support the continuity of communication channels, creating an environment that is safe, adaptive, and in accordance with applicable ethical and legal standards. The results of this research provide further insight into the important role of IT governance in forming a solid foundation for harmonious and effective internal communication.

Evaluasi Tata Kelola Teknologi Informasi pada Proses Pengelolaan Inovasi dan Pengelolaan Perubahan Teknologi Informasi Menggunakan COBIT 2019 di PT. XYZ

The development of information technology (IT) is a major factor in driving the business transformation process in an organization. To drive the business transformation process, good IT governance is essential, so that the utilization of IT in organizational functions can run optimally. This study aims to measure the level of IT governance capability at PT.XYZ. The IT governance audit conducted in this study used the COBIT 2019 framework in mapping the process to be assessed. In the design factor results, it is found that there are 2 domain processes that have a value above 75%, namely APO04 and BAI06 which are then obtained in the process of measuring the capability of each level, namely APO04 has a capability value at level 1, and BAI06 has a level 1 capability value. carried out the results of the gap analysis and obtained an average value of the gap of 3, that PT.XYZ needs to improve IT governance and management in order to achieve organizational goals. Based on these improvements, several recommendations are given for improvements that can be made by the company.

Audit Tata Kelola Teknologi Informasi Menggunakan Framework Cobit 5 (Studi Kasus : Badan Narkotika Nasional Provinsi Bali)

One of the organizations requiring the implementation of good IT governance is BNNP Bali. This audit is conducted to determine the level of IT process capability based on COBIT 5 standard to know the level of gap (GAP) owned by BNNP Bali. The process of conducting the audit begins by making observations in the environment related institutions and activities of data implementation and then carried out from the data is mapping with business goals according to COBIT 5, followed by mapping business goals with IT goals to obtain IT process. The acquired IT process is then selected to get an important IT process according to company officials. The process of IT obtained then performed data processing that is by using guttman method. Results of the capability level of the IT process ie EDM01, EDM02 and APO09 are at level 3 (Establised). The GAP found need to be given improvement strategy to achieve the expected capability of the institution that is 4 (predictable process) by providing recommendations related steps to achieve the expected capability value. Recommendations and improvements provided using ISO / IEC 15504: 2 2003 and ISO27002 standards obtained by mapping the IT process on COBIT 5.

Assessment of Information Technology Governance Implementation Based on COBIT Framework 5 Focus on DSS 02 Subdomain (Deliver, Service, And Support) (Case Study of Bank XXX Branch X)

Abstract— Most of companies and organizations have used information technology to improve the effectiveness and efficiency of business performance. In consequence it is necessary to have good information technology governance so that the desired goals are achieved. Bank XXX Branch X always strives to provide the best, provide excellent service and work optimally. Despite using reliable information technology, when the implementation there are still some obstacles that is accumulation of service requests in the IT division of Bank XXX Branch X. In this study, an assessment of information technology governance was carried out based on the COBIT 5 framework focusing on DSS02 subdomain. Data collection methods consist of problem formulation, literature study, observation, interviews and questionnaires. The data analysis method is carried out by calculating the results of the questionnaire answers using a Likert measurement scale to get the current capability model level, expected capability model level and risk value, calculate the gap and provide recommendations for improvement. The results of this study show that the value of the current capability model in DSS02 sub domain is 4.22, the expected capability model is 4.47 and 14 recommendations for improvement are obtained.

Penilaian Kapabilitas Tata Kelola TI Perguruan Tinggi dengan Framework COBIT 5 dan ITIL V3

The intention of doing the research is to formulate an assessment model of higher education IT governance capability, by integrating two frameworks, namely COBIT 5 and ITIL V3. Currently, there is no academic organization that has fully formulated a measurement model for IT governance capabilities that can be adopted to manage both governance and services. To achieve the goal of this research will be measured needs to be done using the COBIT 5 framework as a tool to get the capability level of IT governance. Next will measure the level of capability of existing IT services with ITIL V3. The proposed model was obtained from the measurement activities using COBIT 5 domain, namely EDM02, EDM03, APO01, APO04, APO07, APO12, and APO13. After measuring, sevens processes that lead to IT governance and IT services are evaluated, namely evaluating, directing, and overseeing the delivery of benefits and managing IT service portfolios and optimizing risks; manage IT management frameworks and carry out seven steps to improve IT processes; managing innovations in higher education; managing human resources; managing capacity; manage risk and manage information security. The model generated from this research is expected to serve as a best practice for Universities in Indonesia in implementing Good IT Governance

KAMI index as an evaluation of academic information system security at XYZ university

XYZ University is one of the universities that has used information technology to create quality service for students and the entire academic community. This Information technology service is managed by Information Technology and Communication Center (PUSTIK) which is responsible to carry out the development, management, service, and maintaining the security of information and communication technology. Good information technology governance should be able to maintain information security. Therefore, it is necessary to evaluate information system security especially the security of academic information systems. This information system security evaluation uses Keamanan Informasi (KAMI) Index which refers to the ISO/IEC 27001:2013 standard to be able to determine the maturity level of information security. An evaluation of five areas of the KAMI Index shows the Information Security Risk Management area gets the lowest score at 10 out of a total of 72. The result of the KAMI Index dashboard shows that the maturity level of each area of information security is at levels I and I+ with a total score of 166. This means that the level of completeness of implement ISO 27001:2013 standard is in the inadequate category.

Evaluation of IT Governance at Office X using the COBIT 5 Framework

The IT governance audit aims to determine the level of importance (maturity level) of a company or government agency. IT governance audit is essential because if governance is not implemented correctly, the harmony between IT is beneficial to support business processes, and standard procedures will not be achieved. One of the agencies that require the implementation of good IT governance is Office X in Badung Regency. Office X in Badung Regency has a function in developing ICT infrastructure through application development, public service content, and ICT networks to improve public services. Conditions that occur in the field are frequent errors caused by internal and external parties that negatively impact the data management of Office X. The audit process begins with observations in the agency environment related to activity data and implementation, then mapping with business goals according to COBIT 5, followed by mapping business goals with IT Goals to obtain IT processes. The obtained IT processes are then selected to obtain critical IT processes according to the Executive Office. The audit results show that four IT processes need to be given recommendations for improvement, namely MEA 01, EDM 01, APO 07, DSS02.

Analisis Tata Kelola Teknologi Informasi Menggunakan Framework Cobit 5 (Studi Kasus: STIKES Garuda Putih Jambi)

The implementation of IT requires good IT governance mechanisms to conduct comprehensive oversight so that the business goals of an organization can truly be achieved effectively and efficiently. All levels of IT managers must understand that risk is uncertain and harms a goal to be achieved. Risk can be a big challenge for any organization or institution that must be able to perform risk management as best it can. With well-managed risk management, it will be able to protect IT assets and add value to IT management. STIKES Garuda Putih is one of the nonprofit organizations that operate in the field of health education. To ensure excellent service for all communities and stakeholders related to IT services, it is necessary to conduct IT governance analysis activities to see if it is working properly. The analysis activity will be done using the COBIT framework 5. In this study, the capability model as a measuring tool for respondents' answers from the questionnaire is made based on the cobit framework 5. Based on the results of the process maturity level analysis on IT management (capability) is in the 3.6 to 1.4 the gap, so that concluded that IT governance has been implemented, but there is still the domain must be improved to achieve the maximum level. It is recommended that SOPs and IT performance management achievement reports, IT risk management, IT management strategy improvement, and the need for an internal control structure of IT governance be established

The measurement of maturity level of information technology service based on COBIT 5 framework

Institutions are currently progressing on IT development and maximization in order to advance for good IT governance. Lack of comprehensive requirements analysis of IT utilization may lead to hindrances within IT development from achieving effective outcomes. This quantitative study employs control objective for information & related technology (COBIT 5) business framework to assess and identify the maturity level of IT service, primarily within the domain of delivery, service, and support (DSS). Data were obtained through questionnaire, observation, and documentation. The result reveals that the average maturity level of IT service is in level 3 (established); by which the study recommends for enhancements and upgrades in IT performance and service within the scope of compliance and IT service application and support.

Evaluasi Tata Kelola Framework COBIT 5 pada Dinas Kependudukan dan Pencatatan Sipil

Tata kelola teknologi informasi saat ini dibutuhkan untuk mengatur semua faktor dan dimensi yang berhubungan dengan penggunaan teknologi informasi mejadi bersinergi dan bisa memberikan nilai tambah yang diharapkan bagi sebuah instansi. Dinas Kependudukan dan Pencatatan Sipil di Tanggamus, Lampung misalnya, pada penerapan teknologi informasi terkadang ditemukan data penduduk yang tidak sinkron. Sehingga penelitian ini bertujuan untuk mengevaluasi tata kelola teknologi informasi pada Dinas Kependudukan dan Pencatatan Sipil Tanggamus, Lampung. Metode yang digunakan dalam penelitian ini adalah audit operasional dengan Framework COBIT 5. Framework COBIT 5 digunakan karena dapat membantu sebuah instansi dalam merealisasikan tata kelola teknologi informasi yang baik. Hasil penelitian menunjukkan bahwa tata kelola teknologi informasi pada Dinas Kependudukan dan Pencatatan Sipil dikategorikan pada level 4 yaitu manage and measurable, yang berarti bahwa proses bisnis sudah dimonitor dan diukur dengan baik.
 .

The Effect of Competitive Advantage towards Financial Performance with Good Information Technology Governance as Moderating Variable

Bank’s strength competitive advantage value in digital economic era is depend on its digital and online services quality. The higher usage of online service will enhanced the bank’s profit thus will be reflected in its financial performance. This is the main function of Good IT Governance (GITG) to assure the qualified and safe IT implementation in each bank. This research aimed to analyze the effect of competitive advantage toward financial performance by good IT governance as moderating variable. Competitive Advantage was represented by assets utilization capability and financial performance was represented by ROA (Return on Assets). This research studied on 13 listed banks in Indonesian Stock Exchange which annually published their financial reports during 2012-2016 period. 65 Samples obtained by purposive sampling method,and to strength these objectives, a questionnaire was also developed to measured the good IT governance value. Moderating Regression Analysis using absolute difference method used to examined the research model and hypotheses.The result found that CA has positive effect toward while also found that GITG not moderating the causal relationship between CA toward ROA Keywords: CA, Good IT Governance, ROA

IT GOVERNANCE EVALUATION USING COBIT 5 FRAMEWORK ON THE NATIONAL LIBRARY

National Library of Indonesia (NLI) is a public library located in Jakarta that was established in 1980 by the decree of Ministry of Education and Culture. This day NLI has already applied digitalization of its contents and its management with IT, IT has been an important aspect in an organization. The objective of IT implementation is to increase effectivity and performance in organization. In order to get maximum results good IT Governance is needed in order to align IT with business, the better IT Governance the greater outcome that the organization will get. The objective of this research is get an overview about the level of IT Governance on going, the analysis tool will be used is COBIT 5 focusing on DSS domain. The average score of DSS01, DSS02 and DSS 03 is in 1.2 to 1.6 and for the DSS04, DSS05 and DSS06 domain the average score is between 2.1 and 2.4