Application Of the Cobit 2019 Framework to Analyse the Security Of Academic Information Systems

M Khairul Anam; Silvyana Dwi Putri; Devi Yuliana; Eva Yumami; Tri Putri Lestari

doi:10.51454/decode.v3i2.192

Authors

M Khairul Anam Department of Information Technology STMIK Amik Riau
Silvyana Dwi Putri Department of Information Technology STMIK Amik Riau
Devi Yuliana Department of Business Digital, Riau Institute of Technology and Business
Eva Yumami Polytechnic State of Bengkalis
Tri Putri Lestari Department of Information System, Rokan Institute of Technology

DOI:

https://doi.org/10.51454/decode.v3i2.192

Keywords:

APO, COBIT 2019, DSS

Abstract

STMIK Amik Riau implements an integrated information system to support a fast and real-time information management process where each service has its security. In this study, the analysis used to determine the maturity level of information system security governance was the COBIT 2019 framework with a CMMI scale. In COBIT 2019 the domains used were DSS05 and APO13. Based on the result of the analysis, the results of the average value of the overall maturity level on the security of the academic information system of STMIK Amik Riau were currently at level 3, which was defined. It meant that the security of the information system was running well but needed to be evaluated and optimized continuously. The value of each sub domain was 3.08 for the DSS05 sub domain (user), 3.35 for DSS 05 sub domains (maintainer), and 2.5 for APO13 sub domains (maintainer). Then the average result obtained from the gap was 0.53, meaning that the current level of maturity level with the desired maturity level is not too far away and can be increased by providing recommendations.

Author Biographies

M Khairul Anam, Department of Information Technology STMIK Amik Riau

Information of Technology

Devi Yuliana, Department of Business Digital, Riau Institute of Technology and Business

Department of Informatics engineering, Polytechnic State of Bengkalis

References

Ardelia, F. F., Anam, M. K., Fitri, T. A., & Zoromi, F. (2020). Analisis Perspektif Pada Penerapan E-Money Menggunakan Delone and Mclean Is Success Model Di Bandara Sultan Syarif Kasim II Pekanbaru. Jurnal Informatika dan Rekayasa Elektronik, 3(2), 100-110. https://doi.org/10.36595/jire.v3i2.256.

Akpan, F., Bendiab, G., Shiaeles, S., Karamperidis, S., & Michaloliakos, M. (2022). Cybersecurity challenges in the maritime sector. Network, 2(1), 123-138. 10.3390/network2010009.

Alhassan, M. M., & Adjei-Quaye, A. (2017). Information security in an organization. International Journal of Computer (IJC), 24(1), 100-116.

Anam, M. K., Lizarti, N., & Ulfah, A. N. (2019). Analisa Tingkat Kematangan Sistem Informasi Akademik STMIK Amik Riau Menggunakan ITIL V3 Domain Service Operation. Fountain of Informatics Journal, 4(1), 8-12. 10.21111/fij.v4i1.2810.

Anam, M. K., Putra, A. R., Fadli, S., Firdaus, M. B., Suandi, F., & Lathifah, L. (2020). Audit teknologi informasi pada sistem perkreditan online terpadu bank xyz cabang perawang menggunakan itil v3. Jurnal Manajemen Informatika dan Sistem Informasi, 3(2), 90-99. 10.36595/misi.v3i2.127.

Aritonang, I. J., Udayanti, E. D., & Iksan, N. (2018). Audit Keamanan Sistem Informasi Menggunakan Framework Cobit 5 (APO13). ITEJ (Information Technology Engineering Journals), 3(2), 6-10.

Astuti, H. M., Muqtadiroh, F. A., Darmaningrat, E. W. T., & Putri, C. U. (2017). Risks assessment of information technology processes based on COBIT 5 framework: A case study of ITS service desk. Procedia Computer Science, 124, 569-576. 10.1016/j.procs.2017.12.191.

Bastori, I., & Sriyana, S. (2020). Analisis Risiko Proyek PLTN Kalbar Dengan Pendekatan Model AHP dan PMBOK. Jurnal Pengembangan Energi Nuklir, 22(1), 39-44. http://dx.doi.org/10.17146/jpen.2020.22.1.5976

Daryanto, D., Anam, M. K., Efendi, Y. and Rahmaddeni, R. (2022). Pengujian ISO 25010 Pada Smart Chair Akupresure Berbasis Internet Of Things (IoT). JURNAL MEDIA INFORMATIKA BUDIDARMA, 6(3), 1476-1483. 10.30865/mib.v6i3.4134.

Firmansyah, B. (2021). Sistem Informasi Manajemen Dan Layanan Aset Ti Menggunakan Framework Codeigniter. TEKNIMEDIA: Teknologi Informasi dan Multimedia, 2(1), 8-16.

Garfinkel, S. (1995), PGP: Pretty Good Privacy, 1st ed.

Gunawan, R., & Tjahjadi, D. (2018). Audit Sistem Informasi Akademik Berbasis Web Menggunakan Framework Cobit 5.0 Pada Domain Apo13 Dan Dss05 (Studi Kasus: SIAT STMIK ROSMA KARAWANG). Jurnal Interkom: Jurnal Publikasi Ilmiah Bidang Teknologi Informasi dan Komunikasi, 13(3), 29-40.

Gusni, R. S. A., Kraugusteeliana, K., & Pradnyana, I. W. W. (2021). Analisis Tata Kelola Keamanan Sistem Informasi Rumah Sakit XYZ Menggunakan Cobit 2019 (Studi Kasus pada Rumah Sakit XYZ). Proceeding KONIK (Konferensi Nasional Ilmu Komputer), 5, 434-439.

Imany, Y. D., Putra, W. H. N., & Herlambang, A. D. (2019). Evaluasi Tata Kelola Keamanan Informasi menggunakan COBIT 5 pada Domain APO13 dan DSS05 (Studi pada PT Gagas Energi Indonesia). Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer, 3(6), 5926-5935.

Krisdiyawan, R. D., & Kuswantoro, R. H. (2017). Audit keamanan sistem informasi pada rs mata dr. Yap yogyakarta menggunakan framework cobit 5. Jurnal Ilmiah Manajemen Informasi dan Komunikasi, 1(1), 8-15.

Widayanto, S. R., Suprapto, S., & Rachmadi, A. (2019). Evaluasi Manajemen Teknologi Informasi Menggunakan Framework COBIT 5 Domain Monitoring, Evaluate, and Assess pada PT. PLN (Persero) Kantor Pusat. Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer, 3(7), 6956-6964.

Rizal, M., & Yani, Y. M. (2016). Cybersecurity policy and its implementation in Indonesia. Journal of ASEAN Studies, 4(1), 61-78.

Saleh, M., Yusuf, I., & Sujaini, H. (2021). Penerapan Framework COBIT 2019 pada Audit Teknologi Informasi di Politeknik Sambas. JEPIN (Jurnal Edukasi dan Penelitian Informatika), 7(2), 204-209. 10.26418/jp.v7i2.48228.

Sepis, Y. T. (2022). Analisa Keamanan Sistem Informasi Menggunakan Framework COBIT 5 Dengan Domain DSS05 dan APO13 di PT XYZ. TeIKa, 12(01), 35-42.

Shariff, M. N. (2018). Tata Kelola Penerapan Teknologi Informasi Pengelolaan Pajak Daerah di DPPKAD KAB. OKI Menggunakan Framework COBIT 5. Seminar Nasional Teknologi Informasi dan Komunikasi (SEMNASTIK), 353-358.

Suhana, Mansyur, A., Liana, L. and Fauzan, M. (2022). Improving Student Academic Performance through Knowledge Sharing. Hong Kong Journal of Social Sciences, Vol. 60, 134-142.

Syafariani, R. F., & Devi, A. (2019, November). Web-Based Academic Information System. In IOP Conference Series: Materials Science and Engineering (Vol. 662, No. 2, p. 022042). IOP Publishing.

Wijaya, A. F., & Andani, A. T. (2017). Evaluasi Kinerja Sistem Informasi E-Filing Menggunakan Cobit 5 Pada Kantor Pelayanan Pajak Pratama Kota Salatiga. Jurnal Terapan Teknologi Informasi, 1(1), 61-70, doi: 10.21460/jutei.2017.11.9.

Woda, J. R., & Bisma, R. (2020). Pembuatan Dokumen Prosedur Keamanan Informasi Yang Mengacu Pada Cobit 5 dan ISO 27001: 2013 Pada Badan Pengelola Keuangan Dan Aset Daerah Jawa Timur. Journal of Emerging Information System and Business Intelligence (JEISBI), 1(1), 51-59.

Zoromi, F. (2013). Perancangan Sistem Test Kompetensi Ujian Masuk Perguruan Tinggi (Studi Kasus STMIK-AMIK Riau). Sains dan Teknologi Informasi, 2(1), 31-40.