CFP last date
20 January 2025
Reseach Article

Analysis of Risk Assessment on Integrated Information System using COBIT 5 Framework

by Citra Dika Saputra, Imam Riadi
International Journal of Computer Applications
Foundation of Computer Science (FCS), NY, USA
Volume 183 - Number 23
Year of Publication: 2021
Authors: Citra Dika Saputra, Imam Riadi
10.5120/ijca2021921602

Citra Dika Saputra, Imam Riadi . Analysis of Risk Assessment on Integrated Information System using COBIT 5 Framework. International Journal of Computer Applications. 183, 23 ( Sep 2021), 38-45. DOI=10.5120/ijca2021921602

@article{ 10.5120/ijca2021921602,
author = { Citra Dika Saputra, Imam Riadi },
title = { Analysis of Risk Assessment on Integrated Information System using COBIT 5 Framework },
journal = { International Journal of Computer Applications },
issue_date = { Sep 2021 },
volume = { 183 },
number = { 23 },
month = { Sep },
year = { 2021 },
issn = { 0975-8887 },
pages = { 38-45 },
numpages = {9},
url = { https://ijcaonline.org/archives/volume183/number23/32070-2021921602/ },
doi = { 10.5120/ijca2021921602 },
publisher = {Foundation of Computer Science (FCS), NY, USA},
address = {New York, USA}
}
%0 Journal Article
%1 2024-02-07T01:17:41.880614+05:30
%A Citra Dika Saputra
%A Imam Riadi
%T Analysis of Risk Assessment on Integrated Information System using COBIT 5 Framework
%J International Journal of Computer Applications
%@ 0975-8887
%V 183
%N 23
%P 38-45
%D 2021
%I Foundation of Computer Science (FCS), NY, USA
Abstract

The Integrated Service Management Information System is dedicated to providing the best service in terms of population administration and licensing services to the community. The Integrated Service SIM can be accessed through the Jogja Smart Service (JSS) application or http://jss.jogjakota.go.id. Integrated Services allow for risks that can interfere with information assets and organizational goals. This study uses the COBIT 5 framework which aims to analyze risk assessment so that organizations can choose a mitigation approach to risks that may occur and provide recommendations. The risk management assessment in this study uses the COBIT 5 process domain framework EDM03 (Ensure Risk Optimization) and APO12 (Risk Management). This study aims to determine the level of IT risk management capability using the COBIT 5 Process Assessment Model (PAM) methodology which consists of the Initiation, Planning the Assessment, Briefing, Data Collection, Data Validation, Process Attribute Level and Reporting the Result stages. Calculation of the questionnaire using the Likert Scale method. The result of the research is that the Capability level value in the EDM03 domain is at level 2 with a capability value of 1.63, at this level the Integrated Service SIM has implemented the Managed Process. EDM03 has a Gap value of 1 level, this is the basis for making recommendations. While in the APO12 domain it is at level 1 with a capability value of 1.42 at this level Integrated Service SIM has implemented Performed Process. APO12 has a Gap value of 1 level, this is the basis for making recommendations. This research was carried out well in accordance with the expected research objectives.

References
  1. Agtika, A. S., Mursityo, Y. T. and Rachmadi, A. (2019). Evaluation of Information Technology Risk Management at the Planning, Research and Development Agency (Barenlitbang) Malang City Using Cobit 5 Domain EDM03 and APO12. Journal of Information Technology Development and Computer Science, (5), pp. 4218-4225.
  2. Ali, Masyhud, 2006, Risk Management, Jakarta: PT Raja Grafindo Persada.
  3. Arief, M. H. and Suprapto (2018). Evaluation of Information Technology Risk Management Using the COBIT 5 Framework (Case Study at Perum Jasa Tirta I Malang). Journal of Information Technology and Computer Science Development, 2(1), pp. 101–109.
  4. Artikelsiana. Understanding Analysis, Objectives & According to the Experts. Found on Saturday 10 April 2021, https://artikelsiana.com/pengertian-analisis-tujuan-analisis/.
  5. Asari, S. O. (2020). Analysis of Risk Assessment in Corporate Postal Services Using the OCTAVE Allegro Framework. Information Systems Thesis, Ahmad Dahlan University, Yogyakarta, hlm. 17 - 19.
  6. Bungin, B. (2010). Quantitative Research Methods. Jakarta: Prenada Media gropu, Ed.
  7. Djojosoeharso, S. (1999). Principles of Risk Management and Insurance. Jakarta: Salemba Empat.
  8. Fahmi, I. (2012). Production and Operations Management. Bandung: Alfabeta.
  9. Ibrahim, B. (2009). Total Quality Management: A Guide to Facing Global Competition. Jakarta: PT. Gramedia Pustaka Utama.
  10. ISACA. (2012). COBIT 5: A Business Framework for the Governance and Management of Enterprise IT. Rolling Meadows, ISACA.
  11. ISACA. (2012). COBIT 5 : A Business Framework For The Governance And Management Of Enterprise IT.
  12. Komaruddin, (2001). Ensilopedia Manajemen. Jakarta: Bumi Aksara
  13. Kotagede District, Yogyakarta. Main tasks of the district. Accessed on Wednesday 7 April 2020. https://kotagedekec.jogjakota.go.id.
  14. Kotagede District, Yogyakarta. Kotagede sub-district organizational structure. Accessed on Wednesday 7 April 2021,https://kotagedekec.jogjakota.go.id/page/index/struktur-organisasi.
  15. Khairuna, D., Wibowo, S. and Gamayanto, I. (2020). Evaluation of Information Technology Risk Management Using COBIT 5 Framework Based on Domain APO12 (Manage Risk) at the Head Office of BPR Agung Sejahtera. 5(1), pp. 18–26.
  16. Megawati and Syntia, A. (2018). Evaluation of Information Technology Risk Management Using the COBIT 5.0 Framework. Scientific Journal of Information Systems Engineering and Management, 4(2), pp. 118–122.
  17. Putri, C. U. (2017). Risk Assessment of Information Technology Processes Based on the Cobit 5 Framework at the Helpdesk, Sub-directorate of Information Technology and Systems Services, Directorate of Information Technology and Systems Development (DPTSI) Sepuluh Nopember Institute of Technology. 241. http://repository.its.ac.id/3110/.
  18. Putri, Y. I., Suprapto and Herlambang, A. D. (2018). Assessment of the Application of Information Technology Risk Management Capability Using the COBIT 5 Framework (Study on PDAM Malang City, East Java). Journal of Information Technology and Computer Science Development, 2(11), pp. 4855–4862.
  19. Pendidik.co.id., 2021. Understanding Services According to Experts. Found on Wednesday 7 April 2021, from https://www.pendidik.co.id/pengertian-pelayanan.
  20. Stewart, J., Chapple, M., & Gibson, D. (2015). CISSP(ISC) 2 Certified Information Systems Security Professional Official Study Guide. 7th Edition, Wiley.
  21. Yap, P. 2017. Corporate Risk Management. Jakarta: Growing Publishing.
Index Terms

Computer Science
Information Sciences

Keywords

Risk Management Capability Level Gap RACI Chart Skala Likert