To see the other types of publications on this topic, follow the link: COBIT.
Journal articles on the topic 'COBIT'
Create a spot-on reference in APA, MLA, Chicago, Harvard, and other styles
Consult the top 50 journal articles for your research on the topic 'COBIT.'
Next to every source in the list of references, there is an 'Add to bibliography' button. Press on it, and we will generate automatically the bibliographic reference to the chosen work in the citation style you need: APA, MLA, Harvard, Chicago, Vancouver, etc.
You can also download the full text of the academic publication as pdf and read online its abstract whenever available in the metadata.
Browse journal articles on a wide variety of disciplines and organise your bibliography correctly.
1
Syuhada, Aldy Maulana. "Kajian Perbandingan Cobit 5 dengan Cobit 2019 sebagai Framework Audit Tata Kelola Teknologi Informasi." Syntax Literate ; Jurnal Ilmiah Indonesia 6, no. 1 (January 20, 2021): 30. http://dx.doi.org/10.36418/syntax-literate.v6i1.2082.
Full textAbstract:
Teknologi Informasi atau biasa disebut TI merupakan hal terpenting bagi kemajuan perusahaan, semakin berkembangkan TI maka harus dilakukan tata kelola TI yang baik sesuai dengan standart yang ada dan harus dievaluasi terus menerus. Salah satu cara untuk mengevaluasi tata kelola TI yaitu dengan dilakukanya audit teknologi informasi. Salah satu framework yang sering digunakan untuk melakukan audit tata kelola TI adalah COBIT. Tujuan dari penelitian ini adalah mengetahui perbandingan antara COBIT 5 dengan COBIT 2019 serta mengetahui kekurangan dan kelebihan dari masing-masing COBIT tersebut. Metode yang digunakan yaitu kualitatif dengan studi literatur yang berisi tentang uraian teori, temuan dan bahan penelitian lain yang diperoleh sebagai acuan untuk dijadikan landasan kegiatan penelitian. Hasil yang diperoleh dari penelitian ini yaitu terdapat beberapa perbedaan dari segi gambaran secara umum pada COBIT 2019 memiliki desain faktor, segi domain, pada COBIT 2019 terdapat tiga domain tambahan dan bersifat objective. Selanjutnya dari segi prinsip COBIT 2019 memiliki 9 prinsip yang telah dikembangkan dari COBIT sebelumnya. Selanjutnya dari goal cascade dan dari perhitungan kinerja, COBIT 5 hanya menggunakan capability level tetapi pada COBIT 2019 adanya penambahan menjadi capability level dan maturity level. Dari segi kelebihan COBIT 5 lebih banyak digunakan sedangkan dari kekurangannya tidak bersifat flexible sedangkan COBIT 2019 kelebihannya lebih bersifat flexible dan kekurannya prinsip dan detail domainya lebih banyak sehingga akan lebih sulit dalam implementasi.
2
Fajrin, Rati Amanda, Murahartawaty Murahartawaty, and Soni Fajar S. Gumilang. "Perancangan Tata Kelola Teknologi Informasi di BAPAPSI Pemkab Bandung Menggunakan framework COBIT 5 Pada Domain EDM dan DSS." Journal of Information Systems Engineering and Business Intelligence 2, no. 2 (October 29, 2016): 74. http://dx.doi.org/10.20473/jisebi.2.2.74-80.
Full textAbstract:
Abstrak— Teknologi informasi memiliki peranan penting untuk mendukung pelaksanaan informasi publik. Pemerintah Kabupaten Bandung memiliki salah satu badan, yaitu BAPAPSI. Permasalahan yang ada di BAPAPSI, terutama pada bidang PPI adalah tidak meratanya jaringan internet di seluruh kecamatan, jaringan internet yang buruk, penanganan insiden yang buruk dan pengadaan server yang tidak mendukung penggunaan aplikasi di BAPAPSI. Oleh karena itu, untuk menyelesaikan masalah yang ada di lingkungan BAPAPSI menggunakan metodologi 7 lifecycle COBIT 5. COBIT 5 menyediakan panduan yang lengkap, pedoman yang komprehensif dalam membantu organisasi untuk mencapai efektivitas penggunaan TI. Tahap pertama pada penelitian ini adalah melakukan penilaian tingkat kapabilitas, kemudian memetakan governance objective, enterprise goals, IT Related Goals dan IT Process pada COBIT 5. Sehingga menghasilkan proses prioritas yaitu EDM04 dan DSS01 yang akan dianalisis dan dilakukan perancangan prosedur tata kelola TI dengan menggunakan COBIT 5. Pada penelitian ini juga merekomendasikan struktur organisasi sasaran sesuai dengan kebutuhan Pemerintah Kabupaten Bandung.Kata Kunci— tata kelola TI, COBIT 5, domain EDM, domain DSS, PemerintahanAbstract— Information technology has an important role to support the implementation of public information. Bandung regency government has one of the bodies, named BAPAPSI. The existing problems in BAPAPSI, especially in PPI are uneven internet network in all districts, bad internet connection, bad handling of the incident, and the procurement of servers that do not support the use of the application in BAPAPSI. Therefore, 7 lifecycle COBIT 5 methodology is used to solve the problems in BAPAPSI. COBIT 5 provides complete, comprehensive guidelines in helping organizations to achieve the effective use of IT. The first stage in this research is assess capability level, then the next stage are mapping governance objective, enterprise goals, IT Related Goals and IT Process on COBIT 5. So, the results are the priority process on EDM04 and DSS01 domain to be analyzed and to design procedure IT governance using COBIT 5. This research also recommends the target of organizational structure in accordance with the needs of the Bandung regency government.Keywords— IT Governance, COBIT 5, EDM domain, DSS domain, Government
3
AB, Mutiara, Prihandoko, Prasetyo E, and Widya C. "Analyzing COBIT 5 IT Audit Framework Implementation using AHP Methodology." JOIV : International Journal on Informatics Visualization 1, no. 2 (April 17, 2017): 33. http://dx.doi.org/10.30630/joiv.1.2.18.
Full textAbstract:
COBIT has been known as the best practice standard in IT Governance, both in management or evaluated of the IT utilization. The role of IT Audit framework to evaluate the benefits of Information Technology in an enterprise either its gain benefits or fail in order to achieved the business objective. In Indonesia, most organization has been implemented the IT as their main support of process business, and deliberately conduct the evaluation of the implementation used some IT Audit framework such as ITIL, TOGAF, COBIT and other Government rule. Those frameworks have been known as an IT governance framework, most of organizations are choosing COBIT and ITIL due to the internal control issues. Therefore, this research will be focus on COBIT 5 utilization as an IT audit frameworks, a comparison also will be done between the COBIT 5 and ITIL. The comprehensive parameters in COBIT 5 which provides 5 category process in two domain, management and control will be the variables of prioritizing process among them for each object. This paper will analyze the use of those parameters for some selected organization and prioritize them using the Analytical Hierarchy Process (AHP) methodology that will lead to create a new model of IT Audit frameworks based on the user requirement and opinion. the analyzing process the implementation of COBIT 5 framework in some organizations, and priorities the preferred attributes of COBIT 5 that very likely and suitable to the culture and needs of user in Indonesia using AHP Methodology, and create the best qualified model of IT Audit that fit with the requirements of the organizations especially for Indonesia organizations and companies.
4
Boy, Radja, Jay Idoan Sihotang, and Jimmy Moedjahedy. "Analisa Efektivitas Pembelajaran Daring Melalui Zoom Meeting Menggunakan Framework COBIT 5 Domain Deliver, Service, and Support (DSS)." CogITo Smart Journal 8, no. 1 (June 19, 2022): 35–46. http://dx.doi.org/10.31154/cogito.v8i1.389.35-46.
Full textAbstract:
Penelitian ini dibuat dengan tujuan untuk mengetahui apa yang sebenarnya didapatkan mahasiswa/i selama pembelajaran daring berlangsung, seberapa efektif pembagian materi yang disampaikan, dan apa saran yang para mahasiswa/i berikan untuk membuat pembelajaran daring ini menjadi lebih baik dari sebelumnya. Pengumpulan data dilakukan dengan pembagian kuesioner yang berbasis COBIT 5 dengan domain Deliver, Service, and Support (DSS). Responden kuesioner penelitian adalah mahasiswa/i Fakultas Teknologi Informasi Universitas Advent Indonesia dengan jumlah responden 52. Metode penelitian yang dipakai adalah metode deskriptif dengan pendekatan kualitatif yang akan digunakan saat menganalisa data yang dikumpulkan melalui hasil kuesioner dan dibandingkan dengan panduan dari COBIT 5 dengan domain Deliver, Service, and Support (DSS). Hasil dari penelitian ini menunjukkan bahwa pembelajaran daring menggunakan Zoom Meeting dinilai efektif, dengan tingkat kematangan masing-masing sub-domain dimulai dari DSS1 sebesar 3,71 yang termasuk level 4 indeks kematangan COBIT 5, DSS5 sebesar 2,98 yang termasuk level 3 indeks kematangan COBIT 5, dan DSS7 sebesar 3,92 yang termasuk level 4 indeks kematangan COBIT 5. Tingkat kapabilitas harapan masing-masing sub-domain sebesar 4,5 dengan rata-rata nilai kesenjangan sebesar 0,96.Kata kunci—COBIT 5, Pembelajaran Daring, Zoom Meeting
5
Grembergen, Wim Van. "Millennium conversion & COBIT." Computer Audit Update 1997, no. 7 (July 1997): 17–24. http://dx.doi.org/10.1016/s0960-2593(97)84494-1.
Full text
6
Nurtrisha, Widyatasya Agustika. "IDENTIFICATION OF THE DOMAIN PROCESS INTERSECTIONS BETWEEN COBIT 4.1 AND COBIT 5 IN THE DETERMINATION OF IT GOVERNANCE ASSESSMENT." Jurnal Pilar Nusa Mandiri 17, no. 1 (March 5, 2021): 85–92. http://dx.doi.org/10.33480/pilar.v17i1.2229.
Full textAbstract:
The implementation of information technology has an essential role in organizational development to support a business process. Currently, information technology is widely adopted by the organization. It is believed to help improve the efficiency of the ongoing business process so that IT management is needed in a more structured. Thus, need a guideline that can guide IT governance so it can be measured and utilized. COBIT is one of the frameworks that can utilize in providing IT governance guidelines for organizations, and it is the main reference used in implementing IT governance in organizations. Still, the assessment process takes a long time because many processes are assessed. So conducted this research to determine the similar activities between COBIT 4.1 and COBIT 5 as the basis for determining the development of an organizational assessment process that the organization will carry out to see the efficiency of the assessed process domain. This research is focused on several organizations that have carried out IT governance assessments with COBIT 4.1 and will then implement the assessment process using COBIT 5. Still, it will usually take more time and effort if done separately to streamline the assessment process and identify domain intersects. The process from COBIT 4.1 and COBIT 5 so that the effort to carry out the assessment can be more streamlined. Thus, this research will produce a study result related to which activities intersect with each other to determine the IT governance assessment in an organization.
7
Zen Munawar, S.T, S.Kom., M.Kom. "AUDIT TATA KELOLA TEKNOLOGI INFORMASI DENGAN FRAMEWORK COBIT 5 DI PT. BEST STAMP INDONESIA." TEMATIK 1, no. 2 (December 30, 2014): 35–43. http://dx.doi.org/10.38204/tematik.v1i2.47.
Full textAbstract:
Abstrak : Pemakaian Teknologi Informasi pada PT. Best Stamp Indonesia saat ini telah dilakukan audit dengan COBIT 4.1 namun seiring perkembangan COBIT maka perlu diketahui jika dilakukan dengan COBIT 5 bagaimana efisiensi dan process capability levels tata kelola teknologi informasi yang sudah ada. Audit tata kelola teknologi informasi dimaksudkan untuk membuat pemetaan proses monitoring, evaluasi dan akses terhadap process capability levels.Berdasarkan hal tersebut maka perlu dilakukan audit dengan COBIT 5 dalam pengelolaan teknologi informasi, agar dapat mengetahui sejauh mana penerapan tata kelola Teknologi Informasi dan apakah sistem yang telah dibuat sesuai tujuan perusahaan. Dalam penelitian ini menggunakan model process capability levelssebagai alat ukur terhadap jawaban responden dari kuesioner yang dibuat berdasarkan framework Cobit 5 serta sebagai definisi dan pemahaman proses tata kelola teknologi informasi yang sedang berjalan. Dari rekapitulasi jawaban dari para responden, maka didapatkan nilai process capability levels saat ini sebesar 3,0 pada skala 0-5. Agar bisa mendapatkan hasil yang diharapkan, maka dibuatlah beberapa usulan untuk meningkatkan kinerja serta sebagai acuan perbaikan tata kelola teknologi informasi di PT. Best Stamp Indonesia dimasa yang akan datang. Dari hasil implementasi diperoleh hasil bahwa model tata kelola TI dan model audit sistem informasi COBIT dapat diterapkan pada proses teknologi informasi di perusahaan, namun demikian perlu dilakukan penyesuain atau modifikasi terhadap prosesnya.
8
Ruslam, Reza Zulfikar, Nur Indrawati, and Yan Andriariza Ambhita Sukma. "PENILAIAN TATA KELOLA TEKNOLOGI INFORMASI PADA SISTEM LOGISTIK PT XYZ BERDASARKAN COBIT (INFORMATION TECHNOLOGY GOVERNANCE ASSESSMENT AT LOGISTIC SYSTEM OF PT XYZ BASED ON COBIT)." Masyarakat Telematika Dan Informasi : Jurnal Penelitian Teknologi Informasi dan Komunikasi 9, no. 2 (December 31, 2018): 125. http://dx.doi.org/10.17933/mti.v9i2.124.
Full textAbstract:
AbstractInformation Technology governance assessment at PT XYZ is deemed necessary to provide recommendations for corrective actions related to logistics service provision which are the main business processes of PT XYZ. This study uses the COBIT 4.1 framework with the scope of the logistics system. This study produces recommendations for corrective actions related to IT governance based on the COBIT 4.1 framework in the PT XYZ logistics system. The study produced problem-root improvement recommendations, matury-level improvement recommendations, IT Goals recommendations, and Business Goals recommendations; derived from 4 (four) domains in COBIT 4.1, namely: Planning and Organizing (PO), Procurement and Implementation (AI), Service Delivery and Support (DS), and Monitor and Evaluation (ME). AbstrakPenilaian tata kelola Teknologi Informasi pada PT XYZ dipandang perlu dilakukan untuk memberikan rekomendasi tindakan perbaikan terkait penyediaan layanan logistik yang merupakan proses bisnis utama PT XYZ. Penelitian ini menggunakan kerangka kerja COBIT 4.1 dengan lingkup sistem logistik. Penelitian ini mengasilkan rekomendasi tindakan perbaikan terkait tata kelola TI berdasarkan kerangka kerja COBIT 4.1 pada sistem logistik PT XYZ. Penelitian menghasilkan rekomendasi perbaikan akar masalah, rekomendasi perbaikan tingkat maturitas, rekomendasi IT Goals, dan rekomendasi Business Goals; yang berasal dari 4 (empat) domain dalam COBIT 4.1, yaitu: Perencanaan dan Pengorganisasian (PO), Pengadaan dan Implementasi (AI), Penyampaian Layanan dan Dukungan (DS), dan Monitor dan Evaluasi (ME).
9
Chen, Jie, and Le Ping Shen. "Assessment Model of Corporate Governance with COBIT-Based IT Governance." Advanced Materials Research 121-122 (June 2010): 550–57. http://dx.doi.org/10.4028/www.scientific.net/amr.121-122.550.
Full textAbstract:
Organizations are more concerned about the appropriate IT governance. The growing dependency on IT due to the increasing volume of business process automation further challenges the role of Information System Auditor. IT Governance Institute has developed COBIT as a model for this purpose.AS one of the most important and widely adopted performance measurement methods, COBIT is an attractive tool to measure and evaluate IT contribution to corporate performance. In this paper, we review the potential role of information technology as a corporate governance tool and explore the Control Objectives for Information and related Technology (COBIT). As the worlds leading IT governance and control framework COBIT should be gauged not only in simple control terms but by reference to the useful assessment of corporate governance efficiency.
10
Santacruz Espinoza, Julio Jhovany, Cesar Remigio Vega Abad, Luis Fernando Pinos Castillo, and Oscar Efrén Cárdenas Villavicencio. "Sistema cobit en los procesos de auditorías de los de sistemas informáticos." Journal of Science and Research: Revista Ciencia e Investigación 2, no. 8 (December 29, 2017): 65. http://dx.doi.org/10.26910/issn.2528-8083vol2iss8.2017pp65-68.
Full textAbstract:
EL presente trabajo de investigación ha sido realizado para mostrar los beneficios del uso de sistema COBIT en los procesos de auditorías de los sistemas informáticos, la problemática se relaciona en ¿Cómo incide en el proceso de auditorías en las instituciones, empleo del sistema COBIT?, el objetivo principal es identificar la incidencia del uso del sistema COBIT en el proceso de auditorías empleados por os sistemas informáticos dentro de las organizaciones tanto de carácter público como privado; con el fin de lograr nuestros objetivos planteados de la investigación se desarrollará primeramente con la conceptualización de términos claves para un fácil entendimiento de la temática, como conclusión: podemos decir el sistema COBIT permite identificar la metodología mediante la utilización de información de los departamentos informáticos, para determinar los recursos de la (T.I) Tecnología de la información, especificados en el sistema COBIT, como son los archivos, programas, redes informáticas incluidos el personal que los utiliza o manipula la información, con el propósito de proveer la información que la organización o empresa requiere para conseguir sus objetivos.
11
Zambrano, María Fernanda, and Lizandro Molina-Sabando. "Diagnóstico situacional del Gobierno de las Tecnologías de Información. Caso Universidad Laica Eloy Alfaro de Manabí. // Situational analysis of the Government of the technologies of information TI in the Universidad Laica Eloy Alfaro of Manabi." Ciencia Unemi 10, no. 25 (February 26, 2018): 111. http://dx.doi.org/10.29076/issn.2528-7737vol10iss25.2017pp111-122p.
Full textAbstract:
En el diagnóstico situacional del Gobierno de las Tecnologías de la Información (TI) en la Universidad Laica “Eloy Alfaro” de Manabí, fundamentado en el modelo COBIT 5.0, año 2016, se conceptualizaron las siguientes categorías: Gobierno de la TI, Gobierno Corporativo, Modelo de Madurez, Modelo de Referencia COBIT 5.0, Niveles de Capacidad. Se aplicó el kit de herramienta de evaluación de COBIT 5.0, para determinar los procesos que se relacionan con el Gobierno de TI, evaluar el nivel de capacidad de los procesos alineados al Gobierno de TI y analizar las mejoras de los procesos que se relacionan con el gobierno de TI, según las buenas prácticas. Así mismo, se aplicó el Check List de COBIT 5.0 al Comité de Evaluación de los procesos de gobierno de TI en la Universidad Laica “Eloy Alfaro” de Manabí, para el análisis del nivel de capacidad de cada proceso, para generar información que coadyuve al fortalecimiento del Gobierno de las TI. El análisis se enfoca en el nivel de capacidad de cada proceso de gobierno de tecnología de información. Abstract In the situational analysis of the Government of (IT) at the “Universidad Laica Eloy Alfaro de Manabi”, based on the model COBIT 5.0, 2016, the following categories were conceptualized: Government of IT, Corporate Governance, Maturity Model, Reference Model COBIT 5.0, and Capacity Levels. The COBIT 5.0 assessment tool kit, was applied to determine the processes relate to the IT Government, evaluate the level of capacity of the processes aligned to the IT Government and analyze improvements of processes relating to the governance, according to good practices. Likewise, the Check List of COBIT 5.0 was applied to the Evaluation Committee of the IT governance processes at the “Universidad Laica Eloy Alfaro de Manabi”, for the analysis of the capacity level of each process, to generate information that contributes to the strengthening of the IT Government. The analysis focuses on the level of each information technology governance process.
12
De Haes, Steven, Tim Huygh, Anant Joshi, and Wim Van Grembergen. "Adoption and Impact of IT Governance and Management Practices." International Journal of IT/Business Alignment and Governance 7, no. 1 (January 2016): 50–72. http://dx.doi.org/10.4018/ijitbag.2016010104.
Full textAbstract:
This paper empirically investigates how adoption of IT governance and management processes, as identified in the IT governance framework COBIT 5, relates to the level of IT-related goals achievement, which in turn associates to the level of enterprise goals achievement. Simultaneously, this research project provides an international benchmark on how organizations are currently adopting the governance and management processes as identified in COBIT 5. The findings suggest that organizations are best in adopting the “IT factory” related management processes and that implementation scores drop in management and governance processes when more business and board involvement is required. Additionally, there are significant differences in perceived implementation maturity of COBIT 5 processes between SMEs and larger organizations. Also, the data offers empirical evidence that the COBIT 5 processes have a positive association with enterprise value creation.
13
Al-Fatlawi, Qayssar Ali, Dawood Salman Al Farttoosi, and Akeel Hamza Almagtome. "Accounting Information Security and IT Governance Under COBIT 5 Framework: A Case Study." Webology 18, Special Issue 02 (April 29, 2021): 294–310. http://dx.doi.org/10.14704/web/v18si02/web18073.
Full textAbstract:
This paper aims to explore the role of applying information technology governance using the COBIT 5 framework in improving the security of accounting information systems. The paper also aims to assess the level of governance of information technology in the Trade Bank of Iraq TBI through COBIT 5 processes, including 4 dimensions of planning and organization, acquisition and implementation, support and delivery, and monitoring. The study uses a qualitative approach through a case study conducted at the Iraqi Bank of Commerce. The results show that applying the COBIT 5 governance mechanisms of information technology reduces data processing risks and improves automated accounting information systems' security. The results also show that the Trade Bank of Iraq can implement the COBIT 5 Framework. Also, the accounting system used in the Bank has all the features of information technology governance that, on the one hand, ensure confidentiality of customer information and, on the other hand, prevent the system from penetrating. The results of the current study provide a better understanding of stakeholders on the nature of IT governance in the light of the COBIT 5 framework and its role in enhancing accounting information security.
14
Surjandy, Surjandy, Erick Fernando, A. Raharto Condrobimo, and Mohammad Rizky Yudho. "Evaluasi Penerapan IT Governance pada Bank berdasarkan Cobit 5 (Studi Kasus pada Bank XYZ)." Jurnal Teknologi Informasi dan Ilmu Komputer 7, no. 3 (May 22, 2020): 453. http://dx.doi.org/10.25126/jtiik.2020731457.
Full textAbstract:
<p>Pencurian dana nasabah dengan menggunakan Teknologi Informasi masih terjadi hingga saat ini seperti yang dilaporkan pada web Finance.detik.com dimana dana tabungan nasabah hilang dan hal ini terjadi tidak hanya pada 1 bank namun beberapa bank. Pada penelitian sebelumnya yang telah dilakukan dibeberapa bank menggunakan <em>framework COBIT</em> 4.1. Oleh karena itu penelitian ini akan melakukan evaluasi pada sebuah bank (bank xyz) mengenai penerapan tata kelola penggembangan sistem dengan acuan kerangka kerja <em>COBIT 5.</em> Pada dasarnya penelitian ini untuk melihat bagaimana sebuah bank melakukan pengembangan sistem, apakah mengikuti kerangka kerja <em>COBIT</em> 5? Metode penelitian kualitatif digunakan pada penelitian ini dan kerangka kerja <em>COBIT</em> 5 <em>Process Assessment Model (PAM)</em> mencakup unsur keamanan data dan tata kelola Teknologi Informasi (<em>IT Governance)</em>. Sebagai kesimpulan dari hasil evaluasi bahwa masih perlunya peningkatan dalam manajemen pengembangan sistem pada bank.</p><p><em><strong>Abstract</strong></em></p><p><em>The theft of customer funds through the use of Information Technology continues to occur today as reported on the website Finance.detik.com, where clients' savings funds are lost, and this not only happens in 1 bank but in several banks. The early research conducted at several bank using COBIT 4.1 framework. Therefore, this study will perform an evaluation in a XYZ Bank on the implementation of Information Technology governance in the development of the system with a reference to the COBIT 5 framework. Basically, this research is to see how a bank develops the system follows the COBIT framework 5? The Framework Process Evaluation Model (PAM) of COBIT 5 includes elements of data security and Information Technology governance. The conclusion of the evaluation of the study show that there is still a need to improve the development of the system in the bank</em></p>
15
Nugraha, Agung Aditya, L. Linawati, and Nyoman Putra Sastra. "Framework Pengelolaan Infrastruktur TIK di Pemerintah Kabupaten Badung." Majalah Ilmiah Teknologi Elektro 17, no. 1 (April 19, 2017): 10. http://dx.doi.org/10.24843/mite.2018.v17i01.p02.
Full textAbstract:
Tata Kelola TI merupakan konsep yang dapat menjamin TIK sebuah organisasi mendukung tercapainya obyektif organisasi tersebut. Paper ini bertujuan untuk menyusun sebuah kerangka kerja (framework) pengelolaan infrastruktur TIK di Pemerintah Kabupaten Badung, berdasarkan model framework COBIT 5. Dari hasil implementasi COBIT 5, maka dipilihlah 13 proses dari 5 domain, yaitu proses APO01, APO02, APO03, APO07, APO08, BAI02, BAI04, DSS01, DSS03, EDM01, EDM02, EDM04, dan MEA01. Pemetaan RACI chart terhadap struktur organisasi Dishubkominfo sebagai instansi pelaksana dan pengelola TIK di Pemerintah Kabupaten Badung, menunjukkan hanya terdapat 4 peran yang melakukan proses dan satu peran di Dishubkominfo bisa merangkap lebih dari satu peran dalam COBIT 5. Framework Pengelolaan Infrastruktur TIK di Pemerintah Kabupaten Badung adalah hasil pembahasan dari 13 proses COBIT 5 yang digunakan sebagai prinsip-prinsip pengelolaan. Framework ini berisikan uraian deskripsi, tujuan, ruang lingkup, kebijakan, dan RACI chart dari aktivitas dan peran masing-masing proses.
[TURNITIN CHECK 16%, 27032017]
16
Bünten, Stefan, Anant Joshi, Steven De Haes, and Wim Van Grembergen. "Understanding the Association between IT Governance Maturity and IT Governance Disclosure." International Journal of IT/Business Alignment and Governance 5, no. 1 (January 2014): 16–33. http://dx.doi.org/10.4018/ijitbag.2014010102.
Full textAbstract:
IT governance (ITG) provides a toolbox for companies to realize maximum value from IT. Firms implement ITG via frameworks, such as COBIT or VALIT, which list processes to align business and IT strategies, deliver IT services and comply with regulations. While there exists evidence that companies with mature ITG processes outperform their competitors and that signaling ITG maturity to external stakeholders has a positive impact on firm value, little research has focused on the relationship between IT governance maturity and disclosure of related information. This study examines the association of COBIT and VALIT maturity on IT governance disclosure. The authors posit that overall maturity in COBIT and VALIT have a positive impact on IT governance disclosure. Our results indicate that there exists a positive impact for COBIT maturity and most of its domains on disclosure, while the impact of VALIT maturity on disclosure is mostly insignificant.
17
Nia, Nur Rochma, and Indri Sudanawati Rozas. "STATISTIK PENELITIAN BERBASIS KERANGKA KERJA COBIT, ITIL, DAN ISO 27001 DI INDONESIA." Jurnal Ilmiah Teknologi Informasi dan Robotika 2, no. 1 (June 30, 2020): 17–23. http://dx.doi.org/10.33005/jifti.v2i1.28.
Full textAbstract:
Iklim penelitian tentang tata kelola maupun audit teknologi informasi di Indonesia sejak lima tahun terakhir ini mulai marak. Sebut saja kerangka kerja Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technologies (COBIT), dan Capability Maturity Model Integration for Services (CMMI-SVC) yang dinyatakan sebagai kerangka kerja teknologi informasi (IT framework) yang paling banyak digunakan dan diterima di seluruh dunia, dan kini juga mulai banyak digunakan di Indonesia. Sekalipun pada kondisi lapangan hal ini terlihat nyata, namun hingga saat ini belum pernah ada analisa tentang statistika serta pebandingan data tentang penggunaan kerangka kerja teknologi informasi di Indonesia. Untuk itu penelitian ini bertujuan untuk mengetahui tren pengguna framework TI meliputi: ITIL, COBIT, dan ISO 27001 di Indonesia pada rentang waktu tahun 2014-2018. Data penelitian dikumpulkan dari Google Scholar dengan menggunakan software web scraping bernama publish or perish. Dari hasil pengolahan data diperoleh informasi bahwa 79,54% penelitian tentang kerangka kerja teknologi informasi COBIT, ITIL, dan ISO 27001 dipublikasikan pada domain dalam negeri, sedangkan sisanya (20,46%) dipublikasikan pada domain luar negeri. Dan selama 2014 - 2018 penelitian tentang kerangka kerja COBIT sebanyak 67.19%, ITIL sebanyak 15.72%, dan ISO 27001 17.09%. Sedangkan secara tren, selama lima tahun terlihat bahwa COBIT memiliki tren jumlah penelitian yang naik, sedangkan ITIL dan ISO 27001 memiliki tren menurun.
18
Suwandi, Kevin, and Johan Setiawan. "Influence of Information Security Culture on the Information Security Governance Capabilities (Case Study: PT XYZ)." Journal of Multidisciplinary Issues 1, no. 2 (August 31, 2021): 62–74. http://dx.doi.org/10.53748/jmis.v1i2.19.
Full textAbstract:
Objective – To analyze the relationship between a company’s information security approach/culture with its information security governance capabilities based on COBIT 5 framework and provide recommendations that can be used to improve the company's information security capabilities per COBIT 5 standard.
Methodology – The research uses qualitative and quantitative methods by conducting interviews and distributing questionnaires to 3 members of the IT Department at PT XYZ.
Findings – The research found that the measured COBIT 5 processes (APO13 and DSS05) failed to reach the expected target (level 4), with each DSS05 and APO13 can only reach level 1 and 2 respectively. In addition, several flaws were also found in the company’s information security culturethat may have contributed directly or indirectly to the current state of the company’s information security capabilities.
Novelty – In this study, the researchers expand the previous study on information security culture conducted in 2010 by performing a security audit on a company's IT department to analyze the connection between corporate culture, especially information security culture and the capability level of information security governance. The company thus can make improvements or corrections to its information security approach/culture based on the recommendations provided with COBIT 5 framework.
Keywords: Capability Level; COBIT; Governance; Information Security Culture.
19
Rubino, Michele, and Filippo Vitolla. "Corporate governance and the information system: how a framework for IT governance supports ERM." Corporate Governance 14, no. 3 (May 27, 2014): 320–38. http://dx.doi.org/10.1108/cg-06-2013-0067.
Full textAbstract:
Purpose – The purpose of this paper is to illustrate how information technology (IT) governance supports the process of enterprise risk management (ERM). In particular, the paper illustrates how the Control Objectives for Information and related Technology (COBIT) framework helps a company reach its objectives by integrating and supporting the Enterprise Risk Management by the Committee of Sponsoring Organizations (COSO ERM) framework. Design/methodology/approach – This paper explains how the integration between the two frameworks (COSO ERM and COBIT 5) can represent, for any organization, a good way to achieve the objectives of internal control and risk management and, more generally, corporate governance. Findings – The paper identifies some gaps in the COSO ERM and illustrates how the COBIT framework facilitates the implementation of an adequate system of internal control. Originality/value – The originality of the work presented here is in analyzing the COBIT 5 together with the COSO ERM framework. This paper highlights that is not enough to apply only an internal control framework for achieving the risk management and internal control system objectives. An IT governance framework, such as COBIT 5 is proposed as a tool that support risk management in order to develop an adequate system of internal control.
20
Ariyadi, Dwiyono, and Indah Puji Astuti. "Rekomendasi Tatakelola IT dengan Acuan Cobit 5 pada Struktur Organisasi Sekolah Vokasi." Jurnal Manajemen Informatika (JAMIKA) 11, no. 1 (April 10, 2021): 60–71. http://dx.doi.org/10.34010/jamika.v11i1.4614.
Full textAbstract:
Vocational education institutions will be able to carry out their functions and objectives if they have supporting elements that contribute to the goals of the institution. One of the supporting elements is resources. Various resources in vocational institutions have a role to accelerate the realization of institutional goals. Information technology resources play a role in facilitating the activities of institutions in the IT field. The purpose of this study is to know whether the organizational structure that handles IT in schools SMK Jenangan is an appropriate IT governance COBIT. The methodology used by the descriptive. survey research data. Based on the findings obtained, this institution is still lacking staff in different positions. After conducting research obtained There are 5 primary IT-related goals of 20 processes COBIT5. The result is an adjustment in the form of recommendation IT governance resources requirements along with the tasks and responsibilities which refers COBIT5 domain. The hope of research is the impact to changes in the organizational structure typewriter appropriate recommendations so software engineering division can optimal tasks.
21
Bouayad, Hakim, Loubna Benabbou, and Abdelaziz Berrado. "Aligning Information Technology and Supply Chain." International Journal of Information System Modeling and Design 12, no. 3 (July 2021): 1–26. http://dx.doi.org/10.4018/ijismd.2021070101.
Full textAbstract:
Information technology (IT) has a critical importance. Information technology governance (ITG) is the system that allows enterprises to master the complexity of IT in order to maximize its use and to foster the competitive advantage. Control objectives for information and related technology (COBIT) is a well-known IT governance (ITG) framework that groups IT best practices. There is little research about the correlation between COBIT and domain specific frameworks, like supply chain operation reference (SCOR) for supply chain (SC). The paper proposes an approach to map SCOR's components to COBIT with ArchiMate, which is a standard language to model enterprise architecture (EA). The mapping can simplify, by visualization, the complexity of both frameworks. It can also provide a view on possible overlaps and synergies between SCOR and COBIT. Two detailed illustrations are presented. The evaluation is done according the Bunge-Wand-Weber method. An example of the utility of the mapping is done for a real case scenario.
22
Nawir, Muhammad, Irfan AP, and Farid Wajidi. "INTEGRATION OF FRAMEWORK ISO 27001 AND COBIT 2019 IN SMART TOURISM INFORMATION SECURITY PT. YoY INTERNATIONAL MANAGEMENT." Jurnal Komputer dan Informatika 10, no. 2 (September 15, 2022): 122–28. http://dx.doi.org/10.35508/jicon.v10i2.7985.
Full textAbstract:
Information technology that is growing rapidly becomes a very high threat to information systems. PT. YoY Management Internasional which will manage the location-based smart tourism application so that it is necessary to protect company information, in order to avoid interference and threats that can harm the company. In this study, an analysis of information technology (IT) governance was carried out using the COBIT 2019 framework, by aligning the company's strategies and goals into existing processes in COBIT 2019 which were then mapped into ISO 27001 for information security management. The purpose of this research is to manage information security using the COBIT 2019 framework and the ISO 27001:2013 standard. The research method used in this research is descriptive qualitative. The results obtained in this study are in the form of several recommendations for policies in managing information security in smart tourism applications in accordance with the COBIT 2019 and ISO 27001:2013 standards.
23
Steuperaert, Dirk. "COBIT 2019: A SIGNIFICANT UPDATE." EDPACS 59, no. 1 (January 2, 2019): 14–18. http://dx.doi.org/10.1080/07366981.2019.1578474.
Full text
24
Mussa, Munir de Sá, Renata Gomes Cordeiro, and Henrique Da Hora. "Attributes of IT certifications aligned to organizations’ needs." Journal of Modelling in Management 16, no. 2 (February 12, 2021): 506–26. http://dx.doi.org/10.1108/jm2-02-2019-0031.
Full textAbstract:
Purpose An area of information technology (IT) in organizations is required to manage resources efficiently. For this, IT certifications are adopted by companies and sought by professionals. However, these have many requirements and to identify which are paramount to the performance of their activities and/or are much more important to IT managers is not a trivial task. The purpose of this study is to identify how the processes of the Information Technology Infrastructure Library (ITIL) v3 and Control Objectives for Information and Related Technology (CobiT) 5 certifications are analyzed by IT managers. Regarding the knowledge of professionals about the processes, which are more important, less important or indifferent in the manager’s view. Design/methodology/approach A survey is carried out with IT managers using questions elaborated according to the Kano model in which the processes of the analyzed certifications are related to classify according to the proposed model. Findings Of the 64 analyzed processes, 20 CobiT processes and 13 ITIL processes were classified as must-be requirements. Another 17 CobiT processes and 9 ITIL processes were classified as one-dimensional and 5 ITIL processes are present in more than one relationship with CobiT processes and, depending on the relationship, they were classified as must-be or one-dimensional requirements. Originality/value It is concluded that this study contributes in the discussion of the importance of the ITIL and CobiT implementations and analyzes the relevance of ITIL and CobiT certification processes in the view of IT managers, providing useful information for the professionals in terms of prioritization of the processes expected by the managers.
25
De Haes, Steven, and Wim Van Grembergen. "An Academic Exploration into the Core Principles and Building Blocks of COBIT 5." International Journal of IT/Business Alignment and Governance 3, no. 2 (July 2012): 51–63. http://dx.doi.org/10.4018/jitbag.2012070104.
Full textAbstract:
Recently a new version of COBIT, the good-practice framework for enterprise governance of IT, was released. Although is it not always clearly articulated in its documentation, this new COBIT 5 framework incorporates many concepts and theories out of the IT and general management literature. This paper wants to position COBIT as a framework for enterprise governance of IT, and explores how the core principles and building blocks of the framework are derived from insights from theory and literature. This discussion could help or inspire other scholars to derive potential research questions and hypothesis around this practice-oriented framework, as a basis for future research programs.
26
Almeida, Rafael, Paloma Andrade Gonçalves, Inês Percheiro, Miguel Mira da Silva, and César Pardo. "Integrating COBIT 5 PAM and TIPA for ITIL Using an Ontology Matching System." International Journal of Human Capital and Information Technology Professionals 11, no. 3 (July 2020): 74–93. http://dx.doi.org/10.4018/ijhcitp.2020070105.
Full textAbstract:
Organizations can implement enterprise governance of IT (EGIT) over the use of practices such as COBIT 5 and ITIL. Integrating practices provide a more comprehensive and efficient approach, enabling features that would be unavailable through individual practices. Therefore, organizations are now forced to adopt and adapt various EGIT practices. However, the literature lacks a proposal that can assist and guide organizations in assessing different practices in a multi-practices environment. To overcome this issue, this research intends to shed some light in this area by proposing an ontological approach for describing TIPA for ITIL PAM and COBIT PAM, using semantic similarity techniques to compare COBIT and ITIL process assessment core concepts.
27
Setiawan, Ari Kurnia, and Johanes Fernandes Andry. "INFORMATION TECHNOLOGY GOVERNANCE PERFORMANCE MEASUREMENT AT NATIONAL LIBRARY USING COBIT FRAMEWORK 5." Jurnal Terapan Teknologi Informasi 3, no. 1 (November 15, 2019): 53–63. http://dx.doi.org/10.21460/jutei.2019.31.134.
Full textAbstract:
National Library of Indonesia (Perpusnas) is a public library located in Jakarta. In its operations Perpusnas already implemented Information Technology (IT) to support its activities, in IT implementation good IT Governance is needed to ensure that the IT is working consistently with business and produce the expected output. IT Governance is structure, process and mechanism that also includes objective making of the organization while considering the organization’s capability. With the good IT Governance Perpusnas can allocate its resource more efficiently and measure the running performance. This research will use COBIT 5 as the framework, the reason why COBIT 5 is chosen because COBIT 5 provides comprehensive framework that could help Perpusnas in achieving its IT Governance and IT management objectives. COBIT 5 enables IT to be organized and managed in the whole organization, it also could provide balance between the realization of benefits and risk optimization. Observation and interview is done in order of data collection in this research, the data then is analyzed and measured with the capability level in COBIT 5. Based on the analysis conducted the result obtained is. The average capability level of EDM01 is 1, on EDM02 is 3, on EDM03 is 2, on EDM04 is 3 and on EDM05 is 3. This research also provides recommendations that can be used as reference for Perpusnas to increase the performance of its IT Governance
28
Mambu, Joe Yuan, Rolly Junius Lontaan, Erienika Lompoliu, Jannice Salindeho, and Jenifer Sambul. "IT GOVERNANCE CAPABILITY LEVEL IDENTIFICATION OF COBIT 2019 AT THE RSUP PROF. DR. R.D. KANDOU, MANADO, NORTH SULAWESI." semanTIK 8, no. 2 (December 31, 2022): 121. http://dx.doi.org/10.55679/semantik.v8i2.28547.
Full textAbstract:
In terms of technology, governance can be implemented effectively and efficiently if it can provide functionality or value that applies to businesses of all sizes and types. IT governance design can help you explore design factors that influence governance and includes a workflow for planning a governance system for your enterprise. Control Objectives for Information and Related Technologies (COBIT) is a framework created by ISACA that contains guidance or guidance documents that may be useful to auditors, users, and management. COBIT is an internationally recognized and applied best practice for information, information technology, and organizational risk which can be used to define information technology to maximize IT control. As it is required to improve IT service, the design of IT governance was conducted at the Central Unit Hospital (RSUP) Prof. Kandou, Manado, North Sulawesi, using the latest version of COBIT, COBIT 2019. The following is an explanation of the priorities of Malayang Hospital. Governance below 25 points is proficiency level 1. The results shows that there are five objectives that becomes main priority (reaching level 4): EDM03, APO12, BAI02, BAI03 and BAI05. These objectives are the ones recommended to be audited. The second tier that may also suggested to be audited are objectives with capability level 3: APO07, APO08, BAI01, BAI07, DSS01, DSS02 and MEA01.Keywords; COBIT 2019, IT Governance, RSUP Prof. Kandou Malalayang
29
Setiawan, Ito, Ranggi Praharaningtyas Aji, and Yuliawan Adi Wibowo. "Evaluasi Sistem Informasi Rumah Sakit Ananda Purwokerto Menggunakan Domain Edm Dan Apo Cobit 5." JTIM : Jurnal Teknologi Informasi dan Multimedia 1, no. 2 (August 30, 2019): 117–23. http://dx.doi.org/10.35746/jtim.v1i2.23.
Full textAbstract:
Governance and planning for aligning business strategies with strategies in managing Information systems (SI) is the main key in winning business competition in each organization. Ananda Purwokerto General Hospital as a business organization engaged in health cannot be separated from this, but the problem of governance and the lack of alignment between the current business strategy and the SI strategy make the Ananda General Hospital Purwokerto less in terms of service issues. For this reason, an evaluation of the existing SI governance is needed at Ananda Purwokerto General Hospital. COBIT 5 can be used to evaluate SI governance, because in COBIT 5 there are 5 domains consisting of 2 categories, namely the category of governance domain and management domain, for problems experienced by Ananda Purwokerto General Hospital can use the EDM and APO domains on COBIT 5. The results expected are in the form of measuring the level of governance implementation of SIR Ananda Purwokerto General Hospital in the EDM and APO domains, so that the best recommendations can be given based on the COBIT 5 framework.
30
Bounagui, Yassine, Hatim Hafiddi, and Abdellatif Mezrioui. "COBIT Evaluation as a Framework for Cloud Computing Governance." International Journal of Cloud Applications and Computing 6, no. 4 (October 2016): 65–82. http://dx.doi.org/10.4018/ijcac.2016100104.
Full textAbstract:
The present paper aims at providing an approach for evaluating COBIT as a base framework for cloud computing governance. For that purpose, the authors firstly conducted a systematic research reviews to identify, analyze, and structure the main cloud computing governance requirements. Secondly, with respect to the systematic research review, a mapping of COBIT control objectives to the corresponding cloud computing governance requirements is proposed. Thirdly, the evaluation of the mapped control objectives against the cloud computing governance requirements is performed to identify and analyze the framework gaps. The paper results are relevant outcomes for the extension of COBIT processes and capabilities and thus can provide a base framework for building a holistic cloud computing governance approach.
31
Saad, Bani. "Analisis Implementasi COBIT 4.1 pada STIE Indonesia Banking School serta Dampaknya terhadap Focus IT Governance." Jurnal Keuangan dan Perbankan 12, no. 1 (July 12, 2016): 72. http://dx.doi.org/10.35384/jkp.v12i1.14.
Full textAbstract:
This research aimed to analyze Implementation CobiT 4.1 at STIE Indonesia Banking School and the impact to Focus IT Governance. The deployment questionnaires to respondence were 7 copies. Data assessment using Capability Maturity Model from CobiT 4.1, After assess Capability Maturity Model, the author analyse the impact to IT Governance Focus (5 point).The assessment result shows that maturity level from four domain CobiT 4.1 significantly impact on IT Governance focus at STIE Indonesia Banking School. This domain are IT process at STIE Indonesia Banking School, including Plan & Organise, Acquire & Implement, Deliver & Support, and Monitor & Evaluate. IT Governance Focus: Strategic alignment, Value delivery, Resource Management, Risk Management and Performance Measurement.
32
Helpiono, Brima, Wildan Suharso, and Evi Dwi Wahyuni. "Analisis Tingkat Kematangan Sistem Informasi Manajemen Rumah Sakit Menggunakan COBIT 4.1 (Studi Kasus : Rumah Sakit Universitas Muhammadiyah Malang)." Jurnal Repositor 2, no. 12 (December 4, 2020): 1585. http://dx.doi.org/10.22219/repositor.v2i12.135.
Full textAbstract:
AbstrakTeknologi Informasi (TI) telah berkembang sangat pesat sehingga kebutuhan yang sangat penting saat ini, tidak terkecuali bagi perusahaan, instansi maupun lembaga. Rumah sakit menerapkan TI dalam bentuk sistem informasi manajemen tumah sakit atau juga disebut SIMRS. Dalam menyelenggarakan SIMRS, COBIT (Control Objectives for Information and Related Technology) merupakan kerangka kerja yang sangat direkomendasikan untuk melakukan tata kelola TI, hal itu disebutkan dalam bab empat mengenai tata kelola pada lampiran peraturan menteri kesehatan nomor 82 tahun 2013 tentang penyelenggaraan SIMRS. Saat ini, RS UMM belum menggunakan COBIT untuk tata kelola TI, terutama dalam menganilisis tingkat kematangan dari SIMRS yang sudah diterapkan. Pada penelitian ini, penulis mengukur nilai tingkat kematangan SIMRS yang ada di RS UMM menggunakan proses TI pada COBIT 4.1 diantaranya PO8, AI2, AI3, AI5, DS3 dan DS5. Hasil tingkat kematangan SIMRS UMM saat ini berada pada tingkat tiga (defined) dengan nilai rata-rata 3,02 yang artinya secara umum prosedur SIMRS UMM sudah distandarisasi dan didokumentasikan. Berdasarkan hasil tersebut, penulis memberikan rekomendasi yang mengacu pada framework COBIT khususnya untuk mencapai tingkat empat (managed and measurable) yaitu pihak pengelola perlu mengawasi dan mengukur kepatutan SIMRS UMM serta mengambil tindakan jika terdapat proses TI yang tidak berjalan secara efektif.AbstractInformation Technology (IT) has grown so rapidly that the need that is very important at this time, not least for companies, agencies and institutions. Hospitals apply IT in the form of management information system of hospital or also called SIMRS. In organizing SIMRS, COBIT (Control Objectives for Information and Related Technology) is a highly recommended framework for IT governance, it is mentioned in chapter four on governance in the attachment of Minister of Health Regulation No. 82 of 2013 on the implementation of SIMRS. Currently, UMM Hospital has not used COBIT for IT governance, especially in analyzing the maturity level of SIMRS that has been applied. In this study, the authors measure the maturity level of SIMRS in UMM Hospital using IT process in COBIT 4.1 such as PO8, AI2, AI3, AI5, DS3 and DS5. The maturity level of SIMRS UMM is currently at the level of three (defined) with an average value of 3.02 which means that UMM's SIMRS procedure is generally standardized and documented. Based on these results, the authors provide recommendations referring to the COBIT framework in particular to achieve level four (managed and measurable) that the manager must monitor and measure the merits of SIMRS UMM and take action if there is an IT process that is not running effectively.
33
Wella, Wella, and Stella Aprilia Sirapanji. "Evaluasi Tata Kelola Teknologi Informasi Universitas Multimedia Nusantara Periode 2016." Jurnal ULTIMA InfoSys 7, no. 2 (November 7, 2016): 60–64. http://dx.doi.org/10.31937/si.v7i2.541.
Full textAbstract:
Not only for enterprises, educational institution use information technology for teaching and learning. Universitas Multimedia Nusantara (UMN) aware that IT is very important in the world of education. To measure effectiveness in IT governance, UMN needs audit information system using the COBIT 5.0 framework in order to determine the extent to which the performance of the IT department and also know the UMN produce a solution to every problem is unresolved. The object of this study is the Department of Information Technology UMN. This study uses COBIT 5.0 with 5 domains that is Evaluate, Direct and Monitor (EDM); Align, Plan and Organize (APO); Build, Acquire and Implement (BAI); Deliver, Service and Support (DSS) and Monitor, Evaluate and Assess (MEA). At 37 the process of the 5 IT governance domains belonging to COBIT 5.0 by using the stages of COBIT 5.0 is filtered into 10 processes. The data collection was done by interviewing the manager of IT department, observation of documentation, and the distribution of questionnaires to the two heads of divisions within the IT department manager for IT departments demand UMN. The results of this study each domain is at 1 st level (incomplete). Capability level values achieved by EDM01 is 81.84%, EDM02 is 76.17%, APO01 is 73.28%, APO02 is 67.72%, APO03 is 52.30%, APO05 is 66.44%, APO07 is 64.20%, APO08 is 75.19%, BAI01 is 56.33%, and BAI02 is 65.20%.
Keyword: Audit Information System, Capability Level, Framework COBIT 5.0, IT Governance
34
Mulgund, Pavankumar, Palak Pahwa, and Gaurav Chaudhari. "Strengthening IT Governance and Controls Using COBIT." International Journal of Risk and Contingency Management 8, no. 4 (October 2019): 66–90. http://dx.doi.org/10.4018/ijrcm.2019100104.
Full textAbstract:
With the emergence of COBIT in 1996, organizations were introduced to a framework that aimed to combine the best practices and provide essential guidelines for the successful business development along with the growth of competitiveness of the organization. Today, COBIT 5 has been adopted by numerous organizations as the primary business framework for the governance and management of enterprise IT. This article explores the evolution of the framework since its genesis to the present. The authors perform a systematic literature review taking into account a total of 93 publications that relate to various aspects of COBIT. The research papers have been categorized on the basis of their scope and on their nature (empirical, conceptual or descriptive). The data collected from these publications are analyzed to identify various trends- commonalities, differences, themes, and the nature of the study. This article also provides an overview in terms of the need of COBIT, the strengths and weaknesses of each version of the framework and how each version addresses the shortcomings of its predecessors. The research article also comprehensively discusses the state of art version of the framework COBIT 5. Further, they present a detailed analysis of how this framework is currently leveraged by organizations to identify and mitigate IT and organizational risk through better governance. In conclusion, this article also discusses the issues faced by the enterprises in its implementation today and scope of future research.
35
Wahyuni, Davi, Yeni Anita Gonti, Eva Mursidah, and Adhatus Solichah. "Pengukuran Tingkat Kematangan Layanan Pengguna Perpustakaan ITS Berbasis Teknologi Informasi (Perpustakaan ITS Menuju WCUL)." JPUA: Jurnal Perpustakaan Universitas Airlangga: Media Informasi dan Komunikasi Kepustakawanan 9, no. 1 (July 13, 2020): 11. http://dx.doi.org/10.20473/jpua.v9i1.2019.11-18.
Full textAbstract:
Tujuan dari penelitian ini adalah untuk menyusun usulan rekomendasi layanan perpustakaan di Institut Teknologi Sepuluh November Surabaya (ITS) yang berbasis teknologi informasi (TI) dengan menggunakan framework COBIT. COBIT merupakan sebuah panduan standar untuk praktik manajemen teknologi informasi. COBIT dapat membantu untuk menjembatani gap antara risiko-risiko bisnis, kebutuhan kontrol dan permasalahan-permasalahan teknis. Tingkat kematangan layanan pengguna perpustakaan ITS dianalisa berdasarkan faktor internal dan eksternal melalui wawancara dan penyebaran kuisioner. Indikator kepuasan pengguna diturunkan dengan menggunakan metode LibQual dan COBIT. Pada Libqual indikator kepuasan diturunkan dari pengukuran affect of service dan information control. Indikator kerja yang digunakan pada kerangka kerja COBIT adalah domain DS (delivery support). Selanjutnya hasil dari survey dan wawancara akan dibandingkan dengan kriteria World Class University Library (WCUL) untuk mengetahui kekurangan dari standar pelayanan perpustakaan yang diberikan di perpustakaan pusat ITS. Hasil dari penelitian yang dilakukan menunjukkan ITS memiliki nilai rata-rata tingkat kematangan 3 pada proses yang didefinisikan (defined process). Sedangkan berdasarkan kriteria WCUL, perpustakaan ITS memenuhi 4 item kriteria WCUL dari total 23 item kriteria. 19 item kriteria lainnya sudah diimplementasikan di perpustakaan ITS dengan nilai rata-rata yang hampir mendekati batas nilai untuk kriteria WCUL. Ada beberapa indikator yang digunakan sebagai objek prioritas usulan rekomendasi dalam penelitian ini, yaitu: Keselarasan Strategi (Strategic Alignment), Penyampaian Nilai (Value Delivery), Manajemen Sumber Daya (Resource Management), Manajemen Risiko (Risk Management), dan Pengukuran Kinerja (Performance Measurement).Luaran dari penelitian ini adalah berupa dokumen rekomendasi berdasarkan kelima indikator tersebut.
36
De Medeiros, Luciano Galina, Fabrício Pelloso Piurcosky, Wanderson Gomes De Souza, Pedro dos Santos Portugal Júnior, and Ricardo Bernardes De Mello. "GOVERNANÇA DE TI NO 1º GRUPO DE COMUNICAÇÕES E CONTROLE: UMA ANÁLISE DOS PROCESSOS DO COBIT 4.1." Interação - Revista de Ensino, Pesquisa e Extensão 16, no. 16 (February 15, 2019): 107–24. http://dx.doi.org/10.33836/interacao.v16i16.68.
Full textAbstract:
Este trabalho é justificado pela necessidade existente de o 1º Grupo de Comunicações e Controle (1º GCC) identificar a conjuntura de governança de Tecnologia da Informação (TI) em que se encontra, com base no modelo Control Objectives for Information and Related Technology (COBIT) 4.1. O propósito deste trabalho é identificar os níveis de maturidade dos processos de Governança de TI do 1º Grupo de Comunicações e Controle, a partir do modelo de referência COBIT 4.1. Isso foi conseguido por meio de duas pesquisas realizadas nas Unidades do 1º GCC. Primeiramente, os Comandantes das Unidades foram consultados acerca da percepção da importância dos processos do COBIT 4.1 nas organizações em que atuam. Nesta ocasião, o domínio do COBIT 4.1 a ser investigado foi definido. Em seguida, os processos do domínio escolhido foram analisados pelos Gerentes de TI das Unidades do 1º GCC, com o objetivo de avaliarem o nível de maturidade dos mesmos. A análise demonstrou que 80% dos processos foram avaliados com níveis de maturidade entre “0 Inexistente” e “2 Repetível, porém Intuitivo”. No entanto, também demonstrou que 83,3% das avaliações referentes aos processos “PO5 Gerenciar o Investimento de TI” e “PO7 Gerenciar os Recursos Humanos de TI" foram registradas com nível de maturidade “3 Definido” ou superior. Argumentou-se, por hipótese, que a falta de uso do COBIT 4.1 poderia resultar em baixos níveis de maturidade dos processos, o que foi confirmado.
37
Souza Neto, João, and Arthur Nunes Ferreira Neto. "Metamodel of the IT Governance Framework COBIT." Journal of Information Systems and Technology Management 10, no. 3 (December 30, 2013): 521–40. http://dx.doi.org/10.4301/s1807-17752013000300004.
Full text
38
Mira, Trisari D. N. B., Eko Sediyono, and Ade Iriani. "Audit Evaluasi Pemanfaatan Sistem Informasi Akademik di Universitas Kristen Wira Wacana Sumba Menggunakan Framework Cobit 5." JURNAL MEDIA INFORMATIKA BUDIDARMA 6, no. 1 (January 25, 2022): 337. http://dx.doi.org/10.30865/mib.v6i1.3334.
Full textAbstract:
Wira Wacana Christian University Sumba in supporting its activities as an educational institution is required to use the Academic Information System. Having an academic information system like the web-based Ecampuz certainly requires auditing, monitoring and evaluation of its performance so that the services produced continue to show good quality. The aim of this research is to evaluate and audit system by using Cobit 5 frameworks, while testing and measuring website quality is using the Apache Jmeter tool. The Cobit5 processes used are: Risk Optimization (EDM03), Security Management (APO13), Risk Management (APO12), Change Management (BAI06), Operations Management (DSS01), Service Requests (DSS02), Troubleshooting (DSS03), Security Services (DSS05), Work Monitoring and Evaluation (MEA01), Internal Control of Monitoring and Evaluation (MEA02). Gap analysis and Maturity Level are aimed at obtaining Audit results with good maturity. The results obtained from the average value based on the gap analysis of 10 Cobit5 processes is 1.2 and the Apache Jmeter test shows throughput of 101.746/minute and Deviation is 3671.
39
Kurniawan, Dwi Tjahyo. "EVALUASI TATA KELOLA TEKNOLOGI INFORMASI E-KTP MENGGUNAKAN FRAMEWORK COBIT (STUDI KASUS : DINAS KEPENDUDUKAN DAN CATATAN SIPIL KABUPATEN BOGOR)." Jurnal Penelitian Pos dan Informatika 8, no. 2 (December 25, 2018): 123. http://dx.doi.org/10.17933/jppi.2018.080203.
Full textAbstract:
<p>Dinas Kependudukan dan Catatan Sipil Kabupaten Bogor (Disdukcapil) bertugas menjalankan sistem kependudukan elektronik kartu identitas (e-KTP). Metodologi yang digunakan berdasarkan kerangka kerja Control Objectives for Information and related Technology (COBIT) 4.1. COBIT merupakan framework yang menjembatani kesenjangan antara risiko dan masalah bisnis dengan teknis sehingga sistem informasi teknologi e-KTP berjalan sangat. Hasil analisis yang dilakukan di Dinas Kependudukan dan Catatan Sipil Kabupaten Bogor (Disdukcapil) menghasilkan nilai 2,48 yang berarti pada tingkat 2 (dapat diulang). Dinas Kependudukan dan Catatan Sipil Kabupaten Bogor telah memiliki pola untuk mengelola proses terkait berdasarkan keberhasilan pengalaman yang berulang yang pernah dilakukan sebelumnya tetapi pola yang dilakukan belum berstandar. Hasil tersebut menjadi dasar penentuan analisis gap serta rekomendasi yang diperlukan berdasarkan standar COBIT untuk Disdukcapil.</p>
40
Kurniawan, Dwi Tjahyo. "EVALUASI TATA KELOLA TEKNOLOGI INFORMASI E-KTP MENGGUNAKAN FRAMEWORK COBIT (STUDI KASUS : DINAS KEPENDUDUKAN DAN CATATAN SIPIL KABUPATEN BOGOR)." Jurnal Penelitian Pos dan Informatika 8, no. 2 (December 25, 2018): 123–40. http://dx.doi.org/10.17933/jppi.v8i2.153.
Full textAbstract:
Dinas Kependudukan dan Catatan Sipil Kabupaten Bogor (Disdukcapil) bertugas menjalankan sistem kependudukan elektronik kartu identitas (e-KTP). Metodologi yang digunakan berdasarkan kerangka kerja Control Objectives for Information and related Technology (COBIT) 4.1. COBIT merupakan framework yang menjembatani kesenjangan antara risiko dan masalah bisnis dengan teknis sehingga sistem informasi teknologi e-KTP berjalan sangat. Hasil analisis yang dilakukan di Dinas Kependudukan dan Catatan Sipil Kabupaten Bogor (Disdukcapil) menghasilkan nilai 2,48 yang berarti pada tingkat 2 (dapat diulang). Dinas Kependudukan dan Catatan Sipil Kabupaten Bogor telah memiliki pola untuk mengelola proses terkait berdasarkan keberhasilan pengalaman yang berulang yang pernah dilakukan sebelumnya tetapi pola yang dilakukan belum berstandar. Hasil tersebut menjadi dasar penentuan analisis gap serta rekomendasi yang diperlukan berdasarkan standar COBIT untuk Disdukcapil.
41
Bawono, Marastika Wicaksono Aji, Mohammad Amin Soetomo, and Thata Apriatin. "Analysis correlation of the Implementation Framework COBIT 5, ITIL V3 and ISO 27001 for ISO 10002 Customer satisfaction." ACMIT Proceedings 7, no. 1 (July 7, 2021): 31–46. http://dx.doi.org/10.33555/acmit.v7i1.105.
Full textAbstract:
This study aims to determine and provide information about the corellation of COBIT 5, ITILV3 ,and ISO 27001 for customer satisfaction. This study uses a causal associative method with a quantitative approach. The population of this research is all customers of company Quota Broadband Internet. The sampling technique in this research is probability sampling technique through simple random sampling. The research sample was 135 customers. The results showed that there was an corellation of COBIT 5 (6.Customer-oriented service culture ), ITIL V3 (Service Operation 4.2 Incident management), and ISO 27001 (A.16 Information security incident management) for 10002 (3.4 customer satisfaction). The biggest influence is COBIT 5 on ISO 27001 with a T statistic of 6,960 and a P value of 0,000.
42
Lindgreen, E. E. O. Roos. "COBIT: Opkomst, ondergang en opleving van een raamwerk voor informatiebeheersing." Maandblad Voor Accountancy en Bedrijfseconomie 79, no. 5 (May 1, 2005): 206–11. http://dx.doi.org/10.5117/mab.79.16894.
Full textAbstract:
Interne beheersingsmaatregelen zoals voorgeschreven door de Sarbanes-Oxley Act en de Code Tabaksblat omvatten tal van maatregelen die aan informatietechnologie gerelateerd zijn. Of het nu gaat om autorisaties en logische toegangsbeveiliging of om maatregelen die de continuïteit van de financiële rapportagesystemen moeten waarborgen, ‘information technology general controls’ vormen een integraal onderdeel van het raamwerk voor interne beheersing. Dit artikel gaat in op het gebruik van COBIT voor de invulling van deze controls. Dit uitgebreide normenkader biedt organisaties een praktische basis voor het inrichten en toetsen van aan informatietechnologie gerelateerde beheersingsmaatregelen. Hiervoor is het in de meeste gevallen wel nodig de COBIT-normen op maat te snijden. Een praktische aanzet hiertoe is gedaan door het IT Governance Institute, de bedenkers van COBIT.
43
Huygh, Tim, Anant Joshi, Steven De Haes, and Wim Van Grembergen. "Shared Understanding in IT Governance and IT Management Implementation." International Journal of IT/Business Alignment and Governance 9, no. 1 (January 2018): 38–52. http://dx.doi.org/10.4018/ijitbag.2018010103.
Full textAbstract:
This article examines the association between stakeholder functional role and the perceived level of IT governance and IT management implementation. Specifically, this article takes a COBIT 5 perspective, by first analyzing perception differences at the level of the implementation of the seven COBIT 5 enablers, followed by an analysis at the level of the COBIT 5 process domains. The results indicate that a shared understanding about the IT governance and IT management implementation level between different organizational stakeholders can be improved, especially between (1) IT and (2) audit, risk, and compliance (ARC) stakeholders. As IT governance is seen as a critical enabler for the achievement of IT business value, an appropriate level of shared understanding about its implementation level among important stakeholder groups should be achieved.
44
Pertiwi, Winda, and Iik Eliyana Purnama Sari. "ANALISIS WEBSITE BAWASLU KOTAWARINGIN TIMUR MENGGUNAKAN COBIT 5 DENGAN DOMAIN EDM DAN MEA." Jurnal Ilmiah Betrik 12, no. 2 (August 16, 2021): 186–94. http://dx.doi.org/10.36050/betrik.v12i2.330.
Full textAbstract:
Perkembangan jaman yang semakin pesat membuat teknologi informasi menjadi salah satu bagian terpenting dalam kehidupan. Penggunaan teknologi informasi banyak digunakan diberbagai bidang salah satunya instansi pemerintahan. Instansi pemerintahan yang menggunakan teknologi informasi yaitu BAWASLU. BAWASLU (Badan Pengawas Pemilihan Umum) merupakan salah satu dari banyaknya instansi pemerintahan yang ada di Indonesia. BAWASLU menggunakan website untuk memberikan informasi yang berhubungan dengan PEMILU (Pemilihan Umum). Salah satu metode yang dapat digunakan untuk mengetahui apakah Website memiliki kerangka praktik manajemen teknologi informasi yang terstandar yaitu COBIT. COBIT terbaru dirilis pada tahun 2012 dengan versi COBIT 5. COBIT 5 (Control Objective for Information and related Technology) merupakan sebuah framework yang terdiri dari sebuah panduan praktik terbaik yang berisi kegiatan tata kelola teknologi informasi yang berfokus pada kontrol dan buka pada eksekusi atau pelaksanaan. Disini penulis memilih domain berdasarkan sumber data yang telah didapatkan. Domain yang digunakan yaitu EDM02, EDM05, dan MEA01. Berdasarkan hasil penelitian yang telah dilakukan pada website BAWASLU maka EDM02 berada di level 3 (Established Process), EDM05 berada di level 2 (Managed Process), dan MEA01 berada di level 2 (Managed Process). Dengan adanya metode ini, penulis dapat menyimpulkan sudah sampai ditahap manakan website BAWASLU saat ini.
45
Febriani, Anita, and Anita Febriani. "ANALISA DAN PENGEMBANGAN TATA KELOLA TEKNOLOGI INFORMASI (IT GOVERNANCE) MENGGUNAKAN COBIT 5." Jurnal Ilmu Komputer 6, no. 2 (February 3, 2018): 97–102. http://dx.doi.org/10.33060/jik/2017/vol6.iss2.68.
Full textAbstract:
Success in providing information services can provide a positive impact to the organization that is in accordance with the expectations of stakeholders. Therefore, the application of IT governance, especially for academic information systems need to be monitored and evaluated to ensure that the entire mechanism of IT management goes according to plan, objectives and business processes. The evaluation also should not only be done in the early stages of a system implemented, but should also be done regularly. The methodology in this study using the COBIT 5 framework that begins with those identified and mapped to the COBIT 5 processes selected. We then measured against these processes to determine the level of the current process capability and also carried out targeting the expected level of capability. Process capability level gap analysis of current and expected conducted to determine the extent to which improvements should be made to these processes. Recommendations for improvement of these processes is based on the COBIT framework 5. Results of this research is assessment and targeting capability level 5 COBIT 5 process were selected as well as recommendations for improvement of IT services activities.
46
Heryanto, Yudi, and Augie David Manuputty. "Audit Sistem Informasi Pendataan Tingkat Kepuasan Masyarakat terhadap Sistem Layanan Program Vaksinasi pada Masa Pandemi dengan Standar Cobit 4.1." Jurnal Impresi Indonesia 1, no. 5 (May 20, 2022): 528–37. http://dx.doi.org/10.36418/jii.v1i5.69.
Full textAbstract:
Pendahuluan: Dalam masa pandemi sulitnya mendapatkan informasi mengenai layanan program vaksinasi dan sulitnya mendapatkan informasi mengenai rumah sakit untuk isolasi untuk passien yang positif Covid-19 yang ada di kabupaten pemalang. Tujuan: Penelitian ini bertujuan mengetahui tingkat kepuasan masyarakat terhadap sistem layanan vaksinasi pada masa pandemi dan mengetahui rumah sakit yang bisa buat isolasi pasien positif covid-19. Metode: Metode yang digunakan adalah observasi dan kuesioner. Framework yang digunakan dalam penelitian ini menggunakan COBIT versi 4.1 khusus pada domain manajemen data (DS). Teknik Pengumpulan ini dimaksudkan sebagai alat untuk memudahkan pengumpulan data dalam bentuk kuesioner. Kuesioner menggunakan panduan Cobit 4.1 dan memerlukan proses dalam domain Cobit untuk mengajukan pertanyaan. penentuan indikator dan pemetaan tingkat kematangan. Hasil: Hasil dari penelitian ini adalah untuk mengetahui tingkat kematangan (maturity level) pada masyarakat pemalang khusus pada domain DS yaitu berada pada level 5 yang berarti sudah terukur dan terintegrasi antar proses yang berlangsung. Dan sasaran pelaksanaan vaksinasi minimal sebesar 70%. Kesimpulan: Proses audit sistem informasi pendataan tingkat kepuasan masyarakat terhadap sistem layanan program vaksinasi yang berjalan di Kabupaten Pemalang dengan menggunakan standar Framework COBIT 4.1 khusus pada domain deliver and suppot (DS) yang terutama pada proses DS3.1, DS1.1, DS12.5, DS12.2, DS2.4.
47
Maquera Quispe, Henry George, Marjorie Gabriela del Carmen Delgado Rospigliosi, and María Elena Tasa Catanzaro. "Marco de trabajo de Cobit para en el adecuado uso de tecnologías de información en organizaciones públicas y privadas." Ciencia & Desarrollo, no. 25 (December 31, 2019): 41–52. http://dx.doi.org/10.33326/26176033.2019.25.863.
Full textAbstract:
El trabajo de investigación se basó en el análisis del cambio organizacional bajo la implementación del marco de trabajo de Cobit, para garantizar el correcto uso de los activos de tecnologías de información. La investigación se llevó a cabo en organizaciones públicas y privadas de la región central del Perú. Se contó con la participación del personal asignado en las áreas de tecnologías de información, que permitieron el acceso a información respecto a los procesos y servicios de tecnologías de información de las organizaciones bajo estudio. El método utilizado fue el analítico debido a que se observó causas y efectos partiendo de los principios de las buenas prácticas de Cobit. La investigación permitió establecer que existe una directa y sólida correlación entre la percepción de los trabajadores y el uso del marco de trabajo de Cobit. Los resultados indicaron que la participación de buenas prácticas de ITIL permitieron una mejor integración de los activos de TI en el adecuado desarrollo del marco de trabajo de Cobit. Sin embargo, se apreció una diferenciada evolución entre las organizaciones públicas y privadas, mayormente, debido a factores internos como la cultura organizacional existente.
48
Heryanto, Yudi, and Augie David Manuputty. "Audit Sistem Informasi Pendataan Tingkat Kepuasan Masyarakat terhadap Sistem Layanan Program Vaksinasi pada Masa Pandemi dengan Standar Cobit 4.1." Jurnal Impresi Indonesia 1, no. 5 (May 20, 2022): 528–37. http://dx.doi.org/10.58344/jii.v1i5.69.
Full textAbstract:
Pendahuluan: Dalam masa pandemi sulitnya mendapatkan informasi mengenai layanan program vaksinasi dan sulitnya mendapatkan informasi mengenai rumah sakit untuk isolasi untuk passien yang positif Covid-19 yang ada di kabupaten pemalang. Tujuan: Penelitian ini bertujuan mengetahui tingkat kepuasan masyarakat terhadap sistem layanan vaksinasi pada masa pandemi dan mengetahui rumah sakit yang bisa buat isolasi pasien positif covid-19. Metode: Metode yang digunakan adalah observasi dan kuesioner. Framework yang digunakan dalam penelitian ini menggunakan COBIT versi 4.1 khusus pada domain manajemen data (DS). Teknik Pengumpulan ini dimaksudkan sebagai alat untuk memudahkan pengumpulan data dalam bentuk kuesioner. Kuesioner menggunakan panduan Cobit 4.1 dan memerlukan proses dalam domain Cobit untuk mengajukan pertanyaan. penentuan indikator dan pemetaan tingkat kematangan. Hasil: Hasil dari penelitian ini adalah untuk mengetahui tingkat kematangan (maturity level) pada masyarakat pemalang khusus pada domain DS yaitu berada pada level 5 yang berarti sudah terukur dan terintegrasi antar proses yang berlangsung. Dan sasaran pelaksanaan vaksinasi minimal sebesar 70%. Kesimpulan: Proses audit sistem informasi pendataan tingkat kepuasan masyarakat terhadap sistem layanan program vaksinasi yang berjalan di Kabupaten Pemalang dengan menggunakan standar Framework COBIT 4.1 khusus pada domain deliver and suppot (DS) yang terutama pada proses DS3.1, DS1.1, DS12.5, DS12.2, DS2.4.
49
Žvanut, Boştjan, Milena Burnik, Tamara Štemberger Kolnik, and Patrik Pucer. "The applicability of COBIT processes representation structure for quality improvement in healthcare: a Delphi study." International Journal for Quality in Health Care 32, no. 9 (August 25, 2020): 577–84. http://dx.doi.org/10.1093/intqhc/mzaa096.
Full textAbstract:
Abstract Objectives In healthcare, a variety of quality management practices are used. Although they are important sources for quality improvement initiatives, they do not focus on each particular process. On the other hand, ‘Control Objectives for Information and Related Technologies’ (COBIT) offers a well-defined process representation structure for representing potential process improvements. The objective of this study was to adopt the COBIT structure for healthcare processes and assess the applicability of such process representations. Design A two-round Delphi technique was applied: in round 1, open-ended interviews were performed with the participants; in round 2, the participants responded to the web questionnaire. Settings The participants provided their opinion between 11 September 2018 and 26 June 2019. Participants It included 37 members of an expert panel from 8 European countries. Intervention N/A Main Outcome Measures In round 1, strengths, weaknesses, opportunities and threats indicators of using the proposed structure in healthcare were identified. These were evaluated on a 9-point Likert scale in round 2. Results All participants noted that elements of the COBIT process representation structure were suitable for representing healthcare processes. The consensus was reached only for strengths and opportunities indicators. Conclusions A set of processes represented with the suggested structure has the potential to become a valid reference in healthcare quality improvements initiatives, as COBIT in IT domain. Despite the fact that the expert panel members confirmed the applicability of the COBIT process representation structure for healthcare processes, the identified weaknesses and threats cannot be ignored.
50
Rubino, Michele, and Filippo Vitolla. "Internal control over financial reporting: opportunities using the COBIT framework." Managerial Auditing Journal 29, no. 8 (August 26, 2014): 736–71. http://dx.doi.org/10.1108/maj-03-2014-1016.
Full textAbstract:
Purpose – The purpose of this paper is to analyze how the COBIT framework, integrated within the internal control framework, enables improvement in the quality of financial reporting while helping to reduce or eliminate the material weaknesses (MWs) of internal control over financial reporting (ICFR). The Control Objectives for Information and Related Technology (COBIT) model is a framework for information technology (IT) management and IT governance. It is a supporting toolset that allows managers to bridge the gap between control requirements, technical issues and business risks. Preliminarily, the analysis in this paper illustrates how the Committee of Sponsoring Organizations (COSO) framework impacts on the MWs, highlighting strengths and weaknesses. This paper shows how these limits can be overcome with the use of the COBIT framework. Design/methodology/approach – This is a conceptual paper that aims to highlight the relationship between COBIT and COSO, by illustrating how the IT processes reduce or eliminate the main MW categories. Findings – The analysis indicates that the implementation of the COBIT framework, or more generally the adoption of effective IT controls, provides important benefits to the entire company or organization. IT control objectives have a direct impact on the IT control weaknesses and indirectly on the other categories of material weaknesses. Practical implications – The adoption of the framework allows managers to implement effective ICFR. In particular, the COBIT approach provides managers with a more evolved tool in terms of compliance with the Sarbanes–Oxley Act requirements. This framework also improves the reliability of financial reporting in relation to the requirements of Public Company Accounting Oversight Board’s Auditing Standards No. 2 and 5. Originality/value – The analysis provides an interdisciplinary approach, connecting accounting and information systems themes, and suggest solutions and tools than can help managers to address the internal control weaknesses. This paper addresses an area of relevance to both practitioners and academics and expands existing accounting literature.