Systematic Literature Review: Analisis Implementasi Manajemen Risiko TI Menggunakan Framework COBIT di Sektor Industri Jasa


Authors

  • Fathimatus Zahrotun Nisa' Universitas Pembangunan Nasional “Veteran” Jawa Timur, Surabaya, Indonesia
  • Ganes Dwi Febrianti Universitas Pembangunan Nasional “Veteran” Jawa Timur, Surabaya, Indonesia
  • Navy Nurlyn Ajrina Universitas Pembangunan Nasional “Veteran” Jawa Timur, Surabaya, Indonesia

DOI:

https://doi.org/10.47065/bulletincsr.v4i1.313

Keywords:

IT Risk Management; COBIT; Service Industry; Implementation Challenges; Strategy

Abstract

The use of Information Technology (IT) is an important part of all business activities, especially in the service sector. It is important to ensure the security, availability and integrity of their systems. The impact of failure in IT Risk Management greatly influences success. The implementation of IT Risk Management is needed to be able to help companies in the event of losses. In its use, a framework is needed that functions to identify, evaluate and manage existing risks. Therefore, this research will show the COBIT framework that is suitable for managing existing risk management. This research was carried out using the Systematic Literature Review method which started from the stages of formulating research questions, literature search, literature selection, data extraction and discussion aimed at answering Research Questions. In this research, 25 articles were found which were used as literature sources. The research results show that COBIT 2019 is the version of COBIT most often used in IT Risk Management in the industrial service sectors. In implementing COBIT, companies face various challenges such as lack of in-depth understanding of COBIT, lack of work process documentation and lack of operational standards for risk control and incompatibility of IT strategy with company strategy. This research also found that there are 8 points of COBIT implementation strategy to help service industry companies achieve organizational goals more effectively and efficiently through IT risk management.

Downloads

Download data is not yet available.

References

H. Indrayani, “PENERAPAN TEKNOLOGI INFORMASI DALAM PENINGKATAN EFEKTIVITAS, EFISIENSI DAN PRODUKTIVITAS PERUSAHAAN,” Jurnal EL-RIYASAH, vol. 3, no. 1, pp. 48–56, Dec. 2012, doi: 10.24014/JEL.V3I1.664.

I. K., MT, “KAJIAN IT GOVERNANCE UNTUK PENINGKATAN PRODUKTIVITAS OPERASIONAL PELAYANAN PUBLIK,” CCIT (Creative Communication and Innovative Technology) Journal, vol. 6, no. 1, pp. 47–56, Sep. 2012, doi: 10.33050/CCIT.V6I1.377.

D. Baccarini, G. Salm, and P. E. D. Love, “Management of risks in information technology projects,” Industrial Management and Data Systems, vol. 104, no. 3, pp. 286–295, 2004, doi: 10.1108/02635570410530702.

T. D. Susanto, Manajemen Layanan Teknologi Informasi, 1st ed. Surabaya: Asosiasi Sistem Informasi Indonesia (AISINDO), 2013.

A. A. Putra, O. D. Nurhayati, and I. P. Windasari, “Perencanaan dan Implementasi Information Security Management System Menggunakan Framework ISO/IEC 20071,” Jurnal Teknologi dan Sistem Komputer, vol. 4, no. 1, pp. 60–66, Jan. 2016, doi: 10.14710/JTSISKOM.4.1.2016.60-66.

N. Belanova, “Risks of IT technology adoption,” E3S Web of Conferences, vol. 376, p. 05014, Mar. 2023, doi: 10.1051/E3SCONF/202337605014.

J. Candra, “Enterprise Risk Management (ERM) Practices to Achieve Long Term and Sustainable Organization’s Goals: Case of Institut Teknologi Bandung (ITB),” International Journal of Current Science Research and Review, vol. 04, no. 12, Dec. 2021, doi: 10.47191/IJCSRR/V4-I12-16.

M. Trzeciak, “Sustainable Risk Management in IT Enterprises,” Risks 2021, Vol. 9, Page 135, vol. 9, no. 7, p. 135, Jul. 2021, doi: 10.3390/RISKS9070135.

J. J. Jiang, G. Klein, and R. Discenza, “Information system success as impacted by risks and development strategies,” IEEE Trans Eng Manag, vol. 48, no. 1, pp. 46–55, Feb. 2001, doi: 10.1109/17.913165.

Hairul, "Manajemen Risiko Teknologi Informasi ", in MANAJEMEN RESIKO, 1st ed. Sleman: Penerbit Deepublish, 2020.

M. Miftakhatun, “Analisis Manajemen Risiko Teknologi Informasi pada Website Ecofo Menggunakan ISO 31000,” Journal of Computer Science and Engineering (JCSE), vol. 1, no. 2, pp. 129–146, Aug. 2020, doi: 10.36596/JCSE.V1I2.76.

“Manajemen Risiko: Pengertian, Manfaat, Tujuan, Prinsip dan Langkah-langkahnya - Gramedia Literasi.” Accessed: Jan. 02, 2024. [Online]. Available: https://www.gramedia.com/literasi/manajemen-risiko/

M. Berliana et al., “ANALISIS MANAJEMEN RISIKO BISNIS,” JURNAL AKUNTANSI UNIVERSITAS JEMBER, vol. 18, no. 1, pp. 51–61, Jul. 2020, doi: 10.19184/JAUJ.V18I1.18123.

I. Kuzminykh, B. Ghita, V. Sokolov, and T. Bakhshi, “Information Security Risk Assessment,” Encyclopedia 2021, Vol. 1, Pages 602-617, vol. 1, no. 3, pp. 602–617, Jul. 2021, doi: 10.3390/ENCYCLOPEDIA1030050.

H. M. Alshahrani et al., “Analysis and Ranking of IT Risk Factors Using Fuzzy TOPSIS-Based Approach,” Applied Sciences (Switzerland), vol. 12, no. 12, Jun. 2022, doi: 10.3390/APP12125911.

J. S. Suroso and B. Rahadi, “Development of IT risk management framework using COBIT 4.1, implementation in it governance for support business strategy,” ACM International Conference Proceeding Series, vol. Part F130654, pp. 92–96, Jul. 2017, doi: 10.1145/3124116.3124134.

M. Setiati, A. Sabila Putri, P. Akuntansi, and F. Ekonomi dan Bisnis, “IMPLEMENTASI TATA KELOLA TI MENGGUNAKAN FRAMEWORK COBIT -5 PADA PT. MBA CONSULTING,” E-Prosiding Akuntansi, vol. 3, no. 1, Mar. 2022, Accessed: Jan. 02, 2024. [Online]. Available: https://trilogi.ac.id/journal/ks/index.php/EPAKT/article/view/1177

A. Prasetyo, U. Dan, and N. Mariana, “Analisis Tata Kelola Teknologi Informasi ( It Governance ) pada Bidang Akademik dengan Cobit Frame Work Studi Kasus pada Universitas Stikubank Semarang,” Dinamik, vol. 16, no. 2, pp. 139–149, Jul. 2011, doi: 10.35315/DINAMIK.V16I2.361.

R. OKTARINDA, “DAMPAK PERKEMBANGAN INDUSTRI BESAR TERHADAP SOSIAL EKONOMI DI KABUPATEN TEMANGGUNG,” 2007.

A. Sukmawati, W. Cholil, S. Rizal, and D. Palembang Jl Jenderal Ahmad Yani No, “EVALUASI TATA KELOLA TEKNOLOGI INFORMASI PADA RUMAH SAKIT DR. H. IBNU SUTOWO BATURAJA BERDASARKAN FRAMEWORK COBIT 5,” Gema Teknologi, vol. 20, no. 4, pp. 140–145, Apr. 2020, doi: 10.14710/GT.V20I4.26017.

D. Tranfield, D. Denyer, and P. Smart, “Towards a Methodology for Developing Evidence-Informed Management Knowledge by Means of Systematic Review,” British Journal of Management, vol. 14, no. 3, pp. 207–222, 2003, doi: 10.1111/1467-8551.00375.

O. Elysa, N. Cahyani, D. Pancawati, and E. Fitriyani, “ANALISIS INSTAGRAM SEBAGAI SOCIAL MEDIA MARKETING DI INDUSTRI PERHOTELAN,” Jurnal Ilmiah Hospitality, vol. 10, no. 1, pp. 29–46, Jun. 2021, doi: 10.47492/JIH.V10I1.642.

T. Dharmawati, P. A. Cakranegara, S. Arni, M. Miftahorrozi, and A. J. Wahidin, “Information Technology Governance Audit In The Financial Sector Using Cobit 5 Framework,” Enrichment?: Journal of Management, vol. 12, no. 4, pp. 3036–3041, Oct. 2022, doi: 10.35335/ENRICHMENT.V12I4.768.

R. Setyadi and H. N. Prabowo, “RISK MANAGEMENT ANALYSIS OF BUS TRANSPORTATION APPLICATION USING COBIT 4.1,” JURTEKSI (Jurnal Teknologi dan Sistem Informasi), vol. 7, no. 2, pp. 203–212, Apr. 2021, doi: 10.33330/JURTEKSI.V7I2.1046.

S. Tangprasert, “A Study of Information Technology Risk Management of Government and Business Organizations in Thailand using COSO-ERM based on the COBIT 5 Framework,” Journal of Applied Science and Emerging Technology, vol. 19, no. 1, pp. 13–24, Jun. 2020, doi: 10.14416/j.appsci.2020.01.002.

R. Artikel, R. Setyadi, and S. Anggoro, “Risk Management Analysis Using COBIT 4.1 at Vehicle Testing Management Information System,” Jurnal Teknik Informatika dan Sistem Informasi, vol. 7, no. 1, pp. 2443–2229, Apr. 2021, doi: 10.28932/JUTISI.V7I1.3419.

M. A. Prasetyo and R. Setyadi, “Risk Management Analysis Website E-klim at Civil Service Savings and Insurance Using COBIT 4.1,” SISFORMA, vol. 9, no. 1, pp. 26–31, May 2022, doi: 10.24167/SISFORMA.V9I1.4314.

M. V. Lim and M. I. Fianty, “Enhancing Information Technology Governance: A Comprehensive Evaluation Of The 2019 COBIT Framework In The Retail Industry,” International Journal of Science, Technology & Management, vol. 4, no. 5, pp. 1389–1395, Sep. 2023, doi: 10.46729/IJSTM.V4I5.955.

S. Carlos, I. Simatupang, M. I. Fianty, and R. Artikel, “Assessment of Capability Levels and Improvement Recommendations Using COBIT 2019 for the IT Consulting Industry,” G-Tech: Jurnal Teknologi Terapan, vol. 7, no. 4, pp. 1391–1400, Oct. 2023, doi: 10.33379/GTECH.V7I4.3141.

B. Belelang and S. Nurlela, “Penggunaan Cobit 4.1 Untuk Audit Sistem Informasi Kepegawaian Pada PT. Mustika Agung Sentosa,” INSANtek, vol. 3, no. 2, pp. 67–72, Nov. 2022, doi: 10.31294/INSTK.V3I2.1570.

N. A. Garnida, R. Mulyana, and W. A. Nurtrisha, “InsurCo’s Digital Transformation by Designing Information Technology Risk Management Using the 2019 COBIT Framework IT Risk Management Focus Area,” Jurnal Ilmiah Teknologi Infomasi Terapan (JITTER), vol. 9, no. 3, Aug. 2023, doi: 10.33197/JITTER.VOL9.ISS3.2023.1338.

M. Reza and L. I. Prahartiwi, “AUDIT SISTEM INFORMASI KEPEGAWAIAN PADA KONSULTAN HUKUM AM BADAR & AM BADAR,” IJIS - Indonesian Journal On Information System, vol. 8, no. 1, pp. 19–31, Apr. 2023, doi: 10.36549/IJIS.V8I1.248.

A. Azis, R. Mulyana, and R. Fauzi, “Penyusunan Manajemen Risiko TI Berdasarkan Cobit 2019 I&T Risk Focus Area Untuk Digitalisasi Fintechco,” J-SAKTI (Jurnal Sains Komputer dan Informatika), vol. 7, no. 2, pp. 940–956, Sep. 2023, doi: 10.30645/J-SAKTI.V7I2.698.

M. A. Andyas, R. Mulyana, and W. A. Nurtrisha, “MANAJEMEN KEAMANAN INFORMASI UNTUK TRANSFORMASI DIGITAL INSURCO BERBASIS COBIT 2019 FOCUS AREA INFORMATION SECURITY,” ZONAsi: Jurnal Sistem Informasi, vol. 5, no. 3, pp. 452–467, Oct. 2023, doi: 10.31849/ZN.V5I3.15275.

R. A. Prayudi, R. Mulyana, and R. Fauzi, “endalian Digitalisasi FintechCo Melalui Perancangan Pengelolaan Keamanan Informasi Berbasis COBIT 2019 Information Security Focus Area,” SEIKO?: Journal of Management & Business, vol. 6, no. 2, pp. 388–406, Sep. 2023, doi: 10.37531/SEJAMAN.V6I2.5480.

F. Wahdah and B. Soewito, “MANAJEMEN RESIKO APLIKASI KEUANGAN PADA PERUSAHAAN ABC MELALUI KOMBINASI NIST SP 800-30, COBIT, PMBOK, DAN ISO 31000,” JIKO (Jurnal Informatika dan Komputer), vol. 5, no. 2, pp. 78–83, Aug. 2022, doi: 10.33387/JIKO.V5I2.4369.

F. Z. Afriliandra, S. Suprapto, and A. R. Perdanakusuma, “Evaluasi Tata Kelola Manajemen Risiko Teknologi Informasi pada PT XYZ menggunakan Kerangka Kerja COBIT 2019,” Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer, vol. 6, no. 12, pp. 5755–5764, 2022, Accessed: Dec. 13, 2023. [Online]. Available: https://j-ptiik.ub.ac.id/index.php/j-ptiik/article/view/11991

A. Saryoko, A. Junaidi, S. Dalis, S. Samudi, R. Aryanti, and H. Haryani, “Tata Kelola Teknologi Informasi Pada JNE Cabang Bekasi Menggunakan Framework Cobit 4.1,” Jurnal Informatika, vol. 9, no. 1, pp. 55–60, Apr. 2022, doi: 10.31294/INF.V9I1.11708.

N. Butarbutar and A. R. Tanaamah, “Analisis Manajemen Risiko Menggunakan COBIT 5 Domain APO12 (Studi Kasus: Yayasan Bina Darma),” Journal of Information Systems and Informatics, vol. 3, no. 3, pp. 352–362, Sep. 2021, doi: 10.51519/JOURNALISI.V3I3.155.

R. Artikel, S. Kristiawan Gouwnalan, ? #1, A. Rocky, and T. #2, “The Application of COBIT 2019 Framework in the Evaluation of Information Technology Governance,” Jurnal Teknik Informatika dan Sistem Informasi, vol. 9, no. 2, pp. 254 – 264–254 – 264, Aug. 2023, doi: 10.28932/JUTISI.V9I2.6373.

C. M. Sundalusia, R. Mulyana, and F. Dewi, “Penyusunan Manajemen Pengembangan TI Agile Memakai Cobit 2019 Devops Pada Transformasi Digital Reinsurco,” Kesatria?: Jurnal Penerapan Sistem Informasi (Komputer dan Manajemen), vol. 4, no. 4, pp. 1020–1035, Oct. 2023, doi: 10.30645/KESATRIA.V4I4.252.

A. Harits, G. M. Noer, and A. P. Widodo, “Capability Level Measurement Using COBIT 5 Framework (Case Study: PT. Jasa Cendekia Indonesia),” Journal of Information Systems and Informatics, vol. 3, no. 2, pp. 341–351, Jun. 2021, doi: 10.33557/JOURNALISI.V3I2.134.

Bq. D. Tarbiyatuzzahrah, R. Mulyana, and A. F. Santoso, “Penggunaan COBIT 2019 GMO dalam Menyusun Pengelolaan Layanan TI Prioritas pada Transformasi Digital BankCo,” JTIM?: Jurnal Teknologi Informasi dan Multimedia, vol. 5, no. 3, pp. 218–238, Oct. 2023, doi: 10.35746/JTIM.V5I3.400.

G. Isabel Belo et al., “Perancangan Tata Kelola Teknologi Informasi menggunakan COBIT 2019 pada PT Telekomunikasi Indonesia Regional VI Kalimantan,” Jurnal Sistem Informasi dan Ilmu Komputer Prima(JUSIKOM PRIMA), vol. 4, no. 1, pp. 23–30, Sep. 2020, doi: 10.34012/JUSIKOM.V4I1.1202.

J. M. Teknlogi Informatika dan Komputer Thamrin et al., “Desain Panduan Audit Tata Kelola Sistem Informasi Boost The Order (SIBORDER) di PT Telekomunikasi Indonesia Menggunakan COBIT 2019,” Jurnal Teknologi Informatika dan Komputer, vol. 7, no. 2, pp. 82–100, Sep. 2021, doi: 10.37012/JTIK.V7I2.638.

I. Arifin, I. K. Arifin, T. Tukino, F. Nurapriani, and S. Aripiyanto, “Penyelarasan Sistem Tata Kelola pada PT. MEI dengan Menggunakan Cobit 2019,” EXPERT: Jurnal Manajemen Sistem Informasi dan Teknologi, vol. 12, no. 2, pp. 96–103, Dec. 2022, doi: 10.36448/expert.v12i2.2804.

H.- Himayadi and J. F. Andry, “TATA KELOLA TEKNOLOGI INFORMASI DENGAN KERANGKA KERJA COBIT 4.1 PADA PT.DUNIA SAFTINDO,” SISTEMASI, vol. 8, no. 3, pp. 329–340, Sep. 2019, doi: 10.32520/STMSI.V8I3.464.

R. D. Irawan, E. Utami, and A. H. Muhammad, “EVALUASI MANAGED ENTERPRISE ARCHITECTURE PADA PENGADAAN ALAT PEMBELAJARAN TEKNOLOGI INFORMASI MENGGUNAKAN COBIT 2019 (Studi Kasus: SMKN 1 Nglipar),” JIPI (Jurnal Ilmiah Penelitian dan Pembelajaran Informatika), vol. 7, no. 3, pp. 792–802, Aug. 2022, doi: 10.29100/JIPI.V7I3.3146.


Bila bermanfaat silahkan share artikel ini

Berikan Komentar Anda terhadap artikel Systematic Literature Review: Analisis Implementasi Manajemen Risiko TI Menggunakan Framework COBIT di Sektor Industri Jasa

ARTICLE HISTORY

Submitted: 2023-12-15
Published: 2023-12-13

Abstract View: 77 times
PDF Download: 58 times

How to Cite

Nisa’, F. Z., Febrianti, G. D., & Ajrina, N. N. (2023). Systematic Literature Review: Analisis Implementasi Manajemen Risiko TI Menggunakan Framework COBIT di Sektor Industri Jasa. Bulletin of Computer Science Research, 4(1), 66-74. https://doi.org/10.47065/bulletincsr.v4i1.313

Issue

Section

Articles