Information technology audit for management evaluation using COBIT and IT security (Case study on Dishubkominfo of North Maluku Provincial Government, Indonesia)

Arief, Assaf and Wahab, Iis Hamsir Ayub (2016) Information technology audit for management evaluation using COBIT and IT security (Case study on Dishubkominfo of North Maluku Provincial Government, Indonesia). In: 3rd International Conference on Information Technology, Computer, and Electrical Engineering (ICITACEE).

[img]
Preview
 Text
arief2016.pdf
Download (342kB) | Preview

Abstract

In modern organizational, the use of information technology to support the achievement of organizational and business goals must be balanced with the effectiveness and efficiency of its management. Information technology infrastructure available in Dishubkominfo the Provincial Government of North Maluku Indonesia has not been optimized, the problem of lack of human resources to lead and management of information technology is not well managed and also the absence of control over the level of information technology security. This condition makes the direction of government policy in the field of Information Technology is not clear. Required a mechanisms information technology control so that measurable what has been done both advantages and disadvantages of the government's rules and policies are in accordance with international standards. This study uses the two frameworks: COBIT 5 and IT Security for Information Technology Audit. The Information Technology audit results of Dishubkominfo institution has the maturity level of information technology management at level 2 are Repeatable but Intuitive controls for mapping and principle of COBIT 5, while the average score of information security standard ISO/IEC 17799:2005 was 39%. The results of data processing to find value — average for the domain APO and MEA was 1.71 and the value — average for principle is 1.98 latter value — average for the maturity level of information security standard ISO/IEC 17799:2005 is 31 or 39%, which means that the security of information technology is still very less and should be highly improved.

Item Type: Conference or Workshop Item (Paper)
Subjects: T Technology > TK Electrical engineering. Electronics Nuclear engineering
Divisions: Faculty of Engineering, Science and Mathematics > School of Electronics and Computer Science
Depositing User: Dr iis hamsir ayub wahab
Date Deposited: 12 Dec 2022 07:42
Last Modified: 12 Dec 2022 07:42
URI: http://repository.unkhair.ac.id/id/eprint/216

Actions (login required)

View Item View Item