Data Center Risks Analysis Through The COBIT Framework 4.1

Arini Arini; Luh Kesuma Wardhani; Iik Muhammad Malik Matin

doi:10.15575/join.v3i2.226

Data Center Risks Analysis Through The COBIT Framework 4.1

Authors

Arini Arini UIN Syarif Hidayatullah, Indonesia http://orcid.org/0000-0002-9805-2866
Luh Kesuma Wardhani UIN Syarif Hidayatullah, Indonesia
Iik Muhammad Malik Matin UIN Syarif Hidayatullah, Indonesia

DOI:

https://doi.org/10.15575/join.v3i2.226

Keywords:

COBIT 4.1, data center, risk, IT Governance

Abstract

Information Technology Governance in UIN Jakarta is the responsibility of the Pusat Teknologi Informasi dan Pangkalan Data (Pustipanda). Some troubles have occurred in the data center Pustipanda, among others the loss of courses and its values that have been inputted in the application of Academic Information System (AIS), loss of data that has been inputted on the application Beban Kinerja Dosen (BKD), damage data content on the portal in the environment UIN Jakarta. Risk analysis is needed to identify and anticipate and minimize risks which may occur. In this research, the risk analysis is using the COBIT 4.1 framework that is in the PO9 process (Manage and Assess IT Risk) as input towards PO9 is the domain of PO1, PO10, DS2, DS4, DS5, ME1, and ME4. Questionnaires which were distributed to respondents were developed from input variables. Respondents were chosen by purposive sampling method. The results of the questionnaire were recapitulated and calculated the value and degree of capability. The result of this research is the level of domain capability in data center Pustipanda is at level 2 (managed) with value 1.91. A fairly low value is obtained on DS4, DS5 and ME1 domains, which are 1.67, 1.88 and 0.67. Arosen risks from the majority of data center risk assessment were the absence of documented policies and procedure and lack of training for risk management measures at Pustipanda data center.

Author Biographies

Arini Arini, UIN Syarif Hidayatullah

Informatics Engineering, Faculty of Science and TechnologyUIN Syarif Hidayatullah

Luh Kesuma Wardhani, UIN Syarif Hidayatullah

Informatics Engineering, Faculty of Science and TechnologyUIN Syarif Hidayatullah

Iik Muhammad Malik Matin, UIN Syarif Hidayatullah

Informatics Engineering, Faculty of Science and TechnologyUIN Syarif Hidayatullah

References

V. Sambamurthy and R. W. Zmud, â€œArrangements for Information Technology Governance: A Theory of Multiple Contingencies,â€ MIS Q., vol. 23, no. 2, p. 261, Jun. 1999.

K. Brand, H. Boonen, and IT Service Management Forum., IT Governance based on COBITÂ® 4.1 : A Management Guide. Van Haren Publishing, 2007.

J. Oltsik, â€œIT Governance: Is IT Governance the Answer?,â€ Tech Republic, 2003.

Pustipanda, â€œAbout Us | Pustipanda UIN Syarif Hidayatullah Jakarta.â€ [Online]. Available: https://pustipanda.uinjkt.ac.id/about-us/. [Accessed: 01-Oct-2016].

B. Supradono, â€œTingkat Kematangan Tata Kelola Teknologi Informasi (IT Governance) pada Layanan dan Dukungan Teknologi Informasi (Kasus: Perguruan Tinggi Swasta di Kota Semarang),â€ in Seminar Nasional Teknologi Informasi & Komunikasi Terapan 2011 (Semantik 2011), 2011.

Information Systems Audit and Control Association., COBIT Process Assessment Model (PAM) : using COBIT 4.1. ISACA, 2011.

Downloads

Published

2019-02-01

Issue

Vol. 3 No. 2 (2018)

Section

Article

Citation Check

License

You are free to:

Share — copy and redistribute the material in any medium or format for any purpose, even commercially.
The licensor cannot revoke these freedoms as long as you follow the license terms.

Under the following terms:

Attribution — You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
NoDerivatives — If you remix, transform, or build upon the material, you may not distribute the modified material.
No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.

Notices:

You do not have to comply with the license for elements of the material in the public domain or where your use is permitted by an applicable exception or limitation.
No warranties are given. The license may not give you all of the permissions necessary for your intended use. For example, other rights such as publicity, privacy, or moral rights may limit how you use the material.

This work is licensed under a Creative Commons Attribution-NoDerivatives 4.0 International License