Evaluation of Information Technology Governance Using COBIT 5 and ISO/IEC 38500


  • Tubagus Toifur Department of Informatics,Universitas Amikom Yogyakarta, Indonesia
  • Kusrini Kusrini Department of Informatics,Universitas Amikom Yogyakarta, Indonesia
  • Agung Budi Department of Informatics,Universitas Amikom Yogyakarta, Indonesia




COBIT 5, Governance, Information Technology, ISO/IEC 38500


Infrastructure Section, Information and Communication Technology Development Division, South Tangerang City Communication and Information Office, one of the main tasks and functions is to provide services and management of internet network infrastructure for all Regional Apparatus Organizations (OPD) in South Tangerang City. The implementation of the Infrastructure Section is constrained by the problem of employee competence that has not reached the standard in internet network management and service, from these problems the researcher intends to evaluate governance using the COBIT 5 framework and ISO/IEC 38500 with recommendations for improvement in the Infrastructure Section. This study uses PAM (Process Assessment Model) with the Guttman scale to determine the results and level of capability. The use of COBIT 5 in this research will focus on the domain of EDM (Evaluate Direct Monitor) point 04, Ensure Resource Management and MEA (Monitor, Evaluate and Assessment) point 01, Performance and Conformance. The results and the level of capability obtained during the research were level 2 Managed Process with a value of 2.46 with a gap of 0.54. The level expected by the Infrastructure Section is at level 3 Established Process with a value of 3.00. Recommendations for achieving Level 3 are used ISO/IEC 38500.


D. Napitupulu, M. Syafrullah, R. Rahim, A. Amar, and Y. G. Sucahyo, “Content validity of critical success factors for e-Government implementation in Indonesia,†IOP Conf. Ser. Mater. Sci. Eng., vol. 352, no. 1, 2018, doi: 10.1088/1757-899X/352/1/012058.

N. B. Miranda, M. R. D. Rodavia, and M. I. Miranda, “IT Infrastructure Auditing using COBIT Framework,†Int. Conf. Tech. Educ., 2019.

X. Ju, X. Li, W. Jing, and B. Sun, “Modeling and Evaluating Telecommunication Industry ’ s ‘ Internet-and-Digitized ’ Development,†China Commun., no. April, pp. 210–220, 2018.

N. 12 T. 2019. Peraturan Walikota, Tangerang Selatan, “tentang Penyelenggaraan Komunikasi Dan Informatika,†no. 12, pp. 1–104, 2019.

A. Damanik and A. F. Firmansyah, “Strategies to Improve Human Resource Management using COBIT 5 For Data and Information Centre of Ministry of Agriculture of Indonesia of Republic,†2018 6th Int. Conf. Cyber IT Serv. Manag., no. Citsm, pp. 1–4, 2018, doi: 10.1109/CITSM.2018.8674062.

R. Rooswati, “Evaluation Of IT Project Management Governance Using Cobit 5 Framework In Financing Company,†Int. Conf. Inf. Manag. Technol., no. September, pp. 81–85, 2018.

A. D. Suryawan, “Information Technology Service Performance Management Using COBIT and ITIL Frameworks : A Case Study,†Int. Conf. Inf. Manag. Technol., no. September, pp. 1–9, 2018.

E. Gunawan, “Evaluation of IT Governance Implementation Using COBIT 5 Framework and ISO 38500 at Telecommunication Industries,†Int. Conf. Inf. Manag. Technol., no. August, pp. 453–457, 2020.

B. Sergiy, “Determination of competences that take affect the formation of creative capabilities of team of managers,†2019 IEEE 14th Int. Conf. Comput. Sci. Inf. Technol., vol. 3, pp. 122–125, 2019.

D. F. Murad and E. Fernando, “Implementation of COBIT 5 Framework for Academic Information System Audit Perspective : Evaluate , Direct , and Monitor,†2018 Int. Conf. Appl. Inf. Technol. Innov., pp. 102–107, 2018.

L. Made, W. Satyaninggrat, and K. Surendro, “Development of Capability Assessment Model of IT Operation Management Process with Organizational Behavior,†Conf. Soft Comput. Intell. Syst. Inf. Technol., 2017, doi: 10.1109/ICSIIT.2017.23.

ISACA, COBIT ® Process Assessment Model (PAM): Using COBIT ® 5. A Business Framework for the Governance and Management of Enterprise IT., 2013.

ISACA, Enabling Processes. A Business Framework for the Governance and Management of Enterprise IT., 2012.

G. C. Wiedenhoft, E. M. Luciano, and O. A. Magnagnagno, “Information Technology Governance in Public Organizations: Identifying Mechanisms That Meet Its Goals While Respecting Principles,†J. Inf. Syst. Technol. Manag., vol. 14, no. 1, pp. 69–87, 2017, doi: 10.4301/s1807-17752017000100004.

N. Komalasari, J. Budiman, and E. Fernando, “Effect of Education , Performance , Position and Information Technology Competency of Information Systems to Performance of Information System,†2018 Int. Semin. Res. Inf. Technol. Intell. Syst., pp. 221–226.

N. P. S. Ayu Indah Saridewi, Dewa Made Wirata, “Evaluation of Integrated University Management Information System Using COBIT 5 Domain DSS,†Int. Conf. Smart-Green Technol. Electr. Inf. Syst., vol. 7, 2018.

R. Almeida, “A Model for Assessing COBIT 5 and ISO 27001 Simultaneously,†2018 IEEE 20th Conf. Bus. Informatics, vol. 01, pp. 60–69, 2018, doi: 10.1109/CBI.2018.00016.

N. F. Saragih, C. Sagala, I. S. Dumayanti, I. K. Jaya, E. Rajagukguk, and A. Gea, “Evaluation of Employee Attendance System Using COBIT 5 Framework,†Int. Conf. Comput. Sci. Inf. Technol., 2019.

B. Noranita, R. Saputra, S. Adhy, and R. Muhammad, “Capability Level at Faculty Information Technology Unit Using COBIT 5,†2018 2nd Int. Conf. Informatics Comput. Sci., pp. 1–6, 2018, doi: 10.1109/ICICOS.2018.8621738.

Y. Suryanto and K. Ramli, “A COBIT-Based Critical Asset Evaluation of Electronic Certificate Management in Central , Urban , and Rural Government Agencies : Study and Analysis,†2018 Int. Conf. ICT Rural Dev., pp. 98–104, 2018.

M. Nehemia, “A Comparative Analysis of E-Governance and IT Governance,†2019 Open Innov., pp. 288–296, 2019.

A. V Olifirov, P. Y. Zhytnyy, and S. A. Petrenko, “Models of Processes for Governance of Enterprise IT and Personnel Training for Digital Economy,†2018 XVII Russ. Sci. Pract. Conf. Plan. Teach. Eng. Staff Ind. Econ. Complex Reg., pp. 216–219.

B. Sandi, “Information System Risk Scenario Using COBIT 5 for Risk And NIST SP 800-30 Rev . 1 A Case Study,†2018 3rd Int. Conf. Inf. Technol. Inf. Syst. Electr. Eng., pp. 287–291, 2018.

N. Agitha, “Implementation of COBIT 4 . 1 to Define and Maintain Infrastructure of Information Technology at Regional Public Hospital in West Nusa Tenggara,†Int. Conf. Adv. Data Sci. E-learning Inf. Syst., pp. 5–9, 2020.

ISO, “INTERNATIONAL STANDARD ISO/IEC 38500:2008(E),†Corp. Gov. Information. Swizerl. Int. Stand., vol. 2008, 2008.







Citation Check

Most read articles by the same author(s)