Risk Assessment and Recommendation Strategy Based on COBIT 5 For Risk - A Case Study of an Internet Service Provider Company

  • Jeremy Setiawan Universitas Multimedia Nusantara, Indonesia
  • Melissa Indah Fianty Universitas Multimedia Nusantara, Indonesia
Keywords: capability level, COBIT 5, GAP Analysis, IT Governance


Information technology governance is part of organizational management that includes leadership and ensuring that information technology has a broad scope to meet needs. The concept of IT Governance is a method of managing technology users in. The company, in this case, provides IT needs and solutions to customers ranging from hardware, software, and services. A good business case will include the problem in information technology governance, especially when it comes to maintenance related to POP or Post Office Protocol which is the internet protocol used on TCP/IP networks such as the internet. In this study, the framework used as a reference in IT development is COBIT 5. The domain processes studied are EDM02 – Ensure Benefits Delivery, APO07 – Manage Human Resources, and APO10 – Manage Suppliers, who can evaluate IT governance at this Company. The research method used is Gallego's Theory starting from planning, field inspection, reporting, and follow-up. The results of this study were obtained from the evaluation of information technology governance in the Company got to level 1 capability with fully achieved achievement but could not move up to the next stage, that is, level 2, resulting in a gap analysis of 1 level from the target level expected by the Company.


Download data is not yet available.


A. Transaksi Kartu Multi Trip menggunakan, N. Lutfiyana, T. Aria, and H. Widyastuti, “Jurnal Informatika dan Rekayasa Perangkat Lunak Framework Cobit 5 Domain EDM (Evaluate, Direct And Monitor) pada PT MRT Jakarta,” J. Inform. dan Rekayasa Perangkat Lunak, vol. 3, pp. 9–15, 2021.

N. Fariidhotun Nisaa, Y. Amrozi, T. Shabrina Az-zahra, and J. Ahmad Yani, “Evaluasi Tata Kelola Teknologi Informasi Menggunakan Framework COBIT 5 (Studi Kasus: Bidang Perdagangan Dalam Negeri Dinas Perindustrian dan Perdagangan Jawa Timur) Evaluation of Information Technology Governance Using COBIT 5 Framework (Case Study: Domes,” 2021.

V. Renika, A. Pratama, and R. Putra Phonna, “Pengukuran Tingkat Kemampuan (Capability Level) Penerapan Teknologi Informasi dengan Framework Cobit 5 Domain EDM Pengukuran Tingkat Kemampuan (Capability Level) Penerapan Teknologi Informasi Studi Kasus PT. Bank Bri Syariah Tbk.Kc Lhokseumawe,” J. Sist. Inf., vol. 4, 2020, doi: https://doi.org/10.24252/insypro.v6i1.23275.

B. Sivadjati, T. Sofian, F. Achmad Zulfikar, R. Eko Indrajit, and E. Dazki, “Analisis Tata Kelola It Menggunakan Framework Cobit 5 Pada Domain Monitor, Evaluate And Assess (Mea),” 2021.

U. F. Afifah and I. Verdian, “Analisis Pemanfaatan Platform E-Learning Menggunakan Framework Cobit 5 Pada Domain Dss. Jurnal Saintekom 11, no. 2 (2021): 121-129

A. Hanif, M. Giatman, and A. Hadi, “Evaluasi Tata Kelola Teknologi Informasi Di Dinas Komunikasi Dan Informatika Menggunakan Framework COBIT 5,” J. Sains dan Teknol., vol. 9 no 1, 2020.

M. Setiati, A. Sabila Putri, P. Akuntansi, and F. Ekonomi dan Bisnis, “Implementasi Tata Kelola Ti Menggunakan Framework COBIT-5 pada PT. MBA Consulting It Governance Implementation Using COBIT-5 Framework In PT. MBA CONSULTING,” 2022.

D. Ramadhan and N. Safitri, “Audit Sistem Informasi Absensi Dan Penggajian Pada PT. Ztech Indonesia,” J. Mhs. BINA Insa., vol. 2, no. 2, pp. 202–211, 2018.

F. A. Kojongian and M. Ayub, “Manajemen Risiko Divisi Sistem Informasi Perguruan Tinggi Dengan Framework COBIT 5,” J. Tek. Inform. dan Sist. Inf., vol. 7, no. 1, Apr. 2021, doi: 10.28932/jutisi.v7i1.3434.

M. D. Firmansyah, “Analisis Tingkat Kapabilitas Knowledge Management System Information Menggunakan Model Framework Cobit 5 (Studi Kasus Hotel XYZ),” J. Sisfokom (Sistem Inf. dan Komputer), vol. 10, no. 2, pp. 217–223, Aug. 2021, doi: 10.32736/sisfokom.v10i2.1149.

H. Agung, D. Johanes, and F. Andry, “Audit Sistem Informasi Akademik Menggunakan Kerangka Kerja Cobit 5 Pada Domain Edm Di Universitas XYZ Audit Information System Academic Using COBIT 5 Framework Domain EDM on XYZ University,” 2018.

A. Irhandayaningsih, “Performance Measurement of Information Technology Governance in the Library of Diponegoro University Using COBIT Assessment Framework,” in E3S Web of Conferences, Nov. 2020, vol. 202, doi: 10.1051/e3sconf/202020215001.

Raditya A and Adnyana I, “Evaluasi Tatakelola Sistem Informasi Akademik Stmik Primakara Menggunakan Framework COBIT 5,” 2019, doi: 10.36002/jutik.v5i1.636.

A. K. Setiawan and J. F. Andry, “Pengukuran Performa Tata Kelola Teknologi Informasi pada Perpustakaan Nasional Menggunakan Framework COBIT 5,” Jutei, vol. 3, no. 1, pp. 53–63, 2019, doi: 10.21460/jutei.2018.31.132.

C. Nugraha, M. Mustikasari, and A. Suroso, “Analisis Tata Kelola Sistem Informasi di Perusahaan Pengelola Kawasan Industri Menggunakan Domain EDM Pada Kerangka Kerja COBIT 5,” vol. 6, no. 3, 2021.

Abstract views: 98 times
Download PDF: 72 times
How to Cite
Setiawan, J., & Fianty, M. (2023). Risk Assessment and Recommendation Strategy Based on COBIT 5 For Risk - A Case Study of an Internet Service Provider Company. Journal of Information Systems and Informatics, 5(1), 243-258. https://doi.org/10.51519/journalisi.v5i1.453