Capability Gap Analysis in IT Governance for a Logistics Company Using COBIT 2019
Abstract
This paper aims to evaluate the IT governance capability levels within a logistics company using the COBIT 2019 framework, focusing on identifying gaps between the current state (as-is) and the desired state (to-be). The methodology involves an assessment of three key Governance and Management Objectives: stakeholder engagement (EDM05), IT asset management (BAI09), and IT compliance (MEA03). The results indicate that all objectives are currently at capability level 1, highlighting the early stages of implementation and the need for substantial improvement. The study concludes that addressing these gaps through the COBIT 2019 framework will significantly enhance the company’s IT governance, leading to improved operational efficiency, stronger risk management, and better alignment with strategic business goals. These findings provide actionable insights for advancing IT governance maturity, contributing to the long-term success and competitiveness of the company in the logistics sector.
Downloads
References
I. Farida and D. Setiawan, “Business Strategies and Competitive Advantage: The Role of Performance and Innovation,” J. Open Innov. Technol. Mark. Complex., vol. 8, no. 3, Art. no. 3, Sep. 2022.
A. T. Rosário and J. C. Dias, “How has data-driven marketing evolved: Challenges and opportunities with emerging technologies,” Int. J. Inf. Manag. Data Insights, vol. 3, no. 2, p. 100203, Nov. 2023.
F. Pascucci, E. Savelli, and G. Gistri, “How digital technologies reshape marketing: evidence from a qualitative investigation,” Ital. J. Mark., vol. 2023, no. 1, pp. 27–58, Mar. 2023.
S. Kraus, S. Durst, J. J. Ferreira, P. Veiga, N. Kailer, and A. Weinmann, “Digital transformation in business and management research: An overview of the current status quo,” Int. J. Inf. Manag., vol. 63, p. 102466, Apr. 2022.
H. M. Naguib, H. M. Kassem, and A. E.-H. M. A. Naem, “The impact of IT governance and data governance on financial and non-financial performance,” Future Bus. J., vol. 10, no. 1, p. 15, Jan. 2024.
M. Elazhary, A. Popovič, P. Henrique de Souza Bermejo, and T. Oliveira, “How Information Technology Governance Influences Organizational Agility: The Role of Market Turbulence,” Inf. Syst. Manag., vol. 40, no. 2, pp. 148–168, Apr. 2023.
B. A. Bahari, F. Adnan, and B. Prasetyo, “Audit Capability Level Using COBIT 5.0: A University Customer Care Center at University of Jember,” in 2019 International Conference on Computer Science, Information Technology, and Electrical Engineering (ICOMITEE), Oct. 2019, pp. 5–12..
D. Putra and M. I. Fianty, “Capability Level Measurement of Information Systems Using COBIT 5 Framework in Garment Company,” J. Inf. Syst. Inform., vol. 5, no. 1, Art. no. 1, Mar. 2023.
R. F. Mubarak and M. I. Fianty, “Leveraging COBIT 2019 to Implement IT Governance in Mineral Mining Company,” J. Inf. Syst. Inform., vol. 5, no. 3, Art. no. 3, Sep. 2023.
E. B. Naibaho and A. D. Cahyono, “Information Technology Governance Analysis using COBIT 2019 Framework in Salatiga City Community and Civil Services,” J. Inf. Syst. Inform., vol. 6, no. 2, Art. no. 2, Jun. 2024.
M. V. Lim and M. I. Fianty, “Enhancing Information Technology Governance: A Comprehensive Evaluation Of The 2019 COBIT Framework In The Retail Industry,” Int. J. Sci. Technol. Manag., vol. 4, no. 5, Art. no. 5, Sep. 2023.
J. David Patón-Romero, M. T. Baldassarre, M. Rodríguez, and M. Piattini, “Maturity model based on CMMI for governance and management of Green IT,” IET Softw., vol. 13, no. 6, pp. 555–563, 2019.
S. Bayona-Oré, J. Chamilco, and D. Perez, “Software Process Improvement: Requirements Management, Verification and Validation,” in 2019 14th Iberian Conference on Information Systems and Technologies (CISTI), Jun. 2019, pp. 1–5.
O. H. Plant, J. van Hillegersberg, and A. Aldea, “Rethinking IT governance: Designing a framework for mitigating risk and fostering internal control in a DevOps environment,” Int. J. Account. Inf. Syst., vol. 45, p. 100560, Jun. 2022.
W. Li and J. Liu, “Internal Control Accounting Information System based on COBIT and COSO Reports,” in 2022 Fourth International Conference on Emerging Research in Electronics, Computer Science and Technology (ICERECT), Dec. 2022, pp. 1–5.
Y. Aprilinda, A. K. Puspa, and F. N. Affandy, “The Use of ISO and COBIT for IT Governance Audit,” J. Phys. Conf. Ser., vol. 1381, no. 1, p. 012028, Nov. 2019.
Y. Wautelet, “A model-driven IT governance process based on the strategic impact evaluation of services,” J. Syst. Softw., vol. 149, pp. 462–475, Mar. 2019.
J. Lesnussa and M. N. N. Sitokdana, “Leveraging TOGAF ADM for Enterprise Architecture in West Seram Environment Agency,” J. Inf. Syst. Inform., vol. 5, no. 4, Art. no. 4, Dec. 2023.
G. Fuentes-Quijada, F. Ruiz-González, and A. Caro, “Enterprise Architecture and IT Governance to Support the BizDevOps Approach: a Systematic Mapping Study,” Inf. Syst. Front., Feb. 2024.
G. M. W. Tangka and E. Lompoliu, “Information Technology Governance Using the COBIT 2019 Framework at PT. Pelindo TPK Bitung,” CogITo Smart J., vol. 9, no. 2, Art. no. 2, Dec. 2023.
A. K. Rama, Suharjito, and E. Gunawan, “Evaluation of IT Governance Implementation Using COBIT 5 Framework and ISO 38500 at Telecommunication Industries,” in 2020 International Conference on Information Management and Technology (ICIMTech), Aug. 2020, pp. 453–457.
M. Yasin, A. Akhmad Arman, I. J. M. Edward, and W. Shalannanda, “Designing Information Security Governance Recommendations and Roadmap Using COBIT 2019 Framework and ISO 27001:2013 (Case Study Ditreskrimsus Polda XYZ),” in 2020 14th International Conference on Telecommunication Systems, Services, and Applications (TSSA, Nov. 2020, pp. 1–5.
J. Beato and M. I. Fianty, “COBIT 2019 Framework: Evaluating Knowledge and Quality Management Capabilities in a Printing Machine Distributor,” J. Inf. Syst. Inform., vol. 6, no. 1, Art. no. 1, Mar. 2024.
M. Aghabegloo, K. Rezaie, S. A. Torabi, and M. Yazdani, “Integrating business impact analysis and risk assessment for physical asset criticality analysis: A framework for sustainable operations in process industries,” Expert Syst. Appl., vol. 241, p. 122737, May 2024.
M. Mubarkoot, J. Altmann, M. Rasti-Barzoki, B. Egger, and H. Lee, “Software Compliance Requirements, Factors, and Policies: A Systematic Literature Review,” Comput. Secur., vol. 124, p. 102985, Jan. 2023.


Copyright (c) 2024 Journal of Information Systems and Informatics

This work is licensed under a Creative Commons Attribution 4.0 International License.
- I certify that I have read, understand and agreed to the Journal of Information Systems and Informatics (Journal-ISI) submission guidelines, policies and submission declaration. Submission already using the provided template.
- I certify that all authors have approved the publication of this and there is no conflict of interest.
- I confirm that the manuscript is the authors' original work and the manuscript has not received prior publication and is not under consideration for publication elsewhere and has not been previously published.
- I confirm that all authors listed on the title page have contributed significantly to the work, have read the manuscript, attest to the validity and legitimacy of the data and its interpretation, and agree to its submission.
- I confirm that the paper now submitted is not copied or plagiarized version of some other published work.
- I declare that I shall not submit the paper for publication in any other Journal or Magazine till the decision is made by journal editors.
- If the paper is finally accepted by the journal for publication, I confirm that I will either publish the paper immediately or withdraw it according to withdrawal policies
- I Agree that the paper published by this journal, I transfer copyright or assign exclusive rights to the publisher (including commercial rights)