Transformasi Tata Kelola Dan Manajemen TI Untuk Meningkatkan Keamanan Informasi Menggunakan Framework COBIT 2019

Ibrahim, Achmad Najib (2026) Transformasi Tata Kelola Dan Manajemen TI Untuk Meningkatkan Keamanan Informasi Menggunakan Framework COBIT 2019. Masters thesis, Institut Teknologi Sepuluh Nopember.

Text 6032241086-Master_Thesis.pdf - Accepted Version Restricted to Repository staff only Download (5MB) | Request a copy

Abstract

Pesatnya pemanfaatan teknologi informasi dalam operasional perusahaan meningkatkan kompleksitas risiko keamanan informasi akibat meningkatnya ancaman serangan siber dan tuntutan kepatuhan regulasi. Dengan kondisi tersebut, PT Kawasan Industri Terpadu Batang (KITB) sebagai pengelola kawasan industri memerlukan tata kelola keamanan informasi yang terstruktur dan terukur. Penelitian ini bertujuan menganalisis kondisi eksisting tata kelola keamanan informasi, mengidentifikasi celah, mengembangkan model tata kelola keamanan informasi, serta menyusun rekomendasi strategis untuk peningkatan tata kelola keamanan informasi. Penelitian ini menggunakan framework COBIT 2019 dengan metode pengumpulan data berupa wawancara, kuesioner, dan studi dokumen. Berdasarkan hasil penilaian design factor dan analisis kebutuhan organisasi, ditetapkan 4 objektif proses yang dikaji lebih lanjut, yaitu EDM03, APO12, APO13, dan DSS05. Penilaian tingkat kapabilitas dilakukan dengan membandingkan kondisi aktual (as-is) dan target tingkat kapabilitas (to-be). Hasil penelitian menunjukkan bahwa tingkat kapabilitas tata kelola dan manajemen TI pada 4 objektif proses berada pada Level 3 dengan peringkat Largely Achieved, dengan target Level 4 (Fully Achieved) sehingga terdapat kesenjangan satu tingkat. Berdasarkan analisis kesenjangan, penelitian ini menghasilkan 58 rekomendasi perbaikan yang difokuskan pada penguatan tata kelola, pengelolaan risiko, dan keamanan informasi. Hasil penelitian ini diharapkan menjadi dasar peningkatan kapabilitas tata kelola keamanan informasi di PT KITB serta referensi bagi penelitian selanjutnya di bidang tata kelola dan manajemen teknologi informasi.
======================================================================================================================================
The rapid utilization of information technology in company operations increases the complexity of information security risks due to the increasing threat of cyber attacks and regulatory compliance demands. Under these conditions, PT Kawasan Industri Terpadu Batang (KITB) as an industrial estate manager requires structured and measurable information security governance. This study aims to analyze the existing conditions of information security governance, identify gaps, develop an information security governance model, and formulate strategic recommendations for improving information security governance. This study uses the COBIT 2019 framework with data collection methods in the form of interviews, questionnaires, and document studies. Based on the results of the design factor assessment and organizational needs analysis, four process objectives were identified for further study, namely EDM03, APO12, APO13, and DSS05. The capability level assessment was conducted by comparing the actual (as-is) condition and the target capability level (to-be). The results of the study show that the level of IT governance and management capabilities in the four process objectives is at Level 3 with a rating of Largely Achieved, with a target of Level 4 (Fully Achieved), resulting in a one-level gap. Based on the gap analysis, this study produced 58 recommendations for improvement focused on strengthening governance, risk management, and information security. The results of this study are expected to serve as a basis for improving information security governance capabilities at PT KITB and as a reference for further research in the field of information technology governance and management.

Item Type:	Thesis (Masters)
Uncontrolled Keywords:	Keamanan Informasi, Risiko Siber, Tata Kelola TI, Transformasi Digital, COBIT 2019, Information Security, Cyber Risk, IT Governance, Digital Transformation
Subjects:	T Technology > T Technology (General) > T58.5 Information technology. IT--Auditing
Divisions:	61101-Magister Management Technology
Depositing User:	Achmad Najib Ibrahim
Date Deposited:	28 Jan 2026 04:34
Last Modified:	28 Jan 2026 04:34
URI:	http://repository.its.ac.id/id/eprint/130642

Actions (login required)

View Item