Sidik, Kertapati (2022) Analisis Manajemen Risiko Teknologi Informasi Menggunakan COBIT Framework Pada Sistem E-Procurement (Studi Kasus: PT. XYZ). Masters thesis, Institut Teknologi Sepuluh Nopember.
Preview |
Text
6032201069-Master_Thesis.pdf - Accepted Version Download (3MB) | Preview |
Abstract
PT XYZ sebagai perusahaan yang bergerak di bidang pembangkitan tenaga listrik, tujuan utama dari operasi bisnisnya adalah menyediakan pasokan listrik yang berkelanjutan secara efisien. Supplier telah menjadi mitra bisnis strategis yang berperan penting dalam menjamin ketersediaan pasokan barang dan jasa yang dibutuhkan. E-procurement memungkinkan fleksibilitas kontrol terhadap semua aspek dalam proses pembelian, dan menawarkan potensi keuntungan seperti peningkatan daya saing, pengurangan biaya pengadaan, peningkatan kepuasan pengguna dan menyediakan hubungan jangka panjang dengan pemasok potensial. Namun demikian, terdapat beberapa faktor risiko yang berasal dari internal dan eksternal yang mempengaruhi penerapan sistem E-Procurement. Penerapan E-Procurement membutuhkan perubahan substansial dalam bisnis proses internal organisasi. Faktor eksternal yang mempengaruhi risiko bisnis adalah kemungkinan peningkatan serangan siber terhadap sistem E-Procurement.
Berdasarkan kondisi tersebut, manajemen risiko TI memegang peranan penting untuk meminimalkan potensi kerugian yang dapat terjadi. COBIT 2019 membantu perusahaan untuk menciptakan nilai optimal dari TI dengan menjaga keseimbangan antara mewujudkan manfaat, mengoptimalkan tingkat risiko, dan penggunaan sumber daya. Dalam penelitian ini penulis melakukan analisis manajemen risiko pada sistem E-Procurement berdasarkan kerangka kerja COBIT 2019 pada domain yang berkaitan dengan manajemen risiko yaitu domain EDM03 (Ensured Risk Optimation) dan APO 12 (Managed Risk). Berdasarkan kesenjangan antara tingkat kapabilitas aktual dengan dan tingkat kapabilitas yang diharapan, disusun rekomendasi mitigasi risiko untuk meningkatkan kapabilitas sesuai harapan pemangku kepentingan.
==================================================================================================================================
PT XYZ as a company engaged in the field of electricity generation, the main objective of its business operations is to provide a sustainable electricity supply efficiently. Suppliers has become strategic business partners who play an important role in ensuring the availability of supplies of goods and services. E-Procurement systems allow greater flexibility to control over every aspect of the purchasing process, and offers potential advantages such as increased competitiveness, reduced procurement costs, improved user satisfaction and provided long-term relationships with potential suppliers.
However, there are several internal and external risk factors influence on the implementation of E-Procurement system. E-Procurement implementation is requiring substantial changes on the organization’s internal business processes. The external factors that affect a business are the likelihood of cyber-attacks against E-Procurement systems has increased.
Based on these conditions, IT risk management plays a crucial role to minimize potential losses that may occur. COBIT 2019 helps Company to create an optimal IT value by maintaining a balance between realizing benefits, optimizing risk levels, and utilizing resource.
In this research the author conducted a risk management analysis in the E-Procurement system based on COBIT 2019 framework of risk management domains, EDM03 (Ensured Risk Optimation) and APO 12 (Managed Risk). The gap between actual and expected capability level is used to formulate risks mitigation recommendations to improve the capability level in order to meet stakeholder expectations.
| Item Type: | Thesis (Masters) |
|---|---|
| Uncontrolled Keywords: | Electronic Procurement, COBIT 2019, Manajemen Risiko TI, Level Kapabilitas TI, Penilaian Risiko, Mitigasi Risiko. |
| Subjects: | T Technology > T Technology (General) > T58.6 Management information systems |
| Divisions: | Interdisciplinary School of Management and Technology (SIMT) > 61101-Master of Technology Management (MMT) |
| Depositing User: | Sidik Kertapati |
| Date Deposited: | 30 Jun 2022 04:32 |
| Last Modified: | 17 Sep 2024 05:02 |
| URI: | http://repository.its.ac.id/id/eprint/94942 |
Actions (login required)
 |
View Item |