Sidik, Kertapati (2022) Analisis Manajemen Risiko Teknologi Informasi Menggunakan COBIT Framework Pada Sistem E-Procurement (Studi Kasus: PT. XYZ). Masters thesis, Institut Teknologi Sepuluh Nopember.
![[thumbnail of 6032201069-Master_Thesis.pdf]](http://repository.its.ac.id/style/images/fileicons/text.png) |
Text
6032201069-Master_Thesis.pdf - Accepted Version Restricted to Repository staff only until 1 October 2024. Download (3MB) | Request a copy |
Abstract
PT XYZ sebagai perusahaan yang bergerak di bidang pembangkitan tenaga listrik, tujuan utama dari operasi bisnisnya adalah menyediakan pasokan listrik yang berkelanjutan secara efisien. Supplier telah menjadi mitra bisnis strategis yang berperan penting dalam menjamin ketersediaan pasokan barang dan jasa yang dibutuhkan.
E-procurement memungkinkan fleksibilitas kontrol terhadap semua aspek dalam proses pembelian, dan menawarkan potensi keuntungan seperti peningkatan daya saing, pengurangan biaya pengadaan, peningkatan kepuasan pengguna dan menyediakan hubungan jangka panjang dengan pemasok potensial.
Namun demikian, terdapat beberapa faktor risiko yang berasal dari internal dan eksternal yang mempengaruhi penerapan sistem E-Procurement. Penerapan E-Procurement membutuhkan perubahan substansial dalam bisnis proses internal organisasi. Faktor eksternal yang mempengaruhi risiko bisnis adalah kemungkinan peningkatan serangan siber terhadap sistem E-Procurement.
Berdasarkan kondisi tersebut, manajemen risiko TI memegang peranan penting untuk meminimalkan potensi kerugian yang dapat terjadi. COBIT 2019 membantu perusahaan untuk menciptakan nilai optimal dari TI dengan menjaga keseimbangan antara mewujudkan manfaat, mengoptimalkan tingkat risiko, dan penggunaan sumber daya.
Dalam penelitian ini penulis melakukan analisis manajemen risiko pada sistem E-Procurement berdasarkan kerangka kerja COBIT 2019 pada domain yang berkaitan dengan manajemen risiko yaitu domain EDM03 (Ensured Risk Optimation) dan APO 12 (Managed Risk). Berdasarkan kesenjangan antara tingkat kapabilitas aktual dengan dan tingkat kapabilitas yang diharapan, disusun rekomendasi mitigasi risiko untuk meningkatkan kapabilitas sesuai harapan pemangku kepentingan.
================================================================================================
PT XYZ as a company engaged in the field of electricity generation, the
main objective of its business operations is to provide a sustainable electricity
supply efficiently. Suppliers has become strategic business partners who play an
important role in ensuring the availability of supplies of goods and services.
E-Procurement systems allow greater flexibility to control over every aspect of the
purchasing process, and offers potential advantages such as increased
competitiveness, reduced procurement costs, improved user satisfaction and
provided long-term relationships with potential suppliers.
However, there are several internal and external risk factors influence on
the implementation of E-Procurement system. E-Procurement implementation is
requiring substantial changes on the organization’s internal business processes. The
external factors that affect a business are the likelihood of cyber-attacks against E-
Procurement systems has increased.
Based on these conditions, IT risk management plays a crucial role to minimize
potential losses that may occur. COBIT 2019 helps Company to create an optimal
IT value by maintaining a balance between realizing benefits, optimizing risk
levels, and utilizing resource.
In this research the author conducted a risk management analysis in the E-
Procurement system based on COBIT 2019 framework of risk management
domains, EDM03 (Ensured Risk Optimation) and APO 12 (Managed Risk). The
gap between actual and expected capability level is used to formulate risks
mitigation recommendations to improve the capability level in order to meet
stakeholder expectations.
| Item Type: | Thesis (Masters) |
|---|---|
| Uncontrolled Keywords: | Electronic Procurement, COBIT 2019, Manajemen Risiko TI, Level Kapabilitas TI, Penilaian Risiko, Mitigasi Risiko. |
| Subjects: | T Technology > T Technology (General) > T58.6 Management information systems |
| Divisions: | Interdisciplinary School of Management and Technology (SIMT) > 61101-Master of Technology Management (MMT) |
| Depositing User: | Sidik Kertapati |
| Date Deposited: | 30 Jun 2022 04:32 |
| Last Modified: | 02 Nov 2022 03:32 |
| URI: | http://repository.its.ac.id/id/eprint/94942 |
Actions (login required)
 |
View Item |