Evaluation of Academic Information System Security (AIS Portal) Using the COBIT 5 Framework on APO12 and DSS05 Domains

Authors

  • Masdaliva Ribbon Universitas Islam Negeri Sumatera Utara
  • Rifki Ade Ananda Universitas Islam Negeri Sumatera Utara
  • Febry Pratama Universitas Islam Negeri Sumatera Utara
  • Winditha Putri Chayani Universitas Islam Negeri Sumatera Utara
  • Martiza Amatul Ihsan Universitas Islam Negeri Sumatera Utara

Abstract

The research aims to evaluate the security of the Academic Information System (Portal SIA) at the State Islamic University of North Sumatra (UINSU) using the COBIT 5 framework, specifically the APO12 (Manage Risk)   and DSS05 (Manage Security Service) sub-domains. The Portal SIA is a critical system used to manage academic data for students, lecturers, and academic staff at UINSU. The main problem investigated is the evaluation of the security level of the academic information system at UINSU, considering the high dependence on the Portal SIA, making system security a crucial issue. The solution offered in this research is to assess and analyze the capability level of the academic information system security based on the sub-domains of the COBIT 5 framework. The research findings indicate that the capability level of the academic information system security at UINSU in the APO12 sub-domain is at level 3 (Established Process), and in the DSS05 sub-domain, it is at level 4 (Predictable Process). This means that the security processes of the academic information system have been defined and standardized, and they are already being operated according to their functions and duties. However, there are still some areas that need to be improved to achieve a higher maturity level. Improvement recommendations are formulated to enhance the maturity level of the academic information system security at UINSU.

Downloads

Download data is not yet available.

References

A. N. Thamrin, Kusrini, and Rismayani, "Cobit 5 Framework for Information Technology Governance Audit (Case Study: Diskominfo Palopo City) Cobit 5 Framework for Information Technology Governance Audit (Case Study: Diskominfo Palopo City)," J. Pekommas, vol. 6, no. 2, pp. 9–15, 2021, doi: 10.30818/jpkm.2021.

Bela Damanik, R. A. Putri, and A. M. Harahap, "Implementation of the Webqual 4.0 Method in Evaluating the UIN North Sumatra Academic Information System," JTIK (Journal Tech. Inform. Kaputama), vol. 8, no. 1, pp. 15–23, 2024, doi: 10.59697/jtik.v8i1.489.

U. K. Husnia and A. Rasyid, "Effectiveness of the website portalsia.uinsu.ac.id in serving information needs for students," JRTI (Indonesian Action Research Journal., vol. 8, no. 1, p. 172, 2023, doi: 10.29210/30033132000.

Isaac, COBIT 5: A Business Framework for the Governance and Management of Enterprise IT. Rolling Meadows. IL: ISACA, 2012.

N. Romadhona, "Academic Information System Security Audit Using COBIT 5 at Sultan Ageng Tirtayasa University," Sultan Ageng Tirtayasa University, 2024.

N. Zainuddin and N. Ningsih, "Evaluation of Academic Information System Security (Siakad) Using the Cobit 5 Framework at Sembilanbelas November University Kolaka," vol. 1, no. 1, pp. 1–5, 2023.

M. Miftahurrizqi, I. S. Windiarti, and A. Prabowo, "System Security Analysis in Academic Information Systems Using the Cobit 5 Framework in the Dss05 Sub Domain," J. Comput Sci. in Technol. Inf., vol. 3, no. 2, pp. 75–80, 2021, doi: 10.33084/jsakti.v3i2.2293.

R. Solms and J. van Niekerk, “From information security to cyber security,” Comput. Secur., vol. 38, pp. 97–102, 2013.

R. Sri Rezeki Asti Karini and et al, Management Audit Textbook, I. Jambi: PT. Sonpedia Publishing Indonesia, 2024.

A. Efendi, "Information Technology-Based Performance Audit Mechanism During the Covid-19 Pandemic and Its Influence on the Education and Training Process for the Functional Auditor (JFA) Position of Government Internal Supervisory Apparatus," Pros. Semin. Nas. Postgraduate j. Univ. Jakarta State, vol. 01, no. 01, pp. 53–62, 2020.

H. A. Zein Ghozali, Rita Martini, Mohammad Aryo Arifin, Masnoni Masnoni, Sri Sutandi, Muhammad Rinaldi, Saktisyahputra Saktisyahputra, Textbook of Accounting Research Methodology. Jambi: PT. Sonpedia Publishing Indonesia, 2024.

M. Syarif, "Protecting Academic Integrity by Developing an Information System for Complaints of Violations in Higher Education Institutions," J. RESTICOM Res. Take. Inform. and Comput., vol. 5, no. 2, pp. 137–147, 2023, doi: 10.52005/restikom.v5i2.148.

M. M. Ibrahim, A. Widjanarto, and M. T. Kurniawan, "Implementation and Analysis of System Profile on Fortigate Firewall Virtualization Based on Computing Resource Metrics," e-Proceeding Eng., vol. 10, no. 2, pp. 1505–1511, 2023, [Online]. Available: https://openlibrarypublications.telkomuniversity.ac.id/index.php/engineering/article/view/19925

S. A. Angioni et al., "Comparative Study of Cobit 5 with Cobit 2019 as an Information Technology Governance Audit Framework," J. Ilm. Indonesians, flight. 6, no. 1, 2021, [Online]. Available: http://dspace.ucuenca.edu.ec/bitstream/123456789/35612/1/Trabajo de Titulation.pdf%0Ahttps://educacion.gob.ec/wp-content/uploads/downloads/2019/01/METODOLOGIC-GUIDE A-EF.pdf%0Ahttp://dx.doi.org/10.1016/j.fishres.2013.04.005%0Ahttps://doi.org/10.1038/s41598-020-

R. Sinaga, S. Samsinar, and R. Afriany, “Information System Security Audit Based on the DSS05 Framework Cobit 5 at Higher Education XX,” Berk. Science, vol. 9, no. 1, p. 35, 2021, doi: 10.19184/bst.v9i1.20361.

Isaac, Process Assessment Model (PAM): Using COBIT ® 5. 2013.

N. L. M. U. Tiasmi, I. M. Candiasa, and G. Indrawan, "Analysis of the Capability Level of Badung Regency Online Licensing Services Using the COBIT 5 Framework," J. Exploratory Inform., vol. 10, no. 2, pp. 167–175, 2021, doi: 10.30864/explora.v10i2.501.

N. M. Rai Masita Dewi, I. M. Candiasa, and K. Yota Ernanda Aryanto, "Measuring the Level of SION Governance Capability using the COBIT 5 Framework at the STIKOM Bali Institute of Technology and Business," J. Last. then Inform., pp. 144–154, 2021, doi: 10.30864/jsi.v15i2.365.

A. Ramdani, Applied Informatics Volume 2. Pangandaran: Library Intake, 2024.

Iron Networks, “Net-Gateway mIAG,” ironnetworks. https://www.ironnetworks.com/products/nGatewaymIAG

Downloads

Published

2023-06-30

Issue

Vol. 1 No. 1 (2023): June 2023

Section

Articles

License

Copyright (c) 2023 Masdaliva Ribbon, Rifki Ade Ananda, Febry Pratama, Winditha Putri Chayani, Martiza Amatul Ihsan

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.