Abstrak

In line with the growth of information technology (IT) influence on organizations or companies in running their businesses, the role of IT not only act as a supporting tool but it could also be a key element or a driver for the organization to achieve its business goals. Particularly, the technology company, that would be the locus of this research where organizations ought not to neglect IT contribution due to their heavy and complete reliance on IT to keep the business running.To optimize the use of IT in the organization, IT Governance implementation is essentially needed. It would align with one of the programs performed by Governance, Risk and Compliance (GRC) team in the organization. The implementation of IT Governance is intended to optimize the value of IT used to accomplish the business objectives of the organization, control the potential risk that may arise from IT usage and help the organization in complying with related regulation and compliance standard. The output of this research is to create a roadmap of IT Governance that is referred to Control Objectives for Information and Related Technology (COBIT) framework. However, the roadmap is designed to be able to implement any IT governance framework or standard, not limited to the COBIT framework.

 

Keywords:  IT Governance, roadmap, risk, compliance, technology company.

 

Abstrak

Sejalan dengan meningkatnya peranan teknologi informasi bagi sebuah organisasi atau perusahaan dalam menjalankan bisnisnya, hal ini membuat teknologi informasi tidak hanya berperan sebagai alat pendukung melainkan dapat menjadi elemen utama atau pendorong bagi organisasi untuk mencapai tujuan bisnisnya. Terlebih bagi perusahaan teknologi yang menjadi lokus penelitian ini, ia tidak dapat mengabaikan dan melepaskan penggunaan teknologi informasi, karena organisasi sudah sepenuhnya bergantung pada teknologi informasi supaya bisnisnya tetap bisa bertahan.Untuk mengoptimalkan penggunaan  teknologi informasi di organisasi, perlu diimplementasikan IT Governance. Hal ini selaras dengan salah satu program yang dijalankan oleh tim Governance, Risk dan Compliance (GRC) di organisasi lokus. Implementasi IT Governance ini ditujukan untuk mengoptimalkan nilai penggunaan teknologi informasi terhadap tujuan bisnis organisasi,  mengendalikan resiko yang mungkin timbul dari penggunaan teknologi informasi serta mempermudah organisasi dalam mematuhi regulasi dan compliance standard yang terkait. Output dari penelitian ini adalah berupa roadmap implementasi IT Governance dengan merujuk pada framework COBIT (Control Objectives for Information and Related Technology). Namun demikian, roadmap yang dibuat dirancang agar dapat digunakan untuk mengimplementasikan standar atau framework IT governance apapun, tidak hanya terbatas pada COBIT.

 

Kata kunci:  IT Governance, roadmap, risiko, kepatuhan, perusahaan teknologi.

Almeida, R., Lourinho, R., Da Silva, M. M., & Pereira, R. (2018). A model for assessing COBIT 5 and ISO 27001 simultaneously. Proceeding - 2018 20th IEEE International Conference on Business Informatics, CBI 2018, 1(July), 60–69. https://doi.org/10.1109/CBI.2018.00016

Chen, Z., Wang, T. (2008). An IT Governance Framework of ERP System Implementation for Chinese Enterprises. Proceedings of the 7th World Congress on Intelligent Control and Automation.

ISACA. (2005). Control Objectives for Information and Related Technology.

ISACA. (2012). COBIT 5 Implementation.

Silva, D., Mira da Silva, M., & Pereira, R. (2018). Baseline Mechanisms for Enterprise Governance of IT in SMEs. In 2018 IEEE 20th Conference on Business Informatics (CBI) (pp. 32–41). IEEE. https://doi.org/10.1109/CBI.2018.10044

Webb, P., Pollard, C., & Ridley, G. (2006). Attempting to Define IT Governance: Wisdom or Folly?

Weill, P., & Ross, J. W. (2004). IT governance : how top performers manage IT decision rights for superior results. Harvard Business School Press.

Youssfi, K., Boutahar, J., & Elghazi, S. (2014). IT Governance implementation: A tool design of COBIT 5 roadmap. Undefined.

Yudatama, U., Nazief, B.A., & Hidayanto, A. N. (2017). Benefits and barriers as a critical success factor in the implementation of IT governance: Literature review. Proceeding - 2017 International Conference on ICT For Smart Society (ICISS).