DOI: https://doi.org/10.21456/vol15iss1pp142-151

Komparasi COBIT 2019 dan ISO 27001 Terhadap Audit ISO 21001 untuk Akurasi Rekomendasi Audit SI/TI Pendidikan

*Retno Setya Anggraeni  -  Magister Sistem Informasi Universitas DIponegoro, Indonesia
Adian Fatchur Rochim  -  Fakultas Teknik, Departemen Teknik Komputer, Universitas Diponegoro, Indonesia
Aris Puji Widodo  -  Fakultas Sains dan Matematika, Departemen Teknologi Informasi, Universitas Diponegoro, Indonesia
Open Access Copyright (c) 2025 Jurnal Sistem Informasi Bisnis

Citation Format:
Abstract

ISO 21001 refers to the standardization of educational organization management and is an international standard, making it mandatory to be implemented in higher education institutions. Along with this, the rapid development of Information Systems and Information Technology (IS/IT) today has changed the paradigm of education and provided a new perspective that IS/IT support not only aids the learning process but also various other areas in higher education. Standardization focusing on this field includes IT Governance (ITG) COBIT 2019 and ISO 27001. Therefore, the researcher conducted a study to analyze which tools are most correlated with the implementation of ISO 21001, so that the findings of this research can provide recommendations that can serve as a basis for policy in selecting the appropriate standardization tools. The research method used is ex post facto. The analysis was conducted using SmartPLS. The researcher designed a questionnaire instrument to be distributed to the population of the Department of Computer Engineering and Informatics Engineering, UNDIP Semarang. The results of the questionnaire will then be tested for validity and reliability, followed by a correlation test while considering the T-Value. Based on the analysis results, it was concluded that both COBIT 2019 and ISO 27001 have an influence on ISO 21001. The influence of COBIT 2019 on ISO 21001 is significant, with a path coefficient and p-value of 0.000, while the influence of ISO 27001 shows a p-value of only 0.091.

Fulltext View|Download
Keywords: COBIT 2019; ISO 27001; ISO 21001; SmartPLS; Ex Post Facto

Article Metrics:

Article Info
Section: Review Article
Language : EN
Recent articles
The Impact of The Utilization of Electronic Payment Moderated by Financial Technology Innovation on Financial Technology Payment in Indonesia Implementasi E-Commerce dengan Sistem Informasi Rekomendasi menggunakan Metode Collaborative Filtering untuk Pengembangan Penjualan pada UMKM Penentuan Prioritas Persediaan Barang dengan Menggunakan Hybrid Method Benefits and Challenges of ERP Implementation in Higher Education Institutions: A Systematic Literature Review Komparasi COBIT 2019 dan ISO 27001 Terhadap Audit ISO 21001 untuk Akurasi Rekomendasi Audit SI/TI Pendidikan More recent articles
Most cited articles
Sistem Panel Kinerja Untuk Program Studi Sarjana Berbasis BAN PT Pengukuran Kesadaran Keamanan Informasi Dan Privasi Pada Pengguna Smartphone Android Di Indonesia Metode Quality Function Deployment Dan Fuzzy Topsis Untuk Sistem Pendukung Keputusan Pemilihan Perusahaan Penyedia Jasa Internet Penggunaan Jaringan Syaraf Tiruan Backpropagation Untuk Seleksi Penerimaan Mahasiswa Baru Pada Jurusan Teknik Komputer Di Politeknik Negeri Sriwijaya Sistem Informasi Perpustakaan Berbasis Web Application More cited articles
  1. Abuazza, O., Labib, A., & Savage, B., 2019. Development of an auditing framework by integrating ISO 9001 principles within auditing. International Journal of Quality & Reliability Management, 37, 328-353. https://doi.org/10.1108/ijqrm-02-2019-0048
  2. Adiktia, A., & Cholil, W., 2022. Penerapan Framework ITILV3 Dalam Tata Kelola Infrastruktur Teknologi Informasi Di SMK Banyuasin. Jurnal Sisfokom (Sistem Informasi dan Komputer, 11(1, 19-24. https://doi.org/10.32736/sisfokom.v11i1.1220
  3. Ajismanto, F., & Surahmat, S., 2021. Information technology governance analysis of stmik palcomtech in the new normal era using cobit 2019 method. Journal of Computer Networks, Architecture and High Performances Computing, 3(2, 263-272. http://dx.doi.org/10.47709/cnahpc.v3i2.1097
  4. Alexei, L. A., 2021. Ensuring information security in public organizations in the Republic of Moldova through the ISO 27001 standard. Journal of Social Sciences, 1(4, 84-94. http://dx.doi.org/10.52326/jss.utm.2021.4(1.11
  5. Algiffary, A., dkk., 2023. Audit Keamanan Sistem Informasi Manajemen Rumah Sakit Dengan Framework COBIT 2019 Pada RSUD Palembang BARI. Journal of Applied Computer Science and Technology, 4(1, 19-26. https://doi.org/10.52158/jacost.v4i1.505
  6. Amali, L. N., dkk (2020. The measurement of maturity level of information technology service based on COBIT 5 framework. Telkomnika (Telecommunication Computing Electronics and Control, 18(1, 133-139. http://doi.org/10.12928/telkomnika.v18i1.10582
  7. Amirudin, M dkk (2023. Audit Tata Kelola Teknologi Informasi Menggunakan Framework Cobit 5 Domain Evaluate, Direct, And Monitor (Edm Pada Kantor Desa Kebagusan. Telefortech: Journal of Telematics and Information Technology, 3(2, 38- 44. https://doi.org/10.33365/tft.v3i2.2512
  8. Anam, M. K., dkk (2023. Application Of the Cobit 2019 Framework to Analyse the Security Of Academic Information Systems. Decode: Jurnal Pendidikan Teknologi Informasi, 3(2, 296-309. https://doi.org/10.51454/decode.v3i2.192
  9. Asy’ari, M. A., & Rouf, A., 2020. Audit Teknologi Informasi Review Artikel Ilmiah Metode ISO 38500. http://dx.doi.org/10.31219/osf.io/my6nt
  10. Culot, G., Nassimbeni, G., Podrecca, M., & Sartor, M., 2021. The ISO/IEC 27001 information security management standard: literature review and theory-based research agenda. The TQM Journal. https://doi.org/10.1108/TQM-09-2020-0202
  11. Darmawan, D., & Wijaya, A. F., 2022. Analisis dan Desain Tata Kelola Teknologi Informasi Menggunakan Framework COBIT 2019 pada PT. XYZ. Journal of Computer and Information Systems Ampera, 3(1, 1-17. https://doi.org/10.51519/journalcisa.v3i1.139
  12. Duryadi, M., & Tangerang, S., 2024. Pengolahan, Analisis dan Pengujian Hipotesis Penelitian Kuantitatif dengan Perangkat Lunak Smartpls3. Jurnal Teknik Elektro dan Informatika. https://doi.org/10.55606/jeei.v4i1.2845
  13. Ermana, F dkk (2012. Audit Keamanan Sistem Informasi Berdasarkan Standar Iso 27001 Pada PT. BPR JATIM (Doctoral dissertation, Universitas Dinamika
  14. Fathurohman, A., & Witjaksono, R. W., 2020. Analysis and Design of Information Security Management System Based on ISO 27001: 2013 Using ANNEX Control (Case Study: District of Government of Bandung City. Bulletin of Computer Science and Electrical Engineering, 1(1, 1-11. https://doi.org/10.25008/bcsee.v1i1.2
  15. Gërvalla, M., Preniqi, N., & Kopacek, P., 2018. IT Infrastructure Library (ITIL framework approach to IT Governance. IFAC-PapersOnLine, 51, 181-185. https://doi.org/10.1016/J.IFACOL.2018.11.283
  16. Gilbert, D., 2020. ISO Alongside, Instead, or Inside? The potential of ISO 21001:2018 to change and challenge higher education accreditation. International journal of business, 45-52. https://doi.org/10.33642/ijbass.v6n10p5
  17. Haay, N. H., & Sitokdana, M. N., 2022. Analysis of Information Technology Governance on Communication and Information Service of Papua Province Using COBIT 2019. Journal of Information Systems and Informatics, 4(2, 349-360. https://doi.org/10.51519/journalisi.v4i2.260
  18. Hadad, R., & Maulana, H., 2023. A Comprehensive Review of COBIT and ISO 27001: Approaches to Auditing Credit Bureau Automation System (CBAS at PT XYZ. 2023 9th International Conference on Signal Processing and Intelligent Systems (ICSPIS, 1-8. https://doi.org/10.1109/ICSPIS59665.2023.10402713
  19. Hani, A., & Supendi, Y., 2023. Information Technology Governance Audit in E-Learning using Cobit 2019 Framework (Case Study: Langlangbuana University Bandung. INTI Journal. https://doi.org/10.61453/intij.202361
  20. Herlinudinkhaji, D., & Daru, A. F., 2015, 2 Desember. Audit Layanan Teknologi Informasi Berbasis Information Technology Infrastructure Library (ITIL. Jurnal Informatika UPGRIS. https://doi.org/10.26877/jiu.v1i2%20Desember.869
  21. Hodiyanto, H., 2018. Kemampuan spasial sebagai prediktor terhadap prestasi belajar geometri mahasiswa. Jurnal Mercumatika: Jurnal Penelitian Matematika dan Pendidikan Matematika, 2(2, 59-65. https://doi.org/10.26486/jm.v2i2.364
  22. Insani, T. M., 2021. Audit Tata Kelola Teknologi Informasi Pada Balai Penelitian Sungei Putih Menggunakan Framework COBIT 2019. Universitas Islam Negeri Sumatera Utara
  23. Ishlahuddin, A dkk (2020. Analysing IT governance maturity level using COBIT 2019 framework: A case study of small size higher education institute (XYZ-edu. 2020 3rd International Conference on Computer and Informatics Engineering (IC2IE, 236–241. http://dx.doi.org/10.1109/IC2IE50715.2020.9274599
  24. Jaya, S., 2012 Sistem Informasi Dan Pengolahan Data Manajemen ISO 9001: 2008 Di SMK Negeri 1 Surabaya Berbasis Web
  25. Jawad, M., Ali, M., Khaleel, A., & Hasan, M., 2023. Evaluating the performance of IT management under the implementation of the COBIT 2019 framework. Eximia. https://doi.org/10.47577/eximia.v12i1.331
  26. Juiz, C., Gómez, B., & Palacios, R., 2019. How to Improve Board Accountability in ISO/IEC 38500 Based on IT Governance Implementations: Cascading and Rolling up IT BSCs. Int. J. IT Bus. Alignment Gov., 10, 22-39. https://doi.org/10.4018/IJITBAG.2019010102
  27. Kamal., 2021. Pengertian Audit, Fungsi, Tahapan, dan Jenisnya. Gramedia Literasi
  28. Kunio, N., Utami, E., & Muhammad, A., 2022. Audit Tata Kelola TI Berbasis COBIT 2019 di Politeknik XYZ. Jurnal Ilmiah Universitas Batanghari Jambi. https://doi.org/10.33087/jiubj.v22i2.1994
  29. Kornelia, A., & Irawan, D., 2021. Analisis Keamanan Informasi Menggunakan Tools Indeks Kami ISO 4.1. Jurnal Pengembangan Sistem Informasi dan Informatika, 2(2, 78-86. http://dx.doi.org/10.47747/jpsii.v2i2.548
  30. Kitsios, F., Chatzidimitriou, E., & Kamariotou, M., 2023. The ISO/IEC 27001 Information Security Management Standard: How to Extract Value from Data in the IT Sector. Sustainability. https://doi.org/10.3390/su15075828
  31. Lynch, R., Asavisanu, P., Rungrojngarmcharoen, K., & Ye, Y., 2020. Educational Management. Oxford Research Encyclopedia of Education. https://doi.org/10.1093/acrefore/9780190264093.013.701
  32. Malatji, M., 2023. Management of enterprise cyber security: A review of ISO/IEC 27001:2022. 2023 International Conference On Cyber Management And Engineering (CyMaEn, 117-122. https://doi.org/10.1109/CyMaEn57228.2023.10051114
  33. Martins, J., Branco, F., Gonçalves, R., Au‐Yong‐Oliveira, M., Oliveira, T., Naranjo-Zolotov, M., & Cruz-Jesus, F., 2019. Assessing the success behind the use of education management information systems in higher education. Telematics Informatics, 38, 182-193. https://doi.org/10.1016/J.TELE.2018.10.001
  34. Mataracioglu, T., & Özkan, S., 2011. Tata Kelola Keamanan Informasi Terkait COBIT dan ISO 27001. ArXiv, abs/1108.2150. https://doi.org/10.5121/IJNSA.2011.3410
  35. Maulana, M. M., 2019. Audit keamanan sistem informasi pada dinas komunikasi dan informatika kabupaten Bogor menggunakan standar iso/Iec 27001:2013 dan cobit 5
  36. Mulgund, P., Pahwa, P., & Chaudhari, G., 2019. Strengthening IT Governance and Controls Using COBIT. International Journal of Risk and Contingency Management. https://doi.org/10.4018/IJRCM.2019100104
  37. Nachrowi, E dkk (2020. Evaluation of governance and management of information technology services using Cobit 2019 and ITIL 4. Jurnal RESTI (Rekayasa Sistem Dan Teknologi Informasi, 4(4, 764-774. https://doi.org/10.29207/resti.v4i4.2265
  38. Nugraha, R. A., & Syaidah, R., 2022. Smart Campus Governance Design for XYZ Polytechnic Based on COBIT 2019. JOIV: International Journal on Informatics Visualization, 6(3, 718-725. https://dx.doi.org/10.30630/joiv.6.3.1257
  39. Nurmayanti, N., Parida, M., Ngajiyanto, N., & Anzalna, I., 2021. Audit Pelayanan Sistem Rujukan Online Puskesmas Menggunakan Framework Cobit 5.0. Jurnal Informasi dan Komputer, 9(2, 186-195. https://doi.org/10.35959/jik.v9i2.252
  40. Octariza, N. F., 2019. Analisis sistem manajemen keamanan informasi menggunakan standar iso/Iec 27001 dan iso/lec 27002 pada kantor pusat pt jasa mar (Bachelor's thesis, Fakultas Sains dan Teknologi Universitas Islam Negeri Syarif Hidayatullah Jakarta
  41. Oktarina, T., 2022. Tata Kelola Teknologi Informasi dengan COBIT
  42. Prapenan, G. G., & Pamuji, G. C., 2020. July. Information System Security Analysis of XYZ Company Using COBIT 5 Framework and ISO 27001: 2013. In IOP Conference Series: Materials Science and Engineering (Vol. 879, No. 1, p. 012047. IOP Publishing. http://dx.doi.org/10.1088/1757-899X/879/1/012047
  43. Prasetyo, T. M. A., & Sitokdana, M. N., 2021. Analisis Tata Kelola Pusat Data dan Informasi Kementerian XYZ Menggunakan COBIT 2019. Journal of Applied Computer Science and Technology, 2(2, 95-107. https://doi.org/10.52158/jacost.v2i2.265
  44. Pratiwi, H. A., & Wulandari, L., 2021. Evaluasi Tingkat Kesiapan Keamanan Informasi Menggunakan Indeks Keamanan Informasi (Indeks KAMI Versi 4.0 pada Dinas Komunikasi dan Informatika Kota Bogor. Journal of Industrial Engineering & Management Research, 2(5, 146-163. https://doi.org/10.7777/jiemar.v2i5.196
  45. Puspitaningrum, A., Fitrani, L., & Sintiya, E., 2024. Systematic Literature Review: Implementation COBIT as a Best Practice of Electronic Based Government System Governance. SISTEMASI. https://doi.org/10.32520/stmsi.v13i1.3639
  46. Sakron, N., dkk., 2023. Audit of Information Technology Governance on School Operational Cost Flow in SMKN West Jakarta Using COBIT 2019. Jurnal Indonesia Sosial Sains, 4(09, 763-772.Rainey, J., 2016. The COBIT Framework. 270-297. https://doi.org/10.1201/b19194-14
  47. Rusman, A., Nadlifatin, R., & Subriadi, A., 2022. Information System Audit Using COBIT and ITIL Framework: Literature Review. SinkrOn. https://doi.org/10.33395/sinkron.v7i3.11476
  48. Samsinar, S., & Sinaga, R., 2022. Information Technology Governance Audit at XYZ College Using COBIT Framework 2019. BERKALA SAINSTEK, 10(2, 58-67. http://dx.doi.org/10.19184/bst.v10i2.30325
  49. Saputra, D., 2023. Evaluasi Tata Kelola Teknologi Informasi Pada Inspektorat Kabupaten Pringsewu Menggunakan Framework Cobit 2019 Dan Balanced Scorecard. Jurnal Ilmu Komputer, Sistem Informasi, Teknik Informatika, 2(2, 11-18
  50. Serrado, J., dkk (2020. Information security frameworks for assisting GDPR compliance in banking industry. Digital Policy Regulation and Governance, 22(3, 227– 244
  51. Shimels, T., & Lessa, L., 2023. Maturity of information systems' security in Ethiopian banks: case of selected private banks. International Journal of Industrial Engineering and Operations Management, ahead-of-print. http://dx.doi.org/10.1109/ICT4DA53266.2021.9672221
  52. Silaeva, V., & Semenov, V., 2018. Internal Education Quality Assurance through Standardization of Educational Organization Management System. 2018 IEEE International Conference "Quality Management, Transport and Information Security, Information Technologies" (IT&QM&IS, 70-73. https://doi.org/10.1109/ITMQIS.2018.8525083
  53. Sipayung, A. B., & Yunis, R., 2022. Evaluation Of Information Technology Governance at Mikroskil University Using COBIT 2019 Framework with BAI11 Domain. International Journal of Research and Applied Technology (INJURATECH, 2(2, 128-143. https://doi.org/10.34010/injuratech.v2i2.8085
  54. Soesanto, E., dkk (2023. Analisis Keamanan Sistem Informasi di PT. Telkom Menggunakan Indeks KAMI. IJM: Indonesian Journal of Multidisciplinary, 1(1, 169- 175
  55. Sofianda, W., dkk (2023. Evaluasi Manajemen Keamanan Sistem Informasi Pada Perusahaan PT. Wook Tecnology. Jurnal Sains dan Teknologi (JSIT, 3(1, 101-108. https://doi.org/10.47233/jsit.v3i1.498
  56. Su, H., Dhanorkar, S., & Linderman, K., 2015. A competitive advantage from the implementation timing of ISO management standards. Journal of Operations Management, 37, 31-44. https://doi.org/10.1016/J.JOM.2015.03.004
  57. Sukardi, 2015. Metodologi Penelitian Pendidikan Kompetensi dan Praktiknya. Jakarta: PT Bumi Aksara
  58. Susiyana, I., Triloka, J., & Sutedi, S., 2023, August. Audit Sistem Informasi Perpustakaan Sekolah Menggunakan Frame Work Cobit 5 Pada SMAN 1 Terbanggi Besar Lampung Tengah. In Prosiding Seminar Nasional Darmajaya (Vol. 1, pp. 132- 138
  59. Tripustikasari, E., & Septiadi, A. D., 2022. Audit Keamanan Sistem Informasi Perpustakaan: Studi Kasus Di Universitas Nahdlatul Ulama Al Ghazali Cilacap. AKSELERASI: Jurnal Ilmiah Nasional, 4(2, 139-145. https://doi.org/10.54783/jin.v4i2.586
  60. Tohet, M., & Cahyono, D. E., 2020. Peningkatan mutu perguruan tinggi pesantren melalui iso 21001: 2018. MANAGERE: Indonesian Journal of Educational Management, 2(2, 157–170. http://dx.doi.org/10.52627/ijeam.v2i2.37
  61. Tulus, B. V., & Tanaamah, A. R., 2023. Design of Information Technology Governance in Educational Institutions Using COBIT 2019 Framework. Journal of Information Systems and Informatics, 5(1, 31-43. https://doi.org/10.51519/journalisi.v5i1.408
  62. Utomo, D dkk (2022. Leveraging COBIT 2019 to Implement IT Governance in SME Context: A Case Study of Higher Education in Campus A. CommIT (Communication and Information Technology Journal, 16(2, 129-141. http://dx.doi.org/10.21512/commit.v16i2.8172
  63. Viamianni, A., dkk., 2023. COBIT 2019 Information Security Focus Area Implementation For Reinsurco Digital Transformation. JIKO (Jurnal Informatika dan Komputer, 6(2. https://doi.org/10.33387/jiko.v6i2.6366
  64. Vílchez-Sandoval, J., Vasquez-Paragulla, J., Andrade-Arenas, L., & Cortez-Maldonado, W., 2020. Appraisal of the provision of educational products and services according to the ISO-21001 standard in the faculty of sciences and engineering from the Sciences and Humanities University. 2020 IEEE World Conference on Engineering Education (EDUNINE, 1-4. https://doi.org/10.1109/EDUNINE48860.2020.9149520
  65. Vorobyova, O., 2019. Features Of The Iso Quality Management System in Higher Education. Cherkasy University Bulletin: Pedagogical Sciences. https://doi.org/10.31651/2524-2660-2019-1-200-204
  66. Wattimury, G., & Faza, A., 2023. COBIT 2019 Implementation for Enhancing IT Governance in Educational Institutions. JISKA (Jurnal Informatika Sunan Kalijaga. https://doi.org/10.14421/jiska.2023.8.3.210-221
  67. Wibisono, E., 2018. The new management system ISO 21001:2018: What and why educational organizations should adopt it
  68. Widarja, R., & Sulthon, B. M., 2023. Audit Layanan Tata Kelola Informasi Rumah Sakit St. Carolus Menggunakan COBIT 2019. Resolusi: Rekayasa Teknik Informatika dan Informasi, 4(1, 21-30. https://doi.org/10.30865/resolusi.v4i1.1263
  69. Wolniak, R., 2021. Internal Audit and Management Review in ISO 9001:2015. Silesian University of Technology Scientific Papers, Organization and Management Series. https://doi.org/10.29119/1641-3466.2021.151.49
  70. Zaiets, S., 2023. Quality Certification In Education: Application of ISO 9001 and ISO 21001. Educational Analytics of Ukraine. https://doi.org/10.32987/2617-8532-2023-5-5-20
  71. Zuraidah, E., & Sulthon, B. M., 2022. Audit Sistem Informasi Penjualan Pada UMKM MAM Menggunakan Framework Cobit 5. JURIKOM (Jurnal Riset Komputer, 9(5, 1450-14. https://doi.org/10.30865/jurikom.v9i5.4985

Last update:

No citation recorded.

Last update: 2025-03-12 02:23:43

No citation recorded.