Rancangan Tata Kelola Teknologi Informasi Menggunakan Framework COBIT 2019 (Studi Kasus: PT XYZ)

Abstrak: Tata kelola teknologi informasi fokus pada teknologi informasi, sistem, manajemen kinerja dan resikonya.Kerangka kerja COBIT 2019 digunakan dalam melakukan penerapan tata kelola teknologi informasi. PT XYZ diambil bertujuan mengetahui kualitas layanan, kinerja manajemen, serta resiko pada perusahaan dengan melihat pada referensi dari laporan tahunan PT XYZ dan menganalisis nilai capability level serta maturity level. Setelah dilakukan analisis terhadap 11 design factor, didapatkan bahwa ada 5 proses domain yang memiliki nilai diatas 75% yaitu BAI02, BAI03, BAI06, DSS02, dan DSS04 kemudian dilanjutkan dengan core model evaluation dan diperoleh hasil nilai capability level masing- masing yaitu BAI02 memiliki nilai capability pada level 2; BAI03 memiliki nilai capability pada level 1; BAI06 memiliki nilai capability pada level 1; ). DSS02 memiliki nilai capability pada level 2; dan DSS04 memiliki nilai capability pada level 2, maka nilai maturity level keseluruhan dari PT XYZ adalah 1, capability level dapat ditingkatkan dengan melakukan aktivitas yang belum dilakukan oleh perusahaan sampai dengan mencapai nilai fully untuk tiap level.   Kata kunci: capability, COBIT, maturity, tata kelola, teknologi.   Abstract: Information technology governance focuses on information technology, systems, performance management and risk. The 2019 COBIT framework is used in implementing information technology governance. PT XYZ was taken to determine the quality of service, management performance, and risk to the company by looking at the references from the PT XYZ annual report and analyzing the capability level and maturity level. After analyzing 11 design factors, it was found that there were 5 domain processes that had values ​​above 75%, namely BAI02, BAI03, BAI06, DSS02, and DSS04 then continued with core model evaluation and the results obtained for each capability level, namely BAI02 had a value. capability at level 2; BAI03 has capability value at level 1; BAI06 has a capability value at level 1; ). DSS02 has capability value at level 2; and DSS04 has a capability value at level 2, so the overall maturity level of PT XYZ is 1, the capability level can be increased by doing activities that the company has not done until it reaches the full value for each level.   Keywords: capability, COBIT, governance, maturity, technology

Implementation of Business Continuity Planning Methodology in Making Business Continuity Planning Documents at PT. XYZ

PT. XYZ is a company engaged in the communication sector. As a company with a national scale, PT. XYZ has various risks that must be faced, ranging from natural disasters, human disturbances, and disruption due to technology. The existence of disruption risks can disrupt the company's operational activities. A business continuity plan document is created to find out what steps the company must take to minimize damage due to disruption. Making a business continuity plan or BCP starts from the project initiation stage, risk assessment, business impact analysis, mitigation strategy development, plan development, training, testing, auditing. The results obtained from this research are in the form of BCP documents used by PT. XYZ in response to a disturbance. With the BCP, PT. XYZ can respond to a disruption that occurs and quickly restore business operations