Metode Audit Tata Kelola Teknologi Informasi di Instansi Pemerintah Indonesia

Article Sidebar

PDF (Indonesian)
DOI: https://doi.org/10.17933/iptekkom.15.1.2013.1-16
Keywords:
Teknologi Informasi, tata kelola, instansi pemerintah, audit
Dimensions
Altmetrics
Statistics
Read Counter : 7852
Download : 5297
Crossmark/ Data Version

Main Article Content

Herri Setiawan
Prodi Teknik Informatika, Fakultas Ilmu Komputer, Universitas Indo Global Mandiri Palembang
Khabib Mustofa
Jurusan Ilmu Komputer dan Elektronika, Fakultas MIPA, Universitas Gadjah Mada Yogyakarta

Abstract

Dalam rangka menciptakan nilai tambah dan meminimalkan risiko Teknologi Informasi (TI) dibutuhkan manajemen pengelolaan semua sumber daya TI yang efisien dan efektif, antara lain melalui IT Governance (Tata Kelola TI). Berdasarkan tujuannya, audit Tata kelola TI memiliki tujuan yang berbeda dengan tiga jenis audit berdasarkan UU No. 15 tahun 2004, karena audit ini bertujuan khusus untuk memeriksa pengelolaan seluruh sumber daya TI (termasuk di dalamnya manajemen organisasi dan pimpinan), apakah dapat mendukung dan sejalan dengan strategi bisnis. Dibandingkan audit di sektor privat, audit di sektor publik dalam hal ini di instansi pemerintah, memerlukan perhatian khusus, karena karakteristik manajemen sektor publik berkaitan erat dengan kebijakan dan pertimbangan politik serta ketentuan perundang-undangan. Penelitian ini mengusulkan sebuah metode audit tata kelola TI di instansi pemerintah. Metode yang dihasilkan dapat dijadikan sebagai salah satu acuan auditor pemerintah dalam mengevaluasi risiko yang terkait dengan Tata Kelola TI di instansi pemerintah.

Article Details

Issue
Vol. 15 No. 1 (2013): JURNAL IPTEKKOM : Jurnal Ilmu Pengetahuan & Teknologi Informasi
Section
Articles

Authors who publish with this journal agree to the following terms:

  1. Author (s) hold copyrights and retain copyrights of articles if the article is accepted for publishing.
  2. The author grants the journal, right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work’s authorship and initial publication in this journal.
  3. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal’s published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
  4. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work.
  5. The article and any associated published material are distributed under the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License. Public allowed to Share (copy and redistribute the material in any medium or format) and Adapt (remix, transform, and build upon the material) this journal article content.

References

Amancei, Cristian, and Traian Surcel. “Increasing the Efficiency of IT Audit Methodology by Using the Organizations Tolerance to IT

Systems Availability.” Informatica Economică 14, no. 1 (2010).

Budiono, Gatut. “Audit Kinerja Sistem Informasi Manajemen Pemeliharaan Unit Pembangkit Listrik Berbasis CobIT Domain.” EECCIS IV, no. 1 (2010).

Cilli, Claudio. “IT Governance: Why a Guideline?” Information Sytems Control Journal 3 (2003).

Committee of Sponsoring Organizations of the Treadway Commission. “Enterprise Risk Management — Integrated Framework” September (2004).

Direktorat Keamanan Informasi Kementerian Komunikasi dan Informatika RI. Panduan Penerapan Tata Kelola Keamanan Informasi Bagi Penyelenggara Pelayanan Publik. Jakarta, 2011.

Haes, Steven De, and Wim Van Grembergen. “IT Governance and Its Mechanisms.” Information Sytems Control Journal 1 (2004).

Hardy, Gary. “The Role of the IT Auditor in IT Governance.” ISACA Jurnal 1 (2009).

Iliescu, Mihai. “Auditing IT Governance.” Informatica Economică 14, no. 1 (2010).

Kutsikos, Konstadinos. “IT Governance Auditing in Virtual Organizations” 1, no. 1 (2007).

Lusiani, Cecilia. “Audit IT Governance Kabupaten Sleman.” Informatika Mulawarman 4, no. 2(2009).

Menteri Komunikasi Dan Informatika. Panduan Umum Tata Kelola Teknologi Informasi Dan Komunikasi Nasional. Jakarta, 2007.

Menteri Negara Pendayagunaan Aparatur Negara. Peraturan Menteri Negara Pendayagunaan Aparatur Negara Nomor: Per/05/M.PAN/03/

Tentang Standar Audit Aparat Pengawasan Intern Pemerintah, 2008.

OECD. OECD Principles of Corporate Governance. Paris: OECD Publishing, May 3, 2004.

Presiden Republik Indonesia. Undang-Undang Republik Indonesia Nomor 14 Tahun 2008 Tentang Keterbukaan Informasi Publik.

Jakarta, 2008.

———. Undang-Undang Republik Indonesia Nomor 15 Tahun 2004 Tentang Pemeriksaan Pengelolaan Dan Tanggung Jawab Keuangan

Negara, 2004.

Purwanto, Yudha. “Audit Teknologi Informasi Dengan Cobit 4.1 Dan IS Risk Assessment (Studi Kasus Bagian Pusat Pengolahan Data

PTS XYZ).” Bali, 2010.

Pusat Pendidikan Dan Pelatihan Pengawasan Badan Pengawasan Keuangan Dan Pembangunan. Dasar-Dasar Auditing. 6th ed.

BPKP, 2009.

Radovanovic, Dalibor, Tijana Radojevic, Dubravka Lucic, and Marko Sarac. “Analysis of Methodology for IT Gover-nance and Information Systems Audit.” In The 6th International Scientific Conference “Business and Management 2010”. Vilnius, Lithuania: Vilnius Gediminas Technical University Publishing House Technika, 2010.

Yulianti, Diana Trivena, and Michel Canggih Patria. “Jurnal Sistem Informasi Jurnal Sistem Informasi.” Sistem Informasi 6, no. 1 (2011)

COSO. Internal Control – Integrated Framework. 2nd ed. Jersey City: American Institute of Certified Public Accountants, 1994. Diakses 21 Februari 2013. http://www.snai.edu/cn/service/ library/book/0-framework-final.pdf.

Institute de la Gouvernance des Systems d’Information. The Place of IT Governance in the Enterprise Governance. Paris, 2005. Diakses 11 Januari 2013., http://cigref.typepad.fr/itgifrance/files/place_IT_

governance_in_enterprise_governance.pdf.

ISACA. CISA Review Manual. Illinois, 2008. www.isaca.org.

———. COBIT 5-A Business Framework for the Governance and Management of Enterprise IT. Illinois, 2012. www.isaca.org.

———. IS Auditing Guideline IT Governance.Illinois, 2002. www.isaca.org.

———. IS Auditing Standard IT Governance. Illinois, 2005. www.isaca.org.

———. IT Standards , Guidelines , and Tools and Techniques for Audit and Assurance and Control Professionals. Illinois, 2010.

www.isaca.org.

ISO/IEC. International Standard ISO/IEC 27002.Switzerland, 2005. http://www.iso.org.

———. International Standard ISO/IEC 385000.Switzerland, 2007. http://www. iso.org.

IT Governance Institute. Board Briefing on IT Governance. 2nd ed. IT Governance Institute,2003. www.itgi.org.

———. IS0/IEC 38500-2008 Adoption. Illinois,2008. www.itgi.org.

ITIL. An Introductory Overview of ITIL ® V3. Edited by Alison Cartlidge and Mark Lillycrop. 1st ed.Wokinghom, UK: itSMF Ltd, 2007.

OXLEY. Sarbanes-Oxley Act Of 2002. Washington, 2002. http://www.sec.gov.