Audit Sistem Informasi Absensi Karyawan Berbasis Cobit 4.1
DOI:
https://doi.org/10.61132/saturnus.v2i3.171Keywords:
Information System Audit, Attendance Information System, COBIT 4.1, IT Governance, IT ManagementAbstract
Employee attendance information systems are an important component in human resource (HR) management in various organizations. Auditing attendance system information is necessary to ensure that the system runs effectively and efficiently, and complies with applicable regulations and policies. COBIT 4.1 (Control Objectives for Information and Associated Technologies) is an audit framework that can be used to deploy attendance information systems. This research aims to conduct an audit of the employee attendance information system using the COBIT 4 framework. This audit was carried out to evaluate the effectiveness of internal control, compliance with regulations, and operational efficiency of the employee attendance information system at XYZ company. The research method used is a combination of qualitative and quantitative, including interviews, observation and testing. The research results show that in general the employee attendance information system has been running well, but there are still several findings related to control and compliance weaknesses that need to be improved. The recommendations provided include improving access rights management, monitoring activities, as well as improving procedures and documentation.
References
Bhatt, G. D., & Grover, V. (2005). Types of Information Technology Capabilities and Their Role.
Gartner. (2019). Magic Quadrant for Content Services Platforms. Stamford, CT: Gartner, Inc.
ISACA. (2005). COBIT 4.0: Control Objectives for Information and related Technology. Illinois: IT Governance Institute.
ISACA. (2007). COBIT 4.1: Framework for IT Governance and Control. Rolling Meadows, IL: ISACA.
ISACA. (2012). COBIT 5: A Business Framework for the Governance and Management of Enterprise IT. Rolling Meadows, IL: ISACA.
ISACA. (2013). COBIT 5: A Business Framework for IT Governance and Control. Illinois: IT Governance Institute.
ISACA. (2019). COBIT 2019 Framework: Introduction and Methodology. Rolling Meadows, IL: ISACA.
ISO/IEC 27001:2013 Information technology -- Security techniques -- Information security management systems -- Requirements.
ISO/IEC 38500:2015 Information technology -- Governance of IT for the organization.
ITGI. (2003). Board Briefing on IT Governance (2nd ed.). Rolling Meadows, IL: IT Governance Institute.
Kearns, G. S., & Sabherwal, R. (2007). Strategic Alignment Between Business and Information Technology: A Knowledge-Based View of Behaviors, Outcome, and Consequences. Journal of Management Information Systems, 23(3), 129-162.
Lacity, M. C., & Willcocks, L. P. (2014). Nine Practices for Best-in-Class BPO Performance. MIS Quarterly Executive, 13(1).
Laudon, K. C., & Laudon, J. P. (2020). Management Information Systems: Managing the Digital Firm (15th ed.). Pearson.
Luftman, J. (2003). Assessing IT/Business Alignment. Information Systems Management, 20(4), 9-15.
Nolan, R., & McFarlan, F. W. (2005). Information Technology and the Board of Directors. Harvard Business Review, 83(10), 96-106.
O'Brien, J. A., & Marakas, G. M. (2011). Management Information Systems (10th ed.). McGraw-Hill.
Turban, E., Volonino, L., & Wood, G. R. (2013). Information Technology for Management: Advancing Sustainable, Profitable Business Growth (9th ed.). Wiley.
Weill, P., & Ross, J. W. (2004). IT Governance: How Top Performers Manage IT Decision Rights for Superior Results. Harvard Business Review Press.
Weill, P., & Vitale, M. (2002). What IT Infrastructure Capabilities are Needed to Implement E-Business Models? MIS Quarterly Executive, 1(1), 17-34.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2024 Saturnus : Jurnal Teknologi dan Sistem Informasi
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
