THE ANALYSIS OF THE LEVEL OF MATURITY OF INFORMATION TECHNOLOGY TO THE
ACADEMIC SERVICES BY USING
THE COBIT FRAMEWORK: A CASE STUDY OF THE
POSTGRADUATE
OF STMIK
NUSA MANDIRI
Supriyadi
STMIK NUSA MANDIRI JAKARTA
ABSTRACT
Postgraduate Nusa Mandiri currently has implemented information
technology systems for the management of academic services. The purpose of this research is to conduct
the assessment and evaluation of academic services and to know the maturity
level of IT governance academic services Post
Graduate Nusa Mandiri Mandiri
using COBIT framework domain, particularly the delivery & support and
monitoring & evaluation domain. Kind
research used is descriptive research in which no treatment is given or
controlled and that no hypothesis test as contained in the research
experiments. Maturity level (maturity level) IT governance for academic
services performed in Graduate STMIK Nusa Mandiri. Domain DS (Deliver and
Support) located at level 2 (Repeatable but intuitive) where the parties STMIK
Nusa Mandiri has a pattern repeatedly done in conducting management activities
related to information technology governance, but its existence has not been
well defined and formal so it is still inconsistency occurs. ME domain while
also being at level 2 which began there in IT governance procedures but not all
documented and not fully socialized to the executor. Currently no formal
training to socialize these procedures and implementation responsibilities are
at each individual.
Key Words:
IT Governance, COBIT, Academic Services
1. Preliminary
Rapid
development of information and communication technology, enables the
development of better information services in an educational
institution.
Academic service that is accurate, timely and relevant is very important
for independent homeland for graduate creates user loyalty, improve the
effectiveness and efficiency of resource use. To improve the quality of
service
of academic service to its users, graduate is required to develop
independent
homeland business strategy is a good one, one of them by making use of
advances
in information technology..
This research was conducted because of the academic
services at Nusa Mandiri Graduate has never been in evaluation and common
difference is the data on the website with the implantable secretariat
Graduate. Information technology is very supportive of the academic information
system service despite the high risk of the investment cost in terms of
hardware procurement, software development, implementation and maintenance of
the system. This is done in the hope of being able to realize the achievement
of business plans and the IT strategy in particular as well as the achievement
of business plans and business strategy.
Organizational
goals will be achieved if the IT strategy plans and implemented plans and
strategies aligned with business organizations that have been defined. For it
is necessary the presence of it governance to ensure the achievement of harmony
between plan & the IT strategy with the business of the organization. One
of the standards in support of it governance is COBIT (Control Objective for
Information and Related Technology) that the methodology becomes the best
practice in the management of INFORMATION TECHNOLOGY in various industrial
sectors, including the education industry. COBIT can assist the management and
user to bridge the gap between business risk and control requirements,
technical issues.
1.1
Formulation of Problems
To optimize the quality of Postgraduate
academic services, then Nusa Mandiri needs to do an analysis of the
applicability of the academic Postgraduate service of Nusa Mandiri. From the
above it can be formulated as the following problems:
a) Extent
to which the level of maturity of the IT governance for Post-graduate academic Service framework
with Nusa Mandiri COBIT in particular domains of delivery & support and
supervision of the domain & the evaluation?
b) How IT
governance improvement strategy for academic Postgraduate Service framework
with Nusa Mandiri COBIT in particular domains of delivery & support (DS)
and domain control & evaluation (ME)?
2. FRAMEWORK of
THOUGHT
According
to the IT Governance website explains that IT Governance is the ability of
senior management to directly measure and evaluate the use of information
technology across the enterprise to support the achievement of the objectives
of the strategic resources of the organization. Leadership, organizational
structures and processes used to increase the resources IT produces the
required information and encourage alignment, giving the value, risk
management, optimizing the use of resources, continuation and management of
performance.
Understanding
IT governance according to some sources
a.
According to The Ministry of International Trade & Industry in Surendro
(1999); governance is the Organization's capacity to control the formulation
and implementation of information technology strategy and leads to the
achievement of the corporate interests of competitive data.
b.
According to the IT Governance Institute: 2001 in Surendro (2009); IT
governance is the responsibility of the Board and executive management. This is
the part that is integrated with the corporate governance and leadership and
structure and contains the process an organization that ensures that the
Organization's information
technology strategy and supporting business objectives.
a. Van
Grembergen: By 2002 in Surendro (2009); IT governance is the assessment of the
capacity of the Organization's Board of Directors, executive management,
information technology management to control the formulation and implementation
of the strategy on information technology in order to support its business. The
definition of a third can be concluded that the definition of information
technology governance are efforts to ensure the management of information
technology to support even aligned with the business strategy of an enterprise
undertaken by the Board of Directors, executive management, and also by the
information technology management.
2.1.
Service
Quality
According
to Indrajit (2000: 29) suggests that the three key things need to be understood
thoroughly what to look for and be considered for producing a good integrated
academic services are: first, the information systems, the definition of clear
and detailed with respect to the types of information that are required by the
company (in this case the academic service or website) and things related to
data processing speed be information, the level of detail of the information,
how the appearance of the information, and transaction volume information, the
person in charge of information and so on. Secondly, information technology
includes hardware components such as computers, infrastructure, communication,
and others who must be available to generate the information system have been
defined.
Third,
information management, concerns the human device (brainware) which will
implement the academic services are built and developed in line with the
development of information technologies company (institutions) in the future.
2.
RESEARCH METHODOLOGY
The research methods/types of
research descriptive research is used where there is no preferential treatment
is given or is controlled and there is no test of the hypothesis as contained
in research experiments. In this research are expected to not do the
conclusions too far over the existing data, for the purpose of this research is
simply collecting facts and thoroughly outlines and meticulous compliance with
the issue will be solved. This research was established within the IT assessment
on domain DS and ME for each control objective.
Stages of research
that is carried out as follows:
a. literature Study
literature Studies done by searching or collecting materials related to
evaluation and instrument IT governance through: Book (text book), literature
was obtained from the library or buy, articles or journals, literature was
obtained from the internet. Thesis or research that is already done. This
literature was obtained from the internet. Topic or thesis theme you're looking
for is a topic or theme related to research done.
b. Postgraduate
Studies in the field of Study STMIK Nusa Mandiri was done to: find out existing
problems in Postgraduate research, STMIK Nusa Mandiri, especially for academic
services. Collects data that is required, in accordance with the themes of
research are used.
c. Designing
questionnaires/instruments of research. Research instrument is a tool that is
used to collect the data researchers in his works is easier and the result is
better, in this more carefully, complete and systematic way so that it is more
easily treated. Research instrument used in data collection, among others, are:
1. Interview
Interview performed
against each respondent by way of asking a few questions related to IT
governance. Implementation time interview done concurrently when respondents
fill out questionnaires, for filling the questionnaire was accompanied by
researchers. Interview material sourced from the COBIT maturity model in
particular,
2. A questionnaire
Type
of questionnaire used was a questionnaire, in which respondents are only asked
to select answers that had been provided by researchers by giving the sign of
contreng on a Yes or no answer to the columns that have been provided. The
scale of measurement of the questionnaires used means one who provides answers
Guttman scale of Yes and no. The reasons underlying the use of the enclosed
questionnaire as an instrument in the collection of data, among others, because
it is more practical and systematic, provides convenience to respondents in
providing answers and the time limitations of the research.
a.
Collecting
questionnaire data collection Done on a questionnaire that has been filled in
and conduct interviews of staff, the staff of BAAK BTI Staff and Postgraduates
STMIK Nusa Mandiri.
b.
Data processing.
Activities conducted in the tabulations are as follows:
Perform
data entry any answers of respondents included in the table by using the
Microsoft Excel 2007.
1. Coding
The
coding process is underway to convert any answers of respondents. The
conversion is done with the following conditions which do not answer the
respondent's answer is encoded with digits 0 and answers Yes encoded by number
1.
2.
Calculating the
average
Average
value conversion is calculated by dividing the value of the conversion of each
answer by the number of conversion value for each level of maturity.
3.
Perform
normalization
Normalization is
performed for each level of maturity in each process. Normalization value is
calculated by dividing the average number of conversions each level with a
total average number of conversions in the process.
4.
Calculate
the level of maturity
The level of maturity
of each process is calculated by summing all the results of the multiplication
between the value of the normalization with the level in question.
5.
Calculate the total
level of maturity
The Total level of
maturity of a process is obtained by summing the level of maturity and then
divide it by the number of respondents.
6. Set
the level of maturity that will be achieved/expectations (expected maturity) Level
of maturity to be achieved/expectations (expected maturity) by the
organization/company must be established, which will be compared with the total
of the current level of maturity (current maturity) that the organization/company.
7. Calculate
the level of maturity
The level of maturity of each process is
calculated by summing all the results of the multiplication between the value
of the normalization with the level in question.
8.
Calculate
the total level of maturity
The
Total level of maturity of a process is obtained by summing the level of
maturity and then divide it by the number of respondents.
9. Set the level of maturity that will be
achieved/expectations (expected maturity) level of maturity to be achieved/expectations
(expected maturity) by the organization/company must be established, which will
be compared with the total of the current level of maturity (current maturity)
that the organization/company.
a. Conducting evaluation
of IT governance. After processing the questionnaire and find out the level of
maturity of the academic services at post graduate and give UPN Nusa Mandiri recommendations
for further development.
The Method of Sampel Selection
This
research was conducted in the Graduate, with a population of STMIK Nusa Mandiri
is a Graduate academic services all stakeholders STMIK Nusa Mandiri, both
internal and external. The sample in this study there are 5 samples with
details as follows:
Table III-1. Research Sample
Respondent
|
Numbers of Samples
|
Information
|
BAAK
|
1
|
Staff BAAK
|
BTI
|
3
|
Staff BTI
|
Sekretariat Pascasarjana
|
1
|
Staff Pascasarjana
|
Total
|
5 People
|
3.
Analysis and Interpretation Respondents Description
After a
data retrieval through a questionnaire, 5 respondents of the research can be
described as below,
a. work
Unit based on work units that are self-sustaining, STMIK Nusa Mandiri Graduate
60% of respondents were from the information technology Section, 20% of
respondents came from the Bureau of Student and academic Administration and 20%
came from Secretariats Graduate STMIK Nusa Mandiri.
b. the
position/job title/job Based held Graduate STMIK Nusa Mandiri Self-supporting,
20% of respondents served as staff BAAK, 40% of respondents served as Graduate
web programmer, as well as each of the 20% of the respondents served as
technical support staff and graduate students.
c.
Long Work based on Graduate work on the old UPN Nusa Mandiri 60% of respondents
had worked between 6% u2013 10 years, 40% of respondents had worked between 1-5
years.
d.
Education based on the acquired education, 100% of respondents Degree educated.
The Analysis of Current Conditions of IT
Management
To
find out the level of maturity of graduate service STMIK Nusa Mandiri conducted
three phases of analysis: first do an analysis of the position of the IT
function in the postgraduate STMIK Nusa Mandiri and then continued with the
present condition analysis of Postgraduate academic service DISCOVERY
Independent Homeland and concludes with an analysis of the level of maturity of
graduate academic services STMIK Nusa Mandiri using the COBIT framework in
particular domains Deliver and Support (DS) and the Monitor and Evaluate domain
(ME). The details of the level of maturity of the processes on the domain of
delivery and support (deliver and support) are present in Table IV-1 below:
Table IV-1. The Level of Current Maturity in DS Domain
Process
|
Current Maturity
|
||
Score
|
Level
|
||
DS1
|
Define and manage the service level
|
1.87
|
2-Repeatable but Intuitive
|
DS2
|
Manage the service from third party
|
2.30
|
2-Repeatable but Intuitive
|
DS3
|
Manage job performances and capacity
|
2.37
|
2-Repeatable but Intuitive
|
DS4
|
Guarantee the continuity of service
|
3.12
|
3 – Definied Process
|
DS5
|
Guarantee the system safety
|
2.39
|
2-Repeatable but Intuitive
|
DS6
|
Identify and allocate the cost
|
2.41
|
2-Repeatable but Intuitive
|
DS7
|
Give the training and education to the user
|
2.37
|
2-Repeatable but Intuitive
|
DS8
|
Manage service desk and incidents
|
2.35
|
2-Repeatable but Intuitive
|
DS9
|
Manage configuration
|
2.18
|
2-Repeatable but Intuitive
|
DS10
|
Manage problems
|
2.44
|
2-Repeatable but Intuitive2-Repeatable but Intuitive
|
DS11
|
Manage the data
|
2.44
|
2- Repeatable but Intuitive
|
DS12
|
Manage the physical Environment
|
2.36
|
2-Repeatable but Intuitive
|
DS13
|
Manage the operational things
|
3.22
|
3 – Definied Process
|
Average
|
2.45
|
2-Repeatable but Intuitive
|
|
The details of the
level of maturity of the processes in the domain of oversight and evaluation
(monitor and evaluate) contained in table IV-2 below:
Table IV-2. The Level of Current Maturity in ME Domain
Process
|
Current Maturity
|
||
Score
|
Level
|
||
ME1
|
Control and Evaluate the IT Job Performances
|
2.07
|
2-Repeatable but Intuitive
|
ME2
|
Control and Evaluate the Internal Control
|
2.45
|
2-Repeatable but Intuitive
|
ME3
|
Guarantee the Law Obedience
|
2.22
|
2-Repeatable but Intuitive
|
ME4
|
Provide the IT Management
|
2.73
|
3 – Definied Process
|
Average
|
2.36
|
2-Repeatable but Intuitive
|
|
In
general the condition of it governance is currently on the graduate academic
service DISCOVERY forwarding domain in particular Independent Homeland and
support (deliver and support) and domain monitoring and evaluation (monitor and
evaluate) is still at the level of 2-repeatable but intuitive. This means the
IT processes that support the academic Postgraduate service DISCOVERY Nusa
Mandiri has evolved to provide services that are optimal for which the same
procedures have been carried out by different people. But in it there is no
communication or formal training on standard procedures and responsibilities
are transferred to the individual. In addition, there is still confidence in
the ability of the individual, so the error is very likely to occur.
The IT Process Maturity Level analysis based on the
results of the interviews and the results of the findings in the form of an
opinion of the respondents obtained the results of measurement of the level of
maturity of the processes within the domain of delivery & support
(delivered & support) is shown in Table IV-3 of the following:
Table IV-3 Gap Maturity Level of DS Domain
Process
|
Maturity
Level
|
|||
Current
|
Expectation
|
Gap
|
||
DS1
|
Define
and manage the level of service
|
1.87
|
3
|
1.13
|
DS2
|
Manage
service from third party
|
2.30
|
3
|
0.70
|
DS3
|
Manage job performances
|
2.37
|
3
|
0.63
|
DS5
|
Guarantee the safe system
|
2.39
|
3
|
0.61
|
DS6
|
Identify and allocate the cost
|
2.41
|
3
|
0.59
|
DS7
|
Give education and training to the users
|
2.37
|
3
|
0.63
|
DS8
|
Manage service desk and incidents
|
2.35
|
3
|
0.65
|
DS9
|
Manage the configuration
|
2.18
|
3
|
0.82
|
DS10
|
Manage the problems
|
2.44
|
3
|
0.56
|
DS11
|
Manage the data
|
2.44
|
3
|
0.56
|
DS12
|
Manage the physical environment
|
2.36
|
3
|
0.64
|
Average
|
2.31
|
3
|
0.68
|
|
The
level of maturity of the processes within the domain of delivery & support
(delivered & support) can be described in Spider diagrams shown in figure
IV-1 of the following:
Figure IV-1. Diagram of Gap
Spider of Maturity Level of DS Domain
Opinion of the respondents obtained the results of
measurement of the level of maturity of the processes in the domain of
oversight and evaluation (monitor and evaluate) shown in Table IV-4 of the
following:
Table
IV-4. Gap of Maturity Level of ME Domain
Process
|
Maturity
Level
|
|||
Current
|
Expectation
|
Gap
|
||
ME1
|
Control
and evaluate the IT Job Performances
|
2.07
|
3
|
0.93
|
ME2
|
Control
and evaluate the internal Control
|
2.45
|
3
|
0.55
|
ME3
|
Guarantee the obedience of Law
|
2.22
|
3
|
0.78
|
ME4
|
Provide IT Management
|
2.73
|
3
|
0.27
|
Average
|
2.37
|
3
|
0.63
|
|
The
level of maturity of the processes in the domain of oversight and evaluation
(monitor and evaluate) can be described in Spider diagrams shown in figure IV-2
of the following:
Figure IV-2.
Diagram of Gap Spider Maturity Level of ME Domain
4.
CONCLUSION
Conclusion the existing problems in
Postgraduate STMIK Nusa Mandiri is not his existing data on Graduate websites,
it occurs due to the lack of supervision of parties concerned to check errors
on the website. Therefore researchers interested in conducting research on
analysis of it governance maturity levels for academic services at Graduate
STMIK Nusa Mandiri and obtained the following results:
a. Level of maturity
(maturity level) IT governance to academic services performed in the DISCOVERY
of Nusa Mandiri Graduate is: DS Domain (Deliver and Support) are at level 2
(Repeatble but intuitive) where parties are Self-service STMIK Nusa Mandiri Graduate
has had a pattern of repeatedly performed in carrying out activities related to
the management of information technology governance, but its existence has not
been well defined and formal so that inconsistencies still occur.
b. Whereas the domain of ME are at level 2 which
started there in it governance procedures but not entirely documented and not
completely socialized to the executor. There is no formal training for
disseminating these procedures and responsibilities for implementation are on
each individual. a. improvement of it governance to academic service of STMIK
Nusa Mandiri for domain DS and ME is the increasing level of maturity at level
3 (defined process) based on the mission, vision, goals and directions of the
development of graduate studies, where parties are STMIK Nusa Mandiri has
facilities to monitor and measure the procedure already underway and may take
action if there are processes that are indicated are not effective.
Suggestions
Based on the results
of the research implications are already presented in the previous chapter, the
authors provide advice: a. For the postgraduate STMIK Nusa Mandiri From
managerial aspects, the study is expected to be a reference in defining IT
governance policies especially with regard to delivery and support (DS) as well
as to monitor and evaluate (ME), if it allows the evaluation should be
conducted periodically by external auditors or consultants who have a
certificate of the CISA (Certified Information Systems Auditor) From system
aspect, need for a system or procedure which clearly can be seen based on the
existing literature on COBIT version 4, especially for the DS domain and ME,
and it should continue to be held periodically for updates.
as
for advice for other researchers:
need
analysis of management awareness, to analyze the importance level and in terms
of who is responsible for performing repairs. this research can be developed
further based on KPIS (Key Performace Indicators) or major performance
indicators for defining measurement that determines how well information
technology process is done and KGI (Key Goal Indicators) or main objective
indicators to define a measurement that inform the management after the
fact/activity of a process of information technology has achieved the purpose
of his business.
5. Bibliography
[1] Abu Musa,Ahmad. (2009).”Exploring COBIT Processes for ITG in Saudi Organizations. An empirical
Study”. The International Journal of
Digital Accounting Research Vol.9.pp.99-126.
[2]Falahah.(2006) Perencanaan Tata kelola Teknologi Informasi berdasarkan
Framework Cobit ( Studi Kasus Direktorat Meteorologi). Seminar Nasional
Aplikasi Teknologi Informasi 2006 (SNATI 2006).
[3]Indrajit.[2000] Richardus Eko. Pengantar konsep
dasar manajemen sistem informasi dan teknologi informasi. Jakarta: Elex
Media Komputindo.
[4]IT
Governance Institute. ,[2005].Cobit
4.0 ITGI United States Of America.http://www.itgi.org/
[5]IT Governance Institute.[2005].Cobit 4.0 Excerpt .ITGI United States Of
America.http://www.itgi.org
[6]Kusuma,
Helianti.[2006]. Manajemen Pendidikan di
Era Reformasi. Jurnal Pendidikan Penabur - No.06/Th.V/Juni 2006
[7]Rahmawati,Evi.[2009]
Evaluasi Tata Kelola Teknologi Informasi dalam Rangka Meningkatkan
Kualiatas Layanan Akademik Studi Kasus UIN Jakarta. Tesis Magister Ilmu
Komputer.Universitas Budi Luhur.
[8]Rizal.La Ode.[2007] Analisis Tata Kelola
Teknologi Informasi PT.Surveyor Indonesia menggunakan Kerangka Kerja Cobit
(Studi Kasus:Proses DS13- Mengelola Operasi). Tesis Magister Teknologi
Informasi. Institut Teknologi Bandung.
[9]Surendro.Kridanto.[2009.]Implementasi Tata Kelola Teknologi Informasi.
Informatika.
[10]Sugiyono.[2009].
Metode Penelitian Bisnis. Alfabeta
bandung.
[11]Tarigan.Josua.[2006].Merancang
IT Governance dengan COBIT &
Sarbanes-OXLEY dalam Konteks Budaya Indonesia. Prosiding Konferensi
Nasional Teknologi Informasi & Komunikasi untuk Indonesia.
[12]Wasilah.[2007]. Perancangan IT Governance untuk Peningkatan Kualitas Layanan Akademik
Studi Kasus: Puskom Universitas Lampung. Tesis Magister Teknologi
Informasi. Institut Teknologi
