Analysis IT Governance of Perumdam Tirta Siak using COBIT 2019 and ISO27001

Mayang Sari, Yanti Andriyani, Ibnu Daqiqil Id, Sukamto Sukamto


Perumdam Tirta Siak Pekanbaru (PDAM) is a local government company responsible for the management and fulfillment of water needs. PDAM currently uses information technology to provide excellent service to customers. The Institute of Directors Report explains that a company has good IT governance if it focuses on risk management and resource management, value fulfillment, and strategic alignment. The level of IT capability in supporting the company's performance can be known through evaluation activities on the current IT implementation. Evaluation is important to determine the level of IT capability in supporting company performance in accordance with the objectives. Thus, this study aims to evaluate information technology governance through an analysis process using the COBIT 2019 framework and the ISO/IEC 27001 standard with process objectives APO14 - Managed Data and BAI06 - Managed IT Changes. The results showed that the current level of IT implementation capability in objective APO14 - Managed Data and BAI06 - Managed IT Changes is at level 2, namely the process has been running but there are still a number of activities that have not been carried out properly. There is a gap between the current capability level and the desired capability level of 1 level (APO14) and 2 levels (BAI06). Thus, 15 improvement recommendations are proposed that refer to the ISO / IEC 27001 standard to create IT governance that is effective, efficient and aligned with company goals.

Full Text:



K. Hendrik, A. Dwiyono, and L. Tri, Tata Kelola Teknologi Informasi, 1st ed. Ponorogo, 2019.

M. B. Ardima, R. Gernowo, and V. G. Slamet, “Pengukuran Tingkat Kapabilitas Sistem Tata Kelola TI Menggunakan Cobit 5 dengan ISO 38500,” J. Teknol. Inf. dan Ilmu Komput., vol. 7, no. 3, p. 645, 2020, doi: 10.25126/jtiik.2020703059.

M. Saleh, I. Yusuf, and H. Sujaini, “Penerapan Framework COBIT 2019 pada Audit Teknologi Informasi di Politeknik Sambas,” J. Edukasi dan Penelit. Inform., vol. 7, no. 2, p. 204, 2021, doi: 10.26418/jp.v7i2.48228.

F. A. Anshori and A. R. Perdanakusuma, “Perencanaan Keamanan Informasi Berdasarkan Analisis Risiko Teknologi Informasi Menggunakan Metode OCTAVE dan ISO 27001 ( Studi Kasus Bidang IT Kepolisian Daerah Banten ),” J. Pengemb. Teknol. Inf. dan Ilmu Komput., vol. 3, no. 2, pp. 1701–1707, 2019, [Online]. Available:

E. N. D. E. R. S. Normen-vereinigung, “Information technology – Security techniques – Information security management systems – Requirements,” p. 44, 2005, [Online]. Available: file:///Users/anggraini/Documents/Mendeley Desktop/Normen-vereinigung - 2005 - Information technology – Security techniques – Information security management systems – Requirements.pdf.

G. I. Belo, Y. T. Wiranti, and L. Happy Atrinawati, “Perancangan Tata Kelola Teknologi Informasi Menggunakan Cobit 2019 Pada Pt Telekomunikasi Indonesia Regional Vi Kalimantan,” JUSIKOM PRIMA (Junal Sist. Inf. Ilmu Komput. Prima), vol. 4, no. 1, pp. 23–30, 2020.

A. R. C. , I. , Nurul Mutiah, “Audit Manajemen Kualitas Teknologi Informasi Menggunakan Cobit 5 Dan Iso 9001:2015 (Studi Kasus: Kpp Pratama Pontianak Barat),” Coding J. Komput. dan Apl., vol. 8, no. 3, p. 29, 2020, doi: 10.26418/coding.v8i3.42415.

M. M. Maulana, “Audit Keamanan Sistem Informasi Pada Dinas Komunikasi dan Informatika Kabupaten Bogor Menggunakan Standar ISO/IEC 27001:2013 dan COBIT 5,” 2019.

T. M. Insani, “Audit Tata Kelola Teknologi Informasi Pada Balai Penelitian Sungei Putih Menggunakan Framework COBIT 2019,” Universitas Islam Negeri Sumatera Utara, 2021.

E. Nachrowi, Yani Nurhadryani, and Heru Sukoco, “Evaluation of Governance and Management of Information Technology Services Using Cobit 2019 and ITIL 4,” J. RESTI (Rekayasa Sist. dan Teknol. Informasi), vol. 4, no. 4, pp. 764–774, 2020, doi: 10.29207/resti.v4i4.2265.

I. Afdhal, R. Kurniawan, I. Iskandar, R. Salambue, E. Budianita, and F. Syafria, “Penerapan Algoritma Random Forest Untuk Analisis Sentimen Komentar Di YouTube Tentang Islamofobia,” J. Nas. Komputasi dan Teknol. Inf., vol. 5, no. 1, pp. 49–54, 2022, [Online]. Available:

D. F. Tanjung, A. Oktaviana, and A. P. Widodo, “Analisis Manajemen Risiko Startup Pada Masa Pandemi Covid-19 Startup Risk Management Analysis During Covid-19 Pandemic Using,” J. Teknol. Inf. dan Ilmu Komput., vol. 8, no. 3, pp. 635–642, 2021, doi: 10.25126/jtiik.202184914.

J. Yuan Mambu, J. Rewah, A. Claudya Iskak, and O. Nadya Sigarlaki, “Evaluasi Sistem Informasi Universitas Klabat Menggunakan Framework COBIT 5.0 Pada Domain MEA Evaluation of Universitas Klabat Information System using COBIT 5 within MEA domain,” Cogito Smart J. |, vol. 5, no. 2, p. 181, 2019.

ISACA, COBIT 2019 : Framework Introduction and methodology. In United States of America: ISACA, 2019.

ISACA, COBIT 2019 : Governance and Management Objectives. In United States of America: ISACA, 2018.


Article Metrics

Abstract view : 191 times
PDF - 79 times


  • There are currently no refbacks.

Creative Commons License
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.