EVALUATION OF INFORMATION TECHNOLOGY GOVERNANCE BASED ON THE COBIT 2019 EDM DOMAIN AT BANK XYZ
Main Article Content
Abstract
Information technology (IT) governance plays an essential role in ensuring that the use of IT aligns with business objectives, delivers optimal value, and effectively manages risks, particularly in the banking sector. This study aims to evaluate the implementation of IT governance in the Evaluate, Direct, and Monitor (EDM) domain based on the COBIT 2019 framework at Bank XYZ. The research adopts a case study approach with an evaluative method through an assessment of the capability levels of processes EDM01 to EDM05. Data were collected through the review of IT policies and procedures, IT strategic planning documents, internal control reports, and discussions with relevant stakeholders during the observation period. The results indicate that all processes within the EDM domain have achieved capability level 4 (Managed). This finding suggests that IT governance at the top management level of Bank XYZ has been implemented in a structured, measurable, and quantitatively monitored manner. However, opportunities for further improvement remain, particularly in strengthening follow-up actions derived from IT benefits evaluation and ensuring consistent governance performance measurement across EDM processes. This study is expected to provide practical insights for enhancing strategic IT governance and to support future research on the application of the COBIT 2019 EDM domain in the banking industry.
Article Details
References
[2] M. Lubis and R. G. Permana, "Evaluating IT Governance using COBIT 2019: A Case Study of a Private University," in 2021 International Conference on Information Management and Technology (ICIMTech), 2021, pp. 543–548.
[3] C. J. Neves and P. S. Sales, "A Maturity Model for COBIT 2019 Based on ISO/IEC 33020," Journal of Software: Evolution and Process, vol. 34, no. 5, p. e2410, 2022.
[4] A. P. G. Castro and R. S. S. Guizzardi, "Using COBIT 2019 for the Alignment of IT and Business: A Systematic Mapping Study," Procedia Computer Science, vol. 196, pp. 245–252, 2022.
[5] J. F. Andry and S. P. S. Sembiring, "Information Technology Governance Audit at a Hospital Using COBIT 2019," TELKOMNIKA (Telecommunication Computing Electronics and Control), vol. 20, no. 1, pp. 120–128, 2022.
[6] M. T. J. Santoso and S. S. S. Sulaiman, "Measuring IT Governance Performance Using COBIT 2019 in Government Agencies," International Journal of Advanced Computer Science and Applications (IJACSA), vol. 13, no. 4, pp. 782–790, 2022.
[7] R. S. S. Putra and A. D. Manuputty, "Evaluation of Information Technology Governance Using COBIT 2019 Framework at PT. Bank Mandiri (Persero) Tbk," International Journal of Informatics and Computation, vol. 3, no. 1, pp. 12–21, 2021.
[8] S. de Haes, W. van Grembergen, and A. Joshi, "Enterprise Governance of Information and Technology: The COBIT 2019 Framework," Journal of Information Systems, vol. 34, no. 2, pp. 241–260, 2020.
[9] T. M. G. G. S. Silva and N. J. J. Santos, "Information Technology Governance Maturity Level Assessment using COBIT 2019: A Case Study of a Financial Institution," Communications in Computer and Information Science (CCIS), vol. 1245, pp. 215–227, 2020.
[10] H. R. S. Kumala and M. Lubis, "Comparison between COBIT 5 and COBIT 2019: A Systematic Mapping Study on IT Governance," in 2022 10th International Conference on Cyber and IT Service Management (CITSM), 2022, pp. 1–7.