RISK MANAGEMENT EVALUATION IN LIBRARIES BASED ON COBIT 5
Authors
Adi Nugraha Setiadi
Gadjah Mada University
Widyawan Widyawan
Gadjah Mada University
Selo Selo
Gadjah Mada University
Abstract
Along with the increasing role of information technology (IT), the need of IT governance in organizations also increases. Therefore, an evaluation needs to be performed to discover the actual condition of IT management in the organization aforementioned. The importance of IT in an organization is to aid business activities. Universitas Ahmad Dahlan (UAD) has four campuses supported with library and therefore implements integrated libraries system that connects the library of all four campuses. However, the IT service provided for users is yet to be improved. The questions in the IT library service include policy, procedure, activities and documentation related to risk management. UAD library has to ensure that risk management available is appropriate for its necessities and business activities. UAD library also hopes that every problems meets its solution. This research aims to understand the condition of risk management applied in UAD library related to IT using COBIT 5 framework in process domain EDM03 (Ensure Risk Optimisation). In order to obtain data accuracy, raw data was collected through questionnaire, direct observation and interview with the people involved in the field. Results show that EDM03 was at level 2. This research also provides process practice recommendation and its activities that aid UAD library in its IT service.
