期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2020
卷号:98
期号:21
页码:3357-3367
出版社:Journal of Theoretical and Applied
摘要:Information technology is an important key in the company because it offers efficiency and authority to achieve goals. This can be seen from the development of technology in pharmaceutical companies in Jakarta that use Human Resource Information Systems (HRIS). HRIS provides services in the form of management information for all employees in the company. Currently, not many have conducted risk analysis on the information systems used. On the one hand, information systems have become a part that is difficult to access in almost every business process in the company. The use of technology can present threats that can affect applicable risks. Therefore, companies need to pay attention to risk management to anticipate the dangers that can occur. The study uses the COBIT 5 framework to analyze the risks that occur in the company by using the domain Monitor, Evaluate, Assessment MEA02 because it is related to the transparency process for the main stakeholders regarding the appropriateness of the internal control system so that it can ensure the achievement of company goals and objectives and provide sufficient knowledge about the system risk of human resource information. The research starts from references, determines the domains and processes used, analyzes HRIS, compiles interview lists, analyzes interview results, calculates process capability models from HRIS implementation and analyzes HRIS to risk management. The output of this study is the acquisition of risk management documents in pharmaceutical companies that contain lists of risks, level risks, impacts, risks, and the results of recommendations using the MEA02 domain from COBIT 5 and a SWOT analysis.
关键词:COBIT 5;Monitor-Evaluate-Assess (MEA);Human Resource Information System (HRIS).
