Development of Audit Working Papers and Maturity Levels for Helpdesk Information Technology Governance Using COBIT 2019 in the DSS Domain: (A Case Study of XYZ University)

Authors

  • Syifa'ul Aini Zahroh UNESA
  • Renny Sari Dewi Universitas Negeri Surabaya
  • Rindu Puspita Wibawa Universitas Negeri Surabaya

Keywords:

Information System Audit, COBIT 2019, Audit Instrument, Deliver service and Support, Helpdesk

Abstract

The implementation of the helpdesk information system at University XZY in Surabaya plays a crucial role in supporting the management of complaints from students and academic staff. However, several issues have been identified, including inadequate user data verification mechanisms, potential privacy violations due to open access to complaint reports by other users, and the absence of a structured incident resolution report. These challenges impact the performance and integrity of the information system. To address these problems, this study aims to design an audit working paper using the COBIT 2019 framework, specifically focusing on DSS02 (Managed Service Requests and Incidents), DSS03 (Managed Problems), and DSS04 (Managed Continuity) to evaluate and improve the system. The findings indicate that all three domains are at capability level 3 (Defined), which implies that processes are documented but not yet measured consistently. This study produces an audit working paper, improvement recommendations, and an implementation cost estimation, which can serve as a strategic reference for university XYZ in enhancing the quality, security, and sustainability of its helpdesk system.

Downloads

Download data is not yet available.

References

Amri, A. (2015). Manajemen risiko-ISO 31000. ITB BLOGS, 15.

Amrulloh, A., Wibisono, G., Mido, A. R., & others. (2020a). Audit Tata Kelola Teknologi Informasi Pada Perguruan Tinggi Menggunakan Cobit 5 Fokus Proses Pelayanan: Array. Jurnal Ilmiah KOMPUTASI, 19(1), 115–120.

Arifa, S., Isnanto, R., & Kridalukmana, R. (t.t.-a). ANALYSIS OF UNIVERSITY HELPDESK INFORMATION TECHNOLOGY GOVERNANCE USING COBIT 2019 AND FUZZY AHP. Jurnal Teknologi Informasi Universitas Lambung Mangkurat (JTIULM), 8(2), 31–40.

Astuti, H. M., Muqtadiroh, F. A., Darmaningrat, E. W. T., & Putri, C. U. (2017). Risks assessment of information technology processes based on COBIT 5 framework: A case study of ITS service desk. Procedia Computer Science, 124, 569–576.

Destriani, M., & Putra, Y. H. (2023). Rencana Audit Tata Kelola Sistem Informasi Di Universitas Subang Menggunakan Framework COBIT 2019. Jurnal Tata Kelola dan Kerangka Kerja Teknologi Informasi, 9(1), 19–33.

Desy, I., Hidayanto, B. C., & Astuti, H. M. (2014). Penilaian risiko keamanan informasi menggunakan metode failure mode and effects analysis di divisi TI PT. Bank XYZ Surabaya. SESINDO 2014, 2014.

Hanif, D. A., & Suryaningrum, D. H. (2024). ANALISIS PROSEDUR KERTAS KERJA AUDIT BEBAN PADA PT. DEALER MERCEDES BENZ OLEH KAP KPS. Jurnal Revenue: Jurnal Ilmiah Akuntansi, 5(1), 771–778.

Indrawati, A. R., Rozas, I. S., & Wahyudi, N. (2023). Penyusunan Instrumen Maturity Assessment Design Toolkit Berbasis COBIT 2019. Edu Komputika Journal, 10(1), 64–71.

Ivander, D. L., & Papilaya, F. S. (2023). Analisis Manajemen Risiko Teknologi Informasi Menggunakan Framework ISO 31000: 2018. KLIK: Kajian Ilmiah Informatika Dan Komputer, 4(2), 1042–1051.

Khairunnisa, P., Nasution, N. S., Nirwana, I., & Megawati, M. (2024b). EVALUASI TINGKAT CAPABILITY SISTEM INFORMASI AKADEMIK MENGGUNAKAN FRAMEWORK COBIT 2019 DI PERGURUAN TINGGI XYZ. Scientica: Jurnal Ilmiah Sains dan Teknologi, 2(8), 14–20.

Kumar, P. R., Raj, P. H., & Jelciana, P. (2018). Exploring data security issues and solutions in cloud computing. Procedia Computer Science, 125, 691–697.

Ramadhan, D. L., Febriansyah, R., & Dewi, R. S. (2020). Analisis Manajemen Risiko Menggunakan ISO 31000 pada Smart Canteen SMA XYZ. JURIKOM (Jurnal Ris. Komputer), 7(1), 91.

Safitri, R. A., Mutiah, N., & Febriyanto, F. (2023). Information technology services management audit using the cobit and itil framework. JURTEKSI (Jurnal Teknologi dan Sistem Informasi), 9(2), 231–238.

Saleh, M., Yusuf, I., & Sujaini, H. (2021). Penerapan Framework COBIT 2019 pada Audit Teknologi Informasi di Politeknik Sambas. JEPIN (Jurnal Edukasi dan Penelitian Informatika), 7(2), 204–209.

Siddik, M. K., Novriyanto, N., Vitriani, Y., & Darmizal, T. (2024). Audit Tata Kelola Teknologi Informasi Pada Universitas Hang Tuah Pada Domain Deliver and Support COBIT 4.1: Audit of Information Technology Governance at Hang Tuah University using the Deliver and Support Domain of COBIT 4.1. MALCOM: Indonesian Journal of Machine Learning and Computer Science, 4(3), 725–735.

Wabang, K., Rahma, Y., Widodo, A. P., & Nugraha, F. (2021). Tata Kelola Teknologi Informasi Menggunakan Cobit 2019 Pada Psi Universitas Muria Kudus. JURTEKSI (Jurnal Teknologi dan Sistem Informasi), 7(3), 275–282.

Yee, C. K., & Zolkipli, M. F. (2021). Review on confidentiality, integrity and availability in information security. Journal of ICT in Education, 8(2), 34–42.

Downloads

Published

2025-07-28

How to Cite

Zahroh, S. A., Dewi, R. S., & Wibawa, R. P. (2025). Development of Audit Working Papers and Maturity Levels for Helpdesk Information Technology Governance Using COBIT 2019 in the DSS Domain: (A Case Study of XYZ University). Journal of Digital Business and Innovation Management, 4(2). Retrieved from https://ejournal.unesa.ac.id/index.php/jdbim/article/view/71778

Issue

Vol. 4 No. 2 (2025): December 2025-Article in Press

Section

Articles

License

Copyright (c) 2025 Journal of Digital Business and Innovation Management

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

Abstract views: 6 , PDF Downloads: 16