Analysis Security of SIA Based DSS05 on COBIT 5 Using Capability Maturity Model Integration (CMMI)

Eko Handoyo, rusydi Umar, Imam Riadi


A secure academic information system is part of the college. The security of academic information systems is very important to maintain information optimally and safely. Along with the development of technology, academic information systems are often misused by some irresponsible parties that can cause threats. To prevent these things from happening, it is necessary to know the extent to which the security of the academic information system of universities is conducted by evaluating. So the research was conducted to determine the Maturity Level on the governance of the security of University Ahmad Dahlan academic information system by using the COBIT 5 framework on the DSS05 domain. The DSS05 domain on COBIT 5 is a good framework to be used in implementing and evaluating related to the security of academic information systems. Whereas to find out the achievement of evaluation of academic information system security level, CMMI method is needed. The combination of the COBIT 5 framework on the DSS05 domain using the CMMI method in academic information system security is able to provide a level of achievement in the form of a Maturity Level value. The results of the COBIT 5 framework analysis of the DSS05 domain use the CMMI method to get a Maturity level of 4,458 so that it determines the achievement of the evaluation of academic information systems at the tertiary level is Managed and Measurable. This level, universities are increasingly open to technological developments. Universities have applied the quantification concept in each process, and are always monitored and controlled for performance in the security of academic information systems.


CMMI, COBIT 5, Security SIA, Managed and Measurable, Maturity Level,

Full Text:



R. Umar, I. Riadi, and E. Handoyo, “Analisis Tata Kelola Teknologi Informasi Menggunakan Framework COBIT 5 Pada Domain Delivery, Service, And Support (DSS),†in Seminar Nasional Teknologi Informasi dan Komunikasi - SEMANTIKOM 2017, 2017, pp. 41–48.

L. F. Fathoni et al., “Application Information System Based Health Services Android,†J. Ilmu Tek. Elektro Komput. dan Inform., vol. 2, no. 1, pp. 39–48, 2016.

I. Muslimin, S. P. Hadi, and E. Nugroho, “An Evaluation Model Using Perceived User Technology Organization Fit Variable for Evaluating the Success of Information Systems,†vol. 4, no. 2, pp. 86–94, 2017.

Y. W, I. Riadi, and A. Yudhana, “Analisis Keamanan Webserver Menggunakan Metode Penetrasi Testing,†in Annual Research Seminar, 2016, vol. 2, no. 1, pp. 300–304.

E. Kurniawan and I. Riadi, “Security level analysis of academic information systems based on standard ISO 27002:2003 using SSE-CMM,†Int. J. Comput. Sci. Inf. Secur., vol. 16, no. 1, pp. 139–147, 2018.

Rosmiati, I. Riadi, and Y. Prayudi, “A Maturity Level Framework for Measurement of Information Security Performance Imam Riadi,†Int. J. Comput. Appl., vol. 141, no. 8, pp. 975–8887, 2016.

N. Hermaduanti and I. Riadi, “Automation framework for rogue access point mitigation in ieee 802.1X-based WLAN,†J. Theor. Appl. Inf. Technol., vol. 93, no. 2, pp. 287–296, 2016.

E. Hicham, B. Boulafdour, M. Makoudi, and B. Regragui, “Information security, 4TH wave,†J. Theor. Appl. Inf. Technol., vol. 43, no. 1, pp. 1–7, 2012.

F. Latifi and H. Zarrabi, “A COBIT5 Framework for IoT Risk Management,†Int. J. Comput. Appl., vol. 170, no. 8, pp. 40–43, 2017.

V. Konttinen, Towards Disciplined Software Development, no. May. 2016.

J. F. Andry, “Audit of IT Governance Based on COBIT 5 Assessments: A Case Study,†J. Teknol. dan Sist. Inf., vol. 2, no. 2, p. 27, 2016.

P. D. Syafitri, “Penilaian Kualitas Pengembangan Sistem Informasi Pada Perusahaan Distributor,†J. Sist. Inf. Bisnis, vol. 10, no. 01, pp. 15–27, 2016.

CMMI Product Team, CMMI® for Development, Version 1.3. 2010.

P. Rahayu and D. I. Sensuse, “Penilaian Implementasi e-Government di PUSTEKOM Kemendikbud berbasis metode PEGI,†J. Sist. Inf. Bisnis, vol. 02, pp. 139–145, 2017.

A. Prasetyo and N. Mariana, “Analisis Tata Kelola Teknologi Informasi ( It Governance ) pada Bidang Akademik dengan Cobit FrameWork Studi Kasus pada Universitas Stikubank Semarang,†J. Teknol. Inf. Din., vol. 16, no. 2, pp. 139–149, 2011.



  • There are currently no refbacks.

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.