SIMAK UNKHAIR INFORMATION SECURITY SYSTEM AUDIT USING COBIT 5 (CASE STUDY OF SIMAK KHAIRUN UNIVERSITY)

Abstract

The role of information technology is to add value in a company or education service sector. Khairun University is one of the education service sectors or State Universities in North Maluku Province which also has information technology in the form of SIMAK (Unkhair Academic Information System) which is used for academic purposes that can be accessed by students and lecturers. There are many features in the system, such as new student registration, course scheduling, KRS filling, student presentations and lecturers and others. SIMAK has been implemented at Khairun University but the security process has never been carried out so it is not known whether the processes in SIMAK are as expected and able to facilitate the business processes of Khairun University. Based on the results of the research that has been carried out, it can be concluded that the results of the capability level or security capability level of SIMAK Khairun University in the overall APO13 and DSS05 domain processes are at level 2, namely managed processes with a value of 1.74 at this level the process has been implemented and managed (planned). , monitored and adjusted) appropriately to the work product, controlled and maintained. these processes operate within limits that are continuously and improved to meet current capability requirements and for current values still sufficiently far from the expected value at level 5 and to reduce the gap between the current capability level and the desired capability level. If this is to be achieved, then SIMAK must fulfill the managed process so that the current capability level is even better and the level of capability that is at level 2 can be increased to level 3. In line with that, SIMAK in implementation is getting closer to the goal of meeting the SIMAK security standard