Information System Audit of FIF Mobile Collection at PT Federal International Finance POS Baros Using the COBIT 5 Framework

Authors

  • Basuki Rahim Setya Permana Universitas Bina Bangsa
  • Gagah Dwiki Putra Aryono Universitas Bina Bangsa
  • Sadam Nazar Aliffito Universitas Bina Bangsa

DOI:

https://doi.org/10.35877/454RI.jinav4182

Keywords:

COBIT 5, Information System Audit, DSS05, Capability Level, Mobile Collection, IT Governance, PT Federal International Finance.

Abstract

This study aims to evaluate the governance and performance of the FIF Mobile Collection information system implemented at PT Federal International Finance POS Baros using the COBIT 5 framework. As mobile-based applications become critical tools in financial operations—particularly in billing and collection activities—ensuring their security, efficiency, and alignment with organizational goals is imperative. The COBIT 5 framework was adopted to assess the maturity and capability of IT processes, with a specific focus on the DSS05 process: Manage Security Services. Data was collected through observation, interviews, and documentation analysis, and evaluated using the COBIT 5 Process Assessment Model (PAM). The results of the audit show that the DSS05 process achieved Capability Level 3, meaning the process is well-defined and implemented but not yet fully measurable or optimized. The assessment revealed that Levels 1 and 2 were fully achieved, while Level 3 was largely achieved (60–66.66%), indicating the need for performance monitoring and continual improvement mechanisms. Several gaps were identified in the areas of risk management, incident response, and user training, which present potential threats to data security and system reliability. The findings also indicate partial alignment of the system with key enterprise goals such as customer service excellence, operational agility, and information-based decision-making. However, the lack of real-time monitoring, formalized response procedures, and predictive controls hinders the organization from achieving higher governance maturity. Recommendations include implementing automated security tools, conducting regular IT risk assessments, and enhancing user awareness programs. This study concludes that while the FIF Mobile Collection system delivers operational benefits, improvements in governance maturity—guided by COBIT 5—are essential to ensuring secure, efficient, and strategically aligned system performance in the long term.

References

Ahmad, A., Maynard, S. B., & Park, S. (2015). Information security strategies: Towards an organizational multi-strategy perspective. Journal of Intelligent Manufacturing, 26(6), 1223–1235.

Ali, S., & Green, P. (2012). Effective information technology (IT) governance mechanisms: An IT outsourcing perspective. Information Systems Frontiers, 14(2), 179–193. https://doi.org/10.1007/s10796-009-9183-y

Alreemy, Z., Chang, V., Walters, R., & Wills, G. (2016). Critical success factors (CSFs) for information technology governance (ITG). International Journal of Information Management, 36(6), 907–916. https://doi.org/10.1016/j.ijinfomgt.2016.05.017

De Haes, S., Joshi, A., & Van Grembergen, W. (2013). Exploring the role of IT governance in the effective implementation of IT strategy: A case study. Journal of Information Technology Case and Application Research, 15(3), 21–38.

De Haes, S., & Van Grembergen, W. (2015). Enterprise Governance of Information Technology: Achieving Strategic Alignment and Value. Springer.

Hall, J. A. (2011). Information Technology Auditing and Assurance (4th ed.). Cengage Learning.

ISACA. (2012). COBIT 5: A Business Framework for the Governance and Management of Enterprise IT. Rolling Meadows, IL: ISACA.

Lee, Y., Park, J., & Choi, Y. (2021). Threat modeling for mobile financial services: A hybrid analysis approach. Journal of Cybersecurity and Privacy, 1(2), 180–199.

Nugroho, H. A., & Hasibuan, Z. A. (2018). Audit sistem informasi akademik dengan menggunakan framework COBIT 5. Jurnal Teknologi Informasi dan Ilmu Komputer, 5(1), 35–42.

Peterson, R. (2004). Integration strategies and tactics for information technology governance. In Strategies for Information Technology Governance (pp. 37–80). IGI Global.

Saini, H., & Chawla, R. (2020). Role of mobile applications in digital financial services. International Journal of Computer Applications, 175(14), 25–30.

Singleton, T., Bologna, G. J., Lindquist, R. J., & Singleton, A. J. (2006). Auditing IT Infrastructures for Compliance. Elsevier.

Weill, P., & Ross, J. W. (2004). IT Governance: How Top Performers Manage IT Decision Rights for Superior Results. Harvard Business Press.

Wibowo, R. A., & Irianto, G. (2021). Audit sistem mobile banking menggunakan framework COBIT 5. Jurnal Sistem Informasi Bisnis, 11(2), 87–98.

Zhou, J., & Leung, V. C. M. (2014). Application of mobile cloud computing in mobile commerce. Procedia Computer Science, 34, 495–502.

Downloads

Published

2025-06-30

How to Cite

Permana, B. R. S., Aryono, G. D. P., & Aliffito, S. N. (2025). Information System Audit of FIF Mobile Collection at PT Federal International Finance POS Baros Using the COBIT 5 Framework. JINAV: Journal of Information and Visualization, 6(1), 66–74. https://doi.org/10.35877/454RI.jinav4182

Issue

Vol. 6 No. 1 (2025)

Section

Articles
Crossref
Scopus
Google Scholar
Europe PMC