38
and
the
integrity
and
confidentiality
of
data
must
be
maintained.
Computing
resources that are lost, destroyed, or unavailability for use can lead to lost revenues
as well as increased costs to correct problems
that
may have
occurred.
Finally,
unauthorized use of the computing resources can lead to fraud and sanctions or
violations of laws and regulations, such as those related to privacy.
4. Monitor and Evaluate Domain
Within the Monitor and Evaluate domain is a process to asses IT services for quality
and
to
ensure
compliance
with
control
requirement.
Monitoring
may
be
performed
as a
self-assessment activity within IT, by an entity’s internal/IT audit group, or by
an
external
organization
such
as
a
public accounting
form.
Without
the
feedback
provided by the monitoring process, the system of internal control is not complete.
Di dalam kerangka COBIT ada 4 domain
yaitu Plan and
Organize, Acquire and
Implement, Deliver and Support dan
Monitor and Evaluate.
Plan and
Organize adalah
proses yang digunakan untuk
mengembangkan
strategi
dan
taktik
untuk
mewujudkan
strategi
organisasi
TI.
Tujuan
utama
dari proses ini adalah untuk
mengidentifikasikan
cara-cara
yang
terbaik
agar
TI
dapat
berkontribusi pada pencapaian tujuan organisasi.
Acqquire
and
Implement adalah
proses
yang
dirancang untuk mengidentifikasi,
mengembangkan atau memperoleh dan menerapkan solusi TI serta
mengintergrasikannya
ke
dalam proses
bisnis. Deliver
and
Support
adalah
proses
yang
diperlukan untuk memberikan layanan TI secara efektif dan efisien, menjamin keamanan
dan
kelangsungan
layanan,
mengatur
dukungan
layanan
termasuk
pelatuhan
dan
 |