An analysis of IT assessment security maturity in higher education institution

Misni Harjo Suwito, Shinchi Matsumoto, Junpei Kawamoto, Dieter Gollmann, Kouichi Sakurai

Research output: Chapter in Book/Report/Conference proceedingConference contribution

8 Citations (Scopus)


The information technology (IT) has been applied widely in Indonesia Higher Education Institution for various services. Many organizations responsible for managing the IT infrastructure, however, rarely have a framework for assessing the security maturity level of their information management. The implementation of a framework is one of solutions, but has not been yet maximized. Therefore we suggest to combine several frameworks in hope that they can be complementary. The combination of different frameworks will be more effective to monitoring the security maturity level by using an assessment security maturity management. This assessment security maturity management is a combination of framework control objective from IT Governance COBIT® 4.1 (Control Objectives for Information and related Technology) with Management Service in ITIL v3 (Information Technology Infrastructure Library) and ISO/IEC 27001. Since assessment of security maturity management is measured using COBIT® 4.1 assessment framework, and before it was adjusted with the ISO 27001 framework applied maximal. This paper present the results of assessment maturity security management, mapping of combination framework providing an indicator of security maturity level at one of university in Jakarta. A case study conducted shows that combination of some frameworks to support assessment of security maturity management level becomes more effective and efficient.

Original languageEnglish
Title of host publicationInformation Science and Applications, ICISA 2016
EditorsKuinam J. Kim, Nikolai Joukov
PublisherSpringer Verlag
Number of pages13
ISBN (Print)9789811005565
Publication statusPublished - 2016
EventInternational Conference on Information Science and Applications, ICISA 2016 - Minh City, Viet Nam
Duration: Feb 15 2016Feb 18 2016

Publication series

NameLecture Notes in Electrical Engineering
ISSN (Print)1876-1100
ISSN (Electronic)1876-1119


OtherInternational Conference on Information Science and Applications, ICISA 2016
Country/TerritoryViet Nam
CityMinh City

All Science Journal Classification (ASJC) codes

  • Industrial and Manufacturing Engineering


Dive into the research topics of 'An analysis of IT assessment security maturity in higher education institution'. Together they form a unique fingerprint.

Cite this