Assessment Manajemen Risiko Keamanan Sistem Informasi Menggunakan Framework ITIL V3 Domain Service Operation

Authors

  • Andi Sofyan Anas Program Studi Ilmu Komputer, Universitas Bumigora, Indonesia
  • Rifqi Hammad Program Studi Rekayasa Perangkat Lunak, Universitas Bumigora, Indonesia
  • I Nyoman Switrayana Program Studi Ilmu Komputer, Universitas Bumigora, Indonesia
  • Muhammad Haris Nasri Program Studi Teknologi Informasi, Universitas Bumigora, Indonesia

DOI:

https://doi.org/10.35746/jtim.v8i3.1037

Keywords:

ITIL V3, information system security, service operation, maturity level, gap analysis

Abstract

Information system security is a critical aspect in supporting the continuity of information tech-nology services, particularly in educational institutions that heavily rely on digital systems. This study aims to evaluate the maturity level of information system security risk management using the Information Technology Infrastructure Library (ITIL) V3 framework within the Service Oper-ation domain. This research employs a quantitative approach with total sampling, involving 13 respondents who are directly engaged in information system management at the research site. Data were collected through questionnaires and interviews. The research instrument was devel-oped based on four subdomains of ITIL V3 Service Operation: Event Management, Incident Man-agement, Problem Management, and Access Management. Instrument validity was tested using the Pearson productmoment correlation, and reliability was measured using Cronbach's Alpha. The results indicate that the overall maturity level is 3.44, which falls into the Defined Process category (Level 3), approaching Managed and Measurable (Level 4). Event Management obtained the highest value at 3.88 (Level 4), followed by Access Management at 3.37 (Level 3), Incident Management at 3.32 (Level 3), and Problem Management at 3.21 (Level 3). Gap analysis reveals a discrepancy of 1.56 from the expected optimized condition at Level 5. These findings suggest that although processes have been implemented and documented, improvements are still required par-ticularly in root cause analysis (Problem Management), access control (Access Management), and continuous performance evaluation. This study is expected to serve as a reference for enhancing IT service governance and information system security management based on ITIL practices.

Downloads

Download data is not yet available.

References

D. MacLean and R. Titah, “Implementation and Impacts of IT Service Management in the IT Function,” Int. J. Inf. Manage., vol. 70, p. 102628, 2023, https://doi.org/10.1016/j.ijinfomgt.2023.102628.

J. Serrano, J. Faustino, D. Adriano, R. Pereira, and M. Mira da Silva, “An IT Service Management Literature Review: Challenges, Benefits, Opportunities and Implementation Practices,” Information, vol. 12, no. 3, p. 111, 2021, https://doi.org/10.3390/info12030111.

Y. Riyadi, M. Wahidin, and A. Elanda, “Systematic Literature Review Implementasi Service Operation Dalam Kerangka Kerja Information Technology Infrastructure Library (ITIL) di Indonesia: Tren Penelitian, Manfaat dan Tantangan,” J. Interkom J. Publ. Ilm. Bid. Teknol. Inf. dan Komun., vol. 17, no. 2, pp. 81–97, 2022, https://doi.org/10.35969/interkom.v17i2.232.

H. Cho and K. Cho, “Impact of Security Management Activities on Corporate Performance,” systems, vol. 13, no. 8, p. 633, 2025, doi: https://doi.org/10.3390/systems13080633.

M. Saraiva and R. Ribeiro, “Analysis of the ITIL V3 and 4, Exploring the Impacts on ITSM of Implementing the New Ver-sion,” CAPSI 2025 Proceedings., 2025, https://aisel.aisnet.org/capsi2025/28.

K. R. Fauzan, I. B. Nurdianto, Y. Muhammad, M. W. Santosa, O. G. Prakoso, and A. Wijanarko, “Analysis of the Imple-mentation of ITIL V3 Domain Service Operation in Enhancing the Quality of Information Technology Services,” Int. J. Appl. Inf. Manag., vol. 3, no. 4, pp. 177–183, 2023, https://doi.org/10.47738/ijaim.v3i4.106.

A. Stephanie, A. Fayola, R. Darianty, and A. Maulana, “Implementation and Impacts of ITIL Service Operation within the Telecommunication Industry,” IJISIT Int. J. Comput. Sci. Inf. Technol., vol. 1, no. 1, pp. 31–40, 2024, https://doi.org/10.55123/ijisit.v1i1.22.

M. Ronaldo and M. Zaki, “Evaluasi Manajemen Layanan Teknologi Informasi Berdasarkan Proses Service Operation ITIL V3 pada Puskesmas Pasir Putih,” Sisfo J. Ilm. Sist. Inf., vol. 9, no. 1, 2025, https://doi.org/10.29103/sisfo.v9i1.21795.

S. Hastini and W. Cholil, “Analisa Komponen ITSM Pada E-learning Perguruan Tinggi Di Kota Palembang Menggunakan ITIL V.3,” J. Tekno Kompak, vol. 15, no. 1, pp. 79–91, 2021.

K. P. Sholekha et al., “Optimizing IT Service Strategies: A Performance Assessment through ITIL V3 in PT XYZ IT Opera-tions Division,” IJIIS Int. J. Informatics Inf. Syst., vol. 6, no. 4, 2023, https://doi.org/10.47738/ijiis.v6i4.176.

D. Imbaquingo-Esparza, J. Díaz, M. R. Egas, W. Fuertes, and D. Molina, “Information Security at Higher Education Insti-tutions: A Systematic Literature Review,” Proc. TICEC 2022, Commun. Comput. Inf. Sci., vol. 1648, pp. 279–294, 2022, https://doi.org/10.1007/978-3-031-18272-3_20.

D. Ikhtiarti and T. Sutabri, “Analisis IT Service Management (ITSM) Layanan E-Learning Universitas Bina Darma Menggunakan Framework ITIL V3,” J. Teknol. dan Ilmu Komput. Prima, vol. 6, no. 1, 2023, https://doi.org/10.34012/jutikomp.v6i1.3598.

J. Merchan-Lima, F. Astudillo-Salinas, L. Tello-Oquendo, A. Vazquez-Rodas, F. Gallegos-Segovia, and P. Vintimil-la-Tapia, “Information Security Management Frameworks and Strategies in Higher Education Institutions: A Systematic Review,” Ann. Telecommun., vol. 76, pp. 255–270, 2021, https://doi.org/10.1007/s12243-020-00783-2.

F. P. Sari and S. A. Rizki, “Analisis Dan Pengukuran Tingkat Kematangan Manajemen Layanan Teknologi Informasi Pada Aplikasi Mytelkomsel Menggunakan Framework ITIL V3,” J. Sains Student Res., vol. 4, no. 1, 2026, https://doi.org/10.61722/jssr.v4i1.8216.

AXELOS, ITIL Foundation: ITIL 4 Edition. London: TSO (The Stationery Office), 2019.

I. Choldun and M. Mulyati, “Analisis It Service Management (Itsm) Menggunakan Framework Itil V.3 Pada Dinas Per-pustakaan Dan Kearsipan Kota Palembang,” J. Rekayasa Sist. Inf. dan Teknol., vol. 3, no. 3, 2026, https://doi.org/10.70248/jrsit.v3i3.3449.

A. R. Hannuella, D. Lim, V. J. Samudra, D. Firgana, H. Dixman, and D. S. Melati, “Analisis It Service Management (Itsm) Layanan E-Learning Universitas Internasional Batam Menggunakan Framework ITIL V3,” Technol. J. Ilm., vol. 15, no. 3, pp. 400–410, 2024, http://dx.doi.org/10.31602/tji.v15i3.15170.

M. Y. Rahmana and Mulyati, “Evaluasi Penerapan IT Service Management (ITSM) dengan Framework ITIL V3 di Uni-versitas XYZ,” J. Inform. dan Tek. Elektro Terap., vol. 13, no. 3, 2025, https://doi.org/10.23960/jitet.v13i3.7196.

Y. M. Maulana, “Model Analisis Incident Management pada Layanan Teknologi Informasi Berdasarkan Framework In-formation Technology Infrastructure Library V3,” J. Saintekom Sains, Teknol. Komput. dan Manaj., vol. 13, no. 2, pp. 123–135, 2023, https://doi.org/10.33020/saintekom.v13i2.398.

T. R. Eikebrokk and J. Iden, “Implementation and Impacts of IT Service Management in the IT Function,” Int. J. Inf. Manag., vol. 70, p. 102628, 2023, https://doi.org/10.1016/j.ijinfomgt.2023.102628.

Downloads

Published

2026-07-06

Issue

Section

Articles

How to Cite

[1]
A. S. Anas, R. Hammad, I. N. Switrayana, and M. Haris Nasri, “Assessment Manajemen Risiko Keamanan Sistem Informasi Menggunakan Framework ITIL V3 Domain Service Operation”, jtim, vol. 8, no. 3, pp. 524–534, Jul. 2026, doi: 10.35746/jtim.v8i3.1037.

Most read articles by the same author(s)

1 2 > >>