Analysis of Hospital management information systems using cobit 5 framework case study "Saraswati Dental and Oral Hospital in Denpasar”
DOI:
https://doi.org/10.31763/businta.v7i2.639Keywords:
System, COBIT 5, Evaluation, HospitalAbstract
A hospital's operations, such as patient registration, medical management, financial management, and upgrading the services offered in the hospital, are managed and organized using an application system called a hospital management information system (HMIS). Because the lack of evaluation in the usage of HMIS has led to insufficient security in the HMIS, this research focuses on Saraswati Dental and Oral Hospital as the research site. Due to lax security measures, confidential data is readily accessible. The prevalence of duplicate data entry is an issue, and the success of HMIS performance implementation is still unknown. The COBIT 5 framework has been used to administer the HMIS at Saraswati Dental and Oral Hospital using the MEA (Monitor, Evaluate, Assess) and BAI (Build, Acquire, Implement) domains in response to these problems. This decision was made with the intention of aligning the application with the necessary features, monitoring system security, evaluating, and assessing the domain's alignment with the hospital's strategy in order to ascertain whether the current system still achieves the intended goals and maintains the controls required to satisfy the requirements. This study makes use of questionnaire, observation, and interview techniques. The capacity levels used in the COBIT 5 study were taken from ISO/IEC 15504-2-2003, and they were combined using straightforward mathematical calculations in accordance with the rules for computing capability values. Weaknesses or flaws in the security system that need to be fixed can be found by analyzing the capability levels in the MEA and BAI domains. The study's findings include suggestions for increasing the security system, which will enhance Saraswati Dental and Oral Hospital's HMIS performance and give users and patients with more beneficial outcomes
References
K. Abouelmehdi, A. Beni-Hessane, and H. Khaloufi, “Big healthcare data: preserving security and privacy,” J. Big Data, vol. 5, no. 1, p. 1, Dec. 2018, doi: 10.1186/s40537-017-0110-7.
K. Abouelmehdi, A. Beni-Hssane, H. Khaloufi, and M. Saadi, “Big data security and privacy in healthcare: A Review,” Procedia Comput. Sci., vol. 113, pp. 73–80, Jan. 2017, doi: 10.1016/j.procs.2017.08.292.
L. Arora and F. Ikbal, “Experiences of implementing hospital management information system (HMIS) at a tertiary care hospital, India,” Vilakshan - XIMB J. Manag., vol. 20, no. 1, pp. 59–81, Feb. 2023, doi: 10.1108/XJM-09-2020-0111.
M. J. Yogesh and J. Karthikeyan, “Health Informatics: Engaging Modern Healthcare Units: A Brief Overview,” Front. Public Heal., vol. 10, p. 854688, Apr. 2022, doi: 10.3389/fpubh.2022.854688.
O. K. Aramide, R. E. Ajibola, A. A. Alarape, and T. Oyinade, “Achieving Organization Objectives Through Management Information System In Organizations,” University of Nebraska - Lincoln, p. 20, 2020. [Online]. Available at : https://digitalcommons.unl.edu/ .
M. S. Rahman, M. A. Hossain, A. H. Chowdhury, and M. T. Hoque, “Role of enterprise information system management in enhancing firms competitive performance towards achieving SDGs during and after COVID-19 pandemic,” J. Enterp. Inf. Manag., vol. 35, no. 1, pp. 214–236, Feb. 2022, doi: 10.1108/JEIM-04-2021-0163.
R. A. Wahab, Q. D. Kusumawardani, and F. P. Wijaya, “The Potential Implementation of Telemedicine in Frontier, Outmost, and Underdeveloped Region of Indonesia,” in 2021 2nd International Conference on ICT for Rural Development (IC-ICTRuDev), Oct. 2021, pp. 1–6, doi: 10.1109/IC-ICTRuDev50538.2021.9656502.
D. Romodon and A. Rahardian, “Analysis of Hospital Management Information System (SIMRS) in Purwokerto Islamic Hospital,” in 4th International Conference on Vocational Innovation and Applied Sciences 2022, 2022, vol. 4, pp. 5–8, [Online]. Available at: https://nstproceeding.com/index.php/nuscientech/article/view/839.
L. Jaime and J. Barata, “How can FLOSS Support COBIT 2019? Coverage Analysis and a Conceptual Framework,” Procedia Comput. Sci., vol. 219, pp. 680–687, Jan. 2023, doi: 10.1016/J.PROCS.2023.01.339.
W. Sardjono, W. Priatna, E. Lusia, G. R. Putra, and H. Juwitasary, “Information technology implementation and its performance in educational institution using the cobit framework,” ICIC Express Lett. Part B Appl., vol. 12, no. 12, pp. 1091–1099, 2021, [Online]. Available at: http://www.icicelb.org/ellb/contents/2021/12/elb-12-12-01.pdf.
Resad Setyadi, Aedah Abd Rahman, Aang Subiyakto, and Anwar Fattah, “Trust of Information Technology Governance in High School Institution (HSI): A Conceptual Framework,” Int. J. Sci. Technol. Manag., vol. 2, no. 3, pp. 844–855, May 2021, doi: 10.46729/ijstm.v2i3.189.
F. Muttaqin, M. Idhom, F. A. Akbar, M. H. P. Swari, and E. D. Putri, “Measurement of the IT Helpdesk Capability Level Using the COBIT 5 Framework,” J. Phys. Conf. Ser., vol. 1569, no. 2, p. 022039, Jul. 2020, doi: 10.1088/1742-6596/1569/2/022039.
D. Pliatsios, P. Sarigiannidis, T. Lagkas, and A. G. Sarigiannidis, “A Survey on SCADA Systems: Secure Protocols, Incidents, Threats and Tactics,” IEEE Commun. Surv. Tutorials, vol. 22, no. 3, pp. 1942–1976, 2020, doi: 10.1109/COMST.2020.2987688.
H. M. Astuti, F. A. Muqtadiroh, E. W. Tyas Darmaningrat, and C. U. Putri, “Risks Assessment of Information Technology Processes Based on COBIT 5 Framework: A Case Study of ITS Service Desk,” Procedia Comput. Sci., vol. 124, pp. 569–576, Jan. 2017, doi: 10.1016/j.procs.2017.12.191.
M. Wolden, R. Valverde, and M. Talla, “The effectiveness of COBIT 5 Information Security Framework for reducing Cyber Attacks on Supply Chain Management System,” IFAC-PapersOnLine, vol. 48, no. 3, pp. 1846–1852, Jan. 2015, doi: 10.1016/j.ifacol.2015.06.355.
M. Evans, Y. He, L. Maglaras, and H. Janicke, “HEART-IS: A novel technique for evaluating human error-related information security incidents,” Comput. Secur., vol. 80, pp. 74–89, Jan. 2019, doi: 10.1016/j.cose.2018.09.002.
A. M. Harahap and A. Ikhwan, “Implementation of Information Technology Governance in Man 1 Medan Using the Cobit 5 Framework,” Sinkron, vol. 8, no. 1, pp. 241–246, Jan. 2023, doi: 10.33395/sinkron.v8i1.11936.
M. AB, - Prihandoko, P. E, and W. C, “Analyzing COBIT 5 IT Audit Framework Implementation using AHP Methodology,” JOIV Int. J. Informatics Vis., vol. 1, no. 2, p. 33, Apr. 2017, doi: 10.30630/joiv.1.2.18.
J. S. Neto, R. Almeida, P. L. Pinto, and M. M. da Silva, “A COBIT 5 PAM Update Compliant With ISO/IEC 330xx Family,” ISACA, pp. 1-5, 2018. https://www.isaca.org/resources/isaca-journal/issues/2018/volume-1/a-cobit-5-pam-update-compliant-with-isoiec-330xx-family.
A. F. Apriliana and E. Suryani, “Gap Analysis of IT Governance in Supporting Integration of Organizational Universities (Case Study: University of General Achmad Yani Yogyakarta),” IPTEK J. Proc. Ser., vol. 0, no. 5, p. 396, Dec. 2019, doi: 10.12962/j23546026.y2019i5.6374.
J. van Wyk and R. Rudman, “COBIT 5 compliance: best practices cognitive computing risk assessment and control checklist,” Meditari Account. Res., vol. 27, no. 5, pp. 761–788, Oct. 2019, doi: 10.1108/MEDAR-04-2018-0325.
S. D. Rehatta and A. D. Manuputty, “Measurement of the Maturity Level of IT Governance in Implementing Personnel Management Information System Using the MEA Domain COBIT 5 Framework In Regional Personnel, Education and Training Agency,” J. Inf. Syst. Informatics, vol. 1, no. 2, pp. 123–135, Sep. 2019, doi: 10.33557/journalisi.v1i2.16.
ISACA, COBIT 5 - A Business Framework for the Governance and Management of Enterprise IT. pp. 1-94, 2012. [Online]. Available at: https://privacy.sccgov.org/ .
R. Yaniar Sianida, F. Nur Afiana, and R. Wahyudi, “IS Governance Evaluation Using COBIT 5 Framework on the Central Statistics Agency of Banyumas District,” J. Comput. Sci. Eng., vol. 1, no. 1, pp. 1–9, Feb. 2020, doi: 10.36596/jcse.v1i1.9.
A. Harits, G. M. Noer, and A. P. Widodo, “Capability Level Measurement Using COBIT 5 Framework (Case Study: PT. Jasa Cendekia Indonesia),” J. Inf. Syst. Informatics, vol. 3, no. 2, pp. 341–351, Jun. 2021, doi: 10.33557/journalisi.v3i2.134.
W. Gunawan, E. P. Kalensun, A. N. Fajar, and Sfenrianto, “Applying COBIT 5 in Higher Education,” IOP Conf. Ser. Mater. Sci. Eng., vol. 420, no. 1, p. 012108, Oct. 2018, doi: 10.1088/1757-899X/420/1/012108.
S. Fuada, “Incident Management of Information Technology in the Indonesia Higher Education based on COBIT Framework: A Review,” EAI Endorsed Trans. Energy Web, vol. 6, no. 22, p. 156387, Jul. 2018, doi: 10.4108/eai.13-7-2018.156387.
A. Pasquini and E. Galie, “COBIT 5 and the Process Capability Model. Improvements Provided for IT Governance Process,” Proc. FIKUSZ ’13, pp. 67–76, 2013. [Online]. Available at: https://ideas.repec.org/h/pkk/sfyr13/67-76.html
