Control Evaluation Information System Savings

The purpose of this research is to evaluate the control of information system savings in the banking and to identify the weaknesses and problem happened in those saving systems. Research method used are book studies by collecting data and information needed and field studies by interview, observation, questioner, and checklist using COBIT method as a standard to assess the information system control of the company. The expected result about the evaluation result that show in the problem happened and recommendation given as the evaluation report and to give a view about the control done by the company. Conclusion took from this research that this banking company has met standards although some weaknesses still exists in the system.Index Terms - Control Information System, Savings


INTRODUCTION
B anking industry is one of the industries where the IT holds an important role. It needs a secure, fast, strong IS in every data processing in large amount and operations. Banking also has to adjust with the needed and request from the customer as a business strategy in a large scale. IT used in banking for whole of the business process.
According to Hu et al. [3], access control allowed the activities of legitimate user, implement control access LQ PDQ\ SODFH DQG GLIIHUHQW OHYHO E\ SURWHFWLQJ WKH ¿OHV and directories. The objectives are to described the term of protecting and make the information available to the users and application. The Access control policies are high level requirement that will show how access is managed and who, under the circumstances and may access the information. An access model is a formal presentation of the security policy enforced by the system and useful for proving the theoretical limitation of a system. According to Mishra and Dhillon [6], value in the internal control of IS important to be developed which it helps the company to control the objective in the WKUHH ZD\V ¿UVW REMHFWLYH FUHDWHG ZLWK LQGLYLGXDO YDOXHV KHOS in grounding of conceptual factors, second internal control provide the theoretical framework for rigorous investigation, and third the value driven help to aligning the individual and organizational objective. Control of IS needs three main forms such as input, behavioral, and output. The scope of control becomes a highlight of management level where the FRQWURO FDQ EH SODFHG DQG VSHFL¿HG This research will take a place in B. bank which has an IT architecture such Core Banking system become the main of the banking operational, Banking Delivery System to give the simplicity to the customer and Management Support system will support to make a decision about the information system.

RESEARCH METHOD
5HVHDUFK PHWKRGV XVHG DUH ERRN VWXGLHV DQG ¿HOG studies. Book studies by done some research from reference books, and journal according to the research topic. Then for ¿HOG VWXGLHV LW GRQH E\ LQWHUYLHZ WKURXJK WKH H[SHUW WR JHW some information about savings in the company, also done by doing an observation to looking for directly the ongoing information system in the company, then using the checklist to make the question about the control objective perspective and internal control of balance scorecard. Finally, questionnaires are used to obtain data using maturity level and internal perspective of COBIT.

LITERATURE RESEARCH
According to Bank of Jamaica [1], internal control gives a design that can prove a reasonable assurance regarding in achievement of institution's objective. Internal control become a process that effected by the Institution BOD, management, and others to achieve the effectiveness DQG HI¿FLHQF\ RI RSHUDWLRQ DQG WKH UHDGDELOLW\ RI ¿QDQFLDO reporting that is compliant with the applicable laws and regulation. There's some factors that comprise the control environment, such: (1) BOD actively concerned in the corporate governance and they take a responsible to ensure that the institution is appropriately and effectively managed and controlled. (2) management can manages and operates the ¿QDQFLDO LQVWLWXWLRQ LQ D VRXQG PDQQHU D FRQWURO SURFHGXUH supported by the effective management information system WR H[SRVXUH WKH ULVN DQG DQ LQGHSHQGHQW DXGLW PHFKDQLVP to monitor the effectiveness of the control procedures. The scope of control system are utilized by the institution to conduct their business depend on the nature and diversify of

EXVLQHVV YROXPH VL]H DQG FRPSOH[LW\ RI WUDQVDFWLRQ LQ ,7
According to Bone [2], IT control becomes critical for the company to understanding the assurance against the standard. Identifying the key control objectives will ensure WKH ,7 FRQWURO LV D FULWLFDO SDUW RI WKH PDSSLQJ H[HUFLVH ,W LV LPSHUDWLYH WKDW VXEMHFW PDWWHU H[SHUW LQ ,7 RSHUDWLRQ ULVN management and compliance all participate in assessing and GH¿QLQJ WKH FRQWURO NH\ On this evaluation control, COBIT will be used as IUDPHZRUN $FFRUGLQJ WR -RKDQQHVVHQ > @ &2%,7 H[SODLQV an IT process and delivers the information that the business QHHGV LQ DFKLHYHPHQW RI WKH REMHFWLYH &2%,7 FRQVLVW high level controls, which one for each IT process contained LQ IRXU GRPDLQV &2%,7 IRFXV RQ SDUWV PDQDJHPHQW guidelines which ensure the effectively management between the business process and information system, (2) detailed FRQWURO REMHFWLYH WR PDLQWDLQLQJ WKH SUR¿WDELOLW\ LQ WKH

Eddy Sutedjo, Yulianty, Iwan Kurniawan
Abstract -The purpose of this research is to evaluate the control of information system savings in the banking and to identify the weaknesses and problem happened in those saving systems. Research method used are book studies by collecting GDWD DQG LQIRUPDWLRQ QHHGHG DQG ¿HOG VWXGLHV E\ LQWHUYLHZ REVHUYDWLRQ TXHVWLRQHU DQG FKHFNOLVW XVLQJ &2%,7 PHWKRG DV D standard to assess the information system control of the company. The expected result about the evaluation result that show in the problem happened and recommendation given as the evaluation report and to give a view about the control done by the FRPSDQ\ &RQFOXVLRQ WRRN IURP WKLV UHVHDUFK WKDW WKLV EDQNLQJ FRPSDQ\ KDV PHW VWDQGDUGV DOWKRXJK VRPH ZHDNQHVVHV VWLOO exists in the system. LQWHJULW\ DYDLODELOLW\ FRPSOLDQFH (7) reliability. IT goals provide a business related and more UH¿QHG EDVLV WR HVWDEOLVK WKH EXVLQHVV UHTXLUHPHQWV DQG developing the metrics that allow the measurement against the goals. Then, for IT resources it will be four IT resources in COBIT: application, information, Infrastructure, and people. COBIT framework provides a reference process model and common language for everyone in an enterprise to view DQG PDQDJHV WKH ,7 DFWLYLWLHV &2%,7 KDYH PDLQ GRPDLQ such: Planning and organize (PO) to provide direction to solution delivery (AI) and service delivery (DS), Acquire and Implement (AI) to provide the solution and passes them to be turned into service, Deliver and Support (DS) to receives the solution and make them usable by the end user, and Monitor and evaluate (ME) to monitor all the process to ensure the direction provided is allowed.

RESEARCH RESULT
After collected data process, we can get the total score of every process in the internal perspective. From PO-01 to PO-10 process for the maturity level model from level 0-5 DQG WKH LQIRUPDWLRQ FRPH IURP ¿YH UHVSRQGHQWV ZH FDQ VHH that in this level have a standard documentation procedure and has been communicated by the company and they starting to use the development system method but there's no maintenance from the management and it achieved in level 3. The score recap for PO- there's still any gap between the target and company condition in the reality, but the difference wasn't so far, so the FRPSDQ\ QHHG WR LPSURYH WKH HI¿FLHQF\ DQG HIIHFWLYHQHVV WR the system to achieve the target.

CONCLUSION
From this research we can take some conclusion. Information system savings in the company are good although further developments according to arising needs are recommended.
There are still some weaknesses in the Information System Savings that has been found, such as there is no procedure to protect the security system and the risk analysis still happened in the savings. Beside that the policy about the password application STU C 12.0 is not in its best mode VLQFH FRPELQDWLRQ SDVVZRUG LV QRW HQIRUFHG /DVWO\ WKH company does not have a disposal procedure as of the time of research.