Data Security Management and Audit of Healthcare Data: A Case Study of SISPEC19 Project


  • Nurul Wahda R. Kasad Faculty of Industrial Engineering, Telkom University, Bandung, Indonesia Author
  • Deden Witarsyah Jacob Faculty of Industrial Engineering, Telkom University, Bandung, Indonesia Author
  • Ramdhan Nugraha Department of IT Convergence Engineering, Kumoh National Institute of Technology Author



DAMA, Security, Data, Control.


Data security is the biggest challenge with personal data and state secrets threats. Digital transformation is increasing in various industries, including the government industry. One of the causes of this is the Covid19 pandemic which imposes conditions where all activities can be carried out smoothly even though they cannot interact directly. In this study, an analysis was carried out regarding auditing and data security management on health data in a government-owned health information system using the DAMA-DMBOK approach as a data governance standard. Then an audit is carried out to measure the success rate of implementing security on information systems using COBIT 2019 as a standard for IT governance.


Abdollahbeigi, B., & Salehi, F. (2020). THE CRITICAL FACTORS IF IT GOVERNANCE AND ITS IMPACT. 81-99.

ACTIAN. (n.d.). Data Management. Retrieved December 2022, 30, from

Atlan. (2022, December 9). What is a Data Governance Framework and How Can You Create One for Your Organization? Retrieved December 12, 2022, from

Atlan Pte. Ltd. (2022, September 29). 6 Commonly Referenced Data Governance Frameworks in 2022 and Why Your Organization Needs One. Retrieved from atlan:

Atrinawati, L., Ramadhan, E., Fiqar, T., Wiranti, Y., Abdullah, A., Saputra, H., & Tandirau, D. (2021). Assessment of Process Capability Level in University XYZ Based on COBIT 2019.

Bertino, E., & Ferrari, E. (2017). Big Data Security and Privacy. 31, 425-439.

Chmielewska, M., Stokwiszewski, J., Markowska, J., & Hermanowski, T. (2022). Evaluating Organizational Performance of Public Hospitals using the McKinsey 7-S Health Framework. BMC Health Services Research(7).

DAMA International. (n.d.). About >> Mission, Vision, Purpose, and Goals. Retrieved January 2, 2023, from

Fortin, A., & Héroux, S. (2018). The moderating role of IT-business alignment in the relationship between IT governance, IT competence, and innovation. Information System Management, 98-123.

GAUTAM, R. S., & BHIMAVARAPU, V. M. (2022). Data Driven Decision Making: Application in Finance. 5(12).

Giri, S., & Shakya, S. (2019). E-government Use in Nepal: Issues of Database Management and Data Security. 15(2).

Haes, S., & Grembergen, W. (2004). IT Governance and Its Mechanisms. INFORMATION SYSTEMS CONTROL JOURNAL, 1.

Henderson, D., Cupoli, P., & Earley, S. (2014). DAMA-DMBOK2 Framework. In DAMA International.

Henriques, D., Almeida, R., Pereira, R., Silva, M. M., & S. Bianchi, I. (2020). How IT Governance can assist IoT project implementation. 8(3), 25-45.

HIPAA. (n.d.). HIPAA Academy. Retrieved January 1, 2023, from


Janssen, M., Brous, P., Estevez, E., S. Barbosa, L., & Janowski, T. (2020). Data governance: Organizing data for trustworthy Artificial Intelligence.

Kanika, G., Emamjome, F., & Hofstede, A. (2021). Data governance for managing data quality in process mining.

Kumar, P., Raj, P., & Jelciana, P. (2018). Exploring Data Security Issues and Solutions in Cloud Computing. 691–697.

Prasetyo, H. N., Djepapu, R. N., Tridalestari, F. A., & Hariman, I. (2019). Development of Project Document Management System Based on Data Governance With DAMA International Framework. 2.

PwC. (n.d.). Data management. Retrieved January 1, 2023, from

The Data Governance Institute. (n.d.). We know Data Governance. Retrieved January 1, 2023, from

Wells, D. (2019, August 14). The Path to Modern Data Governance. (Eckerson Group) Retrieved January 2, 2023, from




How to Cite

Data Security Management and Audit of Healthcare Data: A Case Study of SISPEC19 Project. (2023). Asia Pacific Journal of Information System and Digital Transformation, 1(01), 33-52.