<![CDATA[The rapid utilization of Information Technology in the operations of PT Kawasan Industri Terpadu Batang (KITB) increases the complexity of cybersecurity risks and regulatory compliance demands, thus requiring structured governance. This study aims to analyze the existing conditions, identify gaps, and develop an information security governance model using the COBIT 2019 framework. The research method involves Design Factor assessment and organizational needs analysis that sets four priority process objectives: EDM03, APO12, APO13, and DSS05. Data was collected through interviews, questionnaires, and document studies to assess the level of as-is capability compared to to-be targets. The results showed that the current level of governance capability is at Level 3 (Largely Achieved) with a target of Level 4 (Fully Achieved), leaving a gap of one level. Based on the gap analysis, strategic recommendations were developed focusing on strengthening governance, risk management, and security operations. This study provides a practical contribution in the form of a roadmap to improve measurable information security governance to support the operational stability of industrial estates and compliance with data security regulations.]]>
