Article Per Year (5 Year)
p-Index From 2020 - 2025
0
P-Index
This Author published in this journals
All Journal Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer
Faris Bagaskoro
Fakultas Ilmu Komputer, Universitas Brawijaya
Computer Science & IT Control & Systems Engineering Education Electrical & Electronics Engineering Engineering

Published : 1 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 1 Documents
Search

 1 
Evaluasi Menggunakan COBIT 5 terhadap Proses Tata Kelola Sistem Keamanan Informasi dengan Fokus Proses DSS05, APO13, dan EDM03 (Studi pada Subbidang Layanan Aplikasi e-Business KOMINFO RI) Faris Bagaskoro; Yusi Tyroni Mursityo; Suprapto Suprapto
Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer Vol 3 No 3 (2019): Maret 2019
Publisher : Fakultas Ilmu Komputer (FILKOM), Universitas Brawijaya

Show Abstract | Download Original | Original Source | Check in Google Scholar | Full PDF (447.282 KB)

Abstract

Within the Ministry of Communication and Information (KOMINFO), there is one system called "Sistem Layanan Aptika Terintegrasi" in the e-Business Application Services Sub-Sector, which serves to bridge the services provided by KOMINFO to its stakeholder. With the amount of important data in the service, management of information security is needed to support the business processes of the organization, and ensure that all data in the system is secured so that it can reduce the potential losses that can arise. To improve the quality of the information security, it is necessary to do an evaluation and analysis in order to find out the current conditions of information security management. This study uses the COBIT 5 framework as one of the frameworks for evaluating information technology governance in specific domains for information security, namely DSS05 (Manage Security Services), APO13 (Manage Security), and EDM03 (Ensure Risk Optimisation). By using COBIT 5, organizations can find out the capability level of each process and its gap level of the desired conditions. After knowing the gap level of each processes, recommendation are given to focus on detailing standards and procedure, improving documents regarding the duties and roles of each party, as well as increasing awareness regarding information security and risk optimisation.
Co-Authors Supraptoa Supraptoa Yusi Tyroni Mursityo