Garuda - Garba Rujukan Digital

Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer

Vol 3 No 6 (2019): Juni 2019

Anindhita Firdani (Fakultas Ilmu Komputer, Universitas Brawijaya)
Suprapto Suprapto (Fakultas Ilmu Komputer, Universitas Brawijaya)
Andi Reza Perdanakusuma (Fakultas Ilmu Komputer, Universitas Brawijaya)

Publish Date
30 Jul 2019

Dinas Komunikasi dan Informatika (Kominfo) Kabupaten Rembang is a government service that implements IT in carrying out business processes and daily activities. Dinas Kominfo use various IT services and have the responsibility to manage some of services technically. Based on the interviews that have been done, the more services managed by Dinas Kominfo, the more appropriate safeguards are needed to avoid the risks that might occur. According the existing conditions and referring to Peraturan Menteri Komunikasi dan Informatika Republik Indonesia Nomor 4 Tahun 2016, Dinas Kominfo need to plan for managing information security. Therefore, the purpose of this research is to provide a information security management plan based on risk analysis in Dinas Kominfo Kabupaten Rembang. Planning for information security management that conduct through steps includes assessments using Information Security (KAMI) Index, asset and risk identification, risk analysis using FMEA, risk priorities, make appropriate recomendations to ISO 27001 controls, cost and benefit analysis to determine risk mitigation priorities, and arrange ISO 27001 mandatory document. From the Indeks KAMI assessmen result, the completeness levels score is 161 and the average maturity level of each information security areas is Level I to Level I+. Then, there are 15 top IT risk with the highest RPN value 126. Risk mitigation recommendations can be applied by doing 13 ISO 27001 controls based on risk analysis.

Citation Download

EndNote, Reference Manager, ProCite

Latex, Jabref

338.443 KB

Check in Google Scholar

Journal Info

Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer

Website

Abbrev

j-ptiik

Publisher

Universitas Brawijaya

Subject

Computer Science & IT Control & Systems Engineering Education Electrical & Electronics Engineering Engineering

Description

Jurnal Pengembangan Teknlogi Informasi dan Ilmu Komputer (J-PTIIK) Universitas Brawijaya merupakan jurnal keilmuan dibidang komputer yang memuat tulisan ilmiah hasil dari penelitian mahasiswa-mahasiswa Fakultas Ilmu Komputer Universitas Brawijaya. Jurnal ini diharapkan dapat mengembangkan penelitian ...

Article Info

Abstract

Perencanaan Pengelolaan Keamanan Informasi Berbasis ISO 27001 menggunakan Indeks KAMI Studi Kasus: Dinas Komunikasi dan Informatika Kabupaten Rembang

Article Info

Abstract