Syntax Literate: Jurnal Ilmiah Indonesia
Jurnal Ilmiah Indonesia

Risk Assessment at it Company by Focusing on Information Security Area Using Iso 27001:2022

Nugroho, Athallariq Rafii (Unknown)
Legowo, Nilo (Unknown)

Article Info

Publish Date
27 Feb 2024

Abstract

Modern technology companies should prioritize information security by focusing on system vulnerabilities and adopting a risk management approach based on the ISO/IEC 27001:2022 standard. This method needs to be implemented through several stages of risk assessment to ensure and measure the extent to which the organization effectively addresses information security issues. The assessment approach involves the three stages of identifying, analyzing and evaluating risks and mapping them to the controls specified in ISO/IEC 27001:2022. The implementation shows that the IT risk assessment of the company has a percentage of 86.87% as low risk, 6.06% as medium risk, and 7.07% as High risk. IT Software companies can be considered safe because most risk assessment findings are low, which means they are in the safe category. In practice, regular monitoring of the implementation of risk assessments in line with the ISO/IEC 27001:2022 standard is still very much needed.

Copyrights © 2024




Citation Download
RIS
EndNote, Reference Manager, ProCite
BibTex
Latex, Jabref
Original Source
Download Original
Google Scholar
Check in Google Scholar
Journal Info
Syntax Literate: Jurnal Ilmiah Indonesia
Website

Abbrev

syntax-literate

Publisher

Syntax Corporation Indonesia

Subject

Humanities Education Environmental Science Law, Crime, Criminology & Criminal Justice Social Sciences Other

Description

Syntax Literate: Jurnal Ilmiah Indonesia is a peer-reviewed scientific journal that publishes original research and critical studies in various fields of science, including education, social sciences, humanities, economics, and engineering. The journal aims to provide a platform for researchers, ...