Information Technology Risk Management at BTSI UKSW Using ISO 31000:2018

  • Vincent Patrick Pratama Wijaya Fakultas Teknologi Informasi Universitas Kristen Satya Wacana
Keywords: Risk Management, Risk Analysis, Risk Assessment

Abstract

Biro Teknologi dan Sistem Informasi (BTSI) is one of the service units tasked with developing and supporting the needs of the academic community regarding the needs of information technology. BTSI always maintains system security and carries out regular maintenance for the smooth running of service and development activities at BTSI. Research conducted at the Bureau of Technology and Information Systems regarding the analysis of risk management using the ISO 31000:2018 framework was compiled with several stages starting from the stages of identification, analysis, evaluation, to risk treatment. In order to achieve this goal, a governance risk management is needed so that BTSI can mitigate incidents that will occur in the future. However, threats and risks that may occur later are things that must be anticipated and are very likely to occur. The disruption of business processes until the cessation of all activities at BTSI is the impact of possible threats that will occur, but BTSI can face previous risks and re-launch existing business processes. Therefore, it is important to understand the risks that can affect BTSI's business processes.

References

[1] Raden Budiarto, “MANAJEMEN RISIKO KEAMANAN SISTEM INFORMASI MENGGUNAKAN METODE FMEA DAN ISO 27001 PADA ORGANISASI XYZ,” CESS (Journal of Computer Engineering System and Science), vol. 2, no. 2, pp. 48–58, Jul. 2017.
[2] G. Pamungkas, M. Bagas, and T. Atmojo, “ANALISIS MANAJEMEN RISIKO TEKNOLOGI INFORMASI PADA WEBSITE UMKM XYZ BERDASARKAN FRAMEWORK ISO 31000 ANALYSIS OF INFORMATION TECHNOLOGY RISK MANAGEMENT ON UMKM XYZ WEBSITE BASED ON ISO 31000 FRAMEWORK,” vol. 4, no. 1, pp. 12–17, 2021.
[3] M. I. Fachrezi, “Manajemen Risiko Keamanan Aset Teknologi Informasi Menggunakan Iso 31000:2018 Diskominfo Kota Salatiga,” JATISI (Jurnal Teknik Informatika dan Sistem Informasi), vol. 8, no. 2, pp. 764–773, 2021, doi: 10.35957/jatisi.v8i2.789.
[4] R. M. Candra, Y. N. Sari, I. Iskandar, and F. Yanto, “Sistem Manajamen Risiko Keamanan Aset Teknologi Informasi Menggunakan ISO 31000:2018,” Jurnal CoreIT, vol. 5, no. 1, 2019.
[5] S. P. Zagoto and M. N. N. Sitokdana, “ANALISIS RISIKO TEKNOLOGI INFORMASI DI ORGANISASI XYZ CABANG SALATIGA MENGGUNAKAN ISO 31000,” 2021.
[6] J. N. Utamajaya, A. Afrina, and A. N. Fitriah, “ANALISIS MANAJEMEN RISIKO TEKNOLOGI INFORMASI PADA PERUSAHAAN TOKO UJUNG PANDANG GROSIR PENAJAM PASER UTARA MENGGUNAKAN FRAMEWORK ISO 31000:2018,” Sebatik, vol. 25, no. 2, pp. 326–334, Dec. 2021, doi: 10.46984/sebatik.v25i2.1430.
[7] D. Junianti and C. Fibriani, “Analisis Resiko Aplikasi Sistem Informasi Pengelolaan Data Umat Menggunakan ISO 31000 (Studi Kasus: Gereja Katolik Santo Paulus Miki Salatiga),” 2021. [Online]. Available: https://journal-computing.org/index.php/journal-cisa/index
[8] B. Lembah Mahersmi, F. Artowini Muqtadiroh, and B. Cahyo Hidayanto, “PADA DISHUBKOMINFO KABUPATEN TULUNGAGUNG,” 2016.
[9] I. Putu, A. Eka, P. #1, and T. S. Pratika, “Manajemen Risiko Teknologi Informasi Terkait Manipulasi dan Peretasan Sistem pada Bank XYZ Tahun 2020 Menggunakan ISO 31000:2018,” Jurnal Telematika, vol. 15, no. 2.
[10] I. Setiawan, A. R. Sekarini, R. Waluyo, and F. N. Afiana, “Manajemen Risiko Sistem Informasi Menggunakan ISO 31000 dan Standar Pengendalian ISO/EIC 27001 di Tripio Purwokerto,” MATRIK : Jurnal Manajemen, Teknik Informatika dan Rekayasa Komputer, vol. 20, no. 2, pp. 389–396, May 2021, doi: 10.30812/matrik.v20i2.1093.
[11] D. L. Ramadhan, R. Febriansyah, and R. S. Dewi, “Analisis Manajemen Risiko Menggunakan ISO 31000 pada Smart Canteen SMA XYZ,” JURIKOM (Jurnal Riset Komputer), vol. 7, no. 1, p. 91, Feb. 2020, doi: 10.30865/jurikom.v7i1.1791.
[12] S. A. Atmojo and A. D. Manuputty, “Analisis Manajemen Risiko Teknologi Informasi Menggunakan ISO 31000 Pada Aplikasi AHO Office,” 2020. [Online]. Available: http://jurnal.mdp.ac.id
[13] A. Mariza, L. Abdurahman, and I. Santosa, “ANALISIS RISIKO DAN KONTROL PADA SIMRS GUDANG OBAT BERDASARKAN ISO 31000 (STUDI KASUS: RUMAH SAKIT KHUSUS IBU DAN ANAK KOTA BANDUNG),” Bandung, Jul. 2020.
[14] E. Muryanti and K. D. Hartomo, “Analisis Risiko Teknologi Informasi Aplikasi CATTER PDAM Kota Salatiga Menggunakan ISO 31000,” 2021. [Online]. Available: http://jurnal.mdp.ac.id
[15] N. M. Putri, S. Widaningrum, and M. Rendra, “USULAN TREATMENTRISIKO MENGGUNAKAN RISK ASSESSMENTBERDASARKAN ISO 31000:2018 PADA PROSES PRODUKSI BROWNIESORIGINALDI CV XYZ UNTUK MEMENUHI PERSYARATAN ISO 9001:2015 KLAUSUL 6.1,” e-Proceeding of Engineering, vol. 6, no. 2, pp. 7628–7636, Jul. 2019.
[16] J. Ecleas and A. D. Manuputty, “Analisis Manajemen Risiko Teknologi Informasi Software PEGA Menggunakan ISO 31000,” 2021. [Online]. Available: http://jurnal.mdp.ac.id
Published
2022-06-14