ISO 31000:2018-Based IT Infrastructure Risk Management Study (Case Study: Universitas Mikroskil)
Abstract
In dealing with risks, organizational stakeholders will need risk management to ensure that risks within the organization have been identified and appropriate controls have been implemented in each implementation of the organization's IT infrastructure. Risk management is a process of identification, analysis, assessment, control, and efforts to avoid, minimize, and even eliminate unacceptable risks. Implementation of risk management with ISO 31000 by risk analysis and the areas that will be the focus of risk management. Mikroskil University requires risk management standards to minimize the risk of using the internet and servers in academic activities required by all academic levels at Mikroskil. The stages of the research method that are by chosen method are collecting the risks faced by the organization, determining the risk scale, and using a risk matrix for risk management priority exposure. The results of the risk management analysis are in the form of the basic principles of implementing risk management with the ISO 31000 standard, which is a recommendation to the organization in managing risk by applicable standards. The result of the risk level is two possible risks with a low level, ten with a high level, and 3 with an extreme level.
Downloads
References
Adi, D. E., & Susanto, N. (2017). Analisis Manajemen Risiko Aktivitas Pengadaan pada Percetakan Surat Kabar. Jurnal Metris, 18(1), 113–118. http://mx2.atmajaya.ac.id/index.php/metris/article/download/2360/1105
Agustinus, S., Nugroho, A., & Cahyono, A. D. (2017). Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 pada Program HRMS. Jurnal RESTI (Rekayasa Sistem Dan Teknologi Informasi). https://doi.org/10.29207/resti.v1i3.94
Angraini, & Pertiwi, I. D. (2017). Analisa Pengelolaan Risiko Penerapan Teknologi Informasi Menggunakan Iso 31000. Jurnal Ilmiah Rekayasa Dan Manajemen Sistem Informasi, Vol. 3,(2). https://ejournal.uin-suska.ac.id/index.php/RMSI/article/view/4317
Candra, R. M., Sari, Y. N., Iskandar, I., & Yanto, F. (2019). Sistem Manajamen Risiko Keamanan Aset Teknologi Informasi Menggunakan ISO 31000 : 2018. Jurnal CoreIT, 5(1). https://garuda.kemdikbud.go.id/documents/detail/1219812
Cantoni, L., & Tardini, S. (2006). Internet. In Internet. https://doi.org/10.4324/9780203698884
Gilang M Husein, & Radiant Victor Imbar. (2015). Analisis Manajemen Resiko Teknologi Informasi Penerapan Pada Document Management System di PT. Jabar Telematika (JATEL). Jurnal Teknik Informatika Dan Sistem Informasi, 1. https://journal.maranatha.edu/index.php/jutisi/article/download/575/571
Kurniawan, M. R., & Rofiah, N. H. (2020). Pola Penggunaan Internet di Lingkungan Sekolah Dasar Se-Kota Yogyakarta. Southeast Asian Journal of Islamic Education, 2(2), 93–105. https://doi.org/10.21093/sajie.v2i2.1930
Mahardika, K. B., Wijaya, A. F., & Cahyono, A. D. (2019). Manajemen Risiko Teknologi Informasi Menggunakan Iso 31000 : 2018 (Studi Kasus: Cv. Xy). Sebatik, 23(1), 277–284. https://doi.org/10.46984/sebatik.v23i1.572
Mudawamah, N. S. (2020). Perilaku Pengguna Internet : Studi Kasus Pada Mahasiswa Jurusan Perpustakaan Dan Ilmu. BIBLIOTIKA : Jurnal Kajian Perpustakaan Dan Informasi, 4(1), 107–113. http://journal2.um.ac.id/index.php/bibliotika/article/download/14762/6000
Okudan, O., Budayan, C., & Dikmen, I. (2021). A knowledge-based risk management tool for construction projects using case-based reasoning. Expert Systems with Applications, 173. https://doi.org/10.1016/j.eswa.2021.114776
Pangestu, R. H., Cahyono, A. D., & Tanaem, P. F. (2021). Analisis Manajemen Resiko Aplikasi SIPP di Pengadilan Negeri Salatiga Kelas 1B Mengunakan ISO 31000. Journal of Computer and Information Systems Ampera, 2(1). https://doi.org/10.51519/journalcisa.v2i1.59
Pardjo. (2017). Manajemen Risiko Perusahaan. In Tongue thrust and the stability of overjet correction. https://books.google.co.id/books?hl=id&lr=&id=AA1fDwAAQBAJ&oi=fnd&pg=PA89&dq=Manajemen+Risiko+Perusahaan&ots=0YovTUc4y6&sig=4WbnuFzywrWOSsbZ7LmpUpq-TYg&redir_esc=y#v=onepage&q=Manajemen Risiko Perusahaan&f=false
Pribadi, H. I., & Ernastuti, E. (2020). Manajemen Risiko Teknologi Informasi Pada Penerapan E-Recruitment Berbasis ISO 31000:2018 Dengan FMEA (Studi Kasus PT Pertamina). Jurnal Sistem Informasi Bisnis, 10(1), 28–35. https://doi.org/10.21456/vol10iss1pp28-35
Rahmawati, A., & Wijaya, A. F. (2019). Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 Pada Aplikasi ITOP. Jurnal SITECH : Sistem Informasi Dan Teknologi, 2(1), 13–20. https://doi.org/10.24176/sitech.v2i1.3122
Ramadhan, D. L., Febriansyah, R., & Dewi, R. S. (2020). Analisis Manajemen Risiko Menggunakan ISO 31000 pada Smart Canteen SMA XYZ. JURIKOM (Jurnal Riset Komputer), 7(1), 91. https://doi.org/10.30865/jurikom.v7i1.1791
Abstract viewed = 102 times
PDF downloaded = 73 times
Copyright (c) 2022 Elly Elly, Hanes Hanes, Joosten Joosten
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
An author who publishes in the Jurnal Riset Informatika agrees to the following terms:
- The author retains the copyright and grants the journal the right of first publication of the work simultaneously licensed under the Creative Commons Attribution-NonCommercial 4.0 License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal
- The author is permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) before and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of the published work (See The Effect of Open Access).
Read more about the Creative Commons Attribution-NonCommercial 4.0 Licence here: https://creativecommons.org/licenses/by-nc/4.0/.
2.png){kind=logo}
