ISO 31000:2018-Based IT Infrastructure Risk Management Study (Case Study: Universitas Mikroskil)

  • Elly Elly (1) Universitas Mikroskil
  • Hanes Hanes (2) Universitas Mikroskil
  • Joosten Joosten (3*) Universitas Mikroskil

  • (*) Corresponding Author
Keywords: ISO 31000, Risk, Risk Management

Abstract

In dealing with risks, organizational stakeholders will need risk management to ensure that risks within the organization have been identified and appropriate controls have been implemented in each implementation of the organization's IT infrastructure. Risk management is a process of identification, analysis, assessment, control, and efforts to avoid, minimize, and even eliminate unacceptable risks. Implementation of risk management with ISO 31000 by risk analysis and the areas that will be the focus of risk management. Mikroskil University requires risk management standards to minimize the risk of using the internet and servers in academic activities required by all academic levels at Mikroskil. The stages of the research method that are by chosen method are collecting the risks faced by the organization, determining the risk scale, and using a risk matrix for risk management priority exposure. The results of the risk management analysis are in the form of the basic principles of implementing risk management with the ISO 31000 standard, which is a recommendation to the organization in managing risk by applicable standards. The result of the risk level is two possible risks with a low level, ten with a high level, and 3 with an extreme level.

Downloads

Download data is not yet available.

References

Adi, D. E., & Susanto, N. (2017). Analisis Manajemen Risiko Aktivitas Pengadaan pada Percetakan Surat Kabar. Jurnal Metris, 18(1), 113–118. http://mx2.atmajaya.ac.id/index.php/metris/article/download/2360/1105

Agustinus, S., Nugroho, A., & Cahyono, A. D. (2017). Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 pada Program HRMS. Jurnal RESTI (Rekayasa Sistem Dan Teknologi Informasi). https://doi.org/10.29207/resti.v1i3.94

Angraini, & Pertiwi, I. D. (2017). Analisa Pengelolaan Risiko Penerapan Teknologi Informasi Menggunakan Iso 31000. Jurnal Ilmiah Rekayasa Dan Manajemen Sistem Informasi, Vol. 3,(2). https://ejournal.uin-suska.ac.id/index.php/RMSI/article/view/4317

Candra, R. M., Sari, Y. N., Iskandar, I., & Yanto, F. (2019). Sistem Manajamen Risiko Keamanan Aset Teknologi Informasi Menggunakan ISO 31000 : 2018. Jurnal CoreIT, 5(1). https://garuda.kemdikbud.go.id/documents/detail/1219812

Cantoni, L., & Tardini, S. (2006). Internet. In Internet. https://doi.org/10.4324/9780203698884

Gilang M Husein, & Radiant Victor Imbar. (2015). Analisis Manajemen Resiko Teknologi Informasi Penerapan Pada Document Management System di PT. Jabar Telematika (JATEL). Jurnal Teknik Informatika Dan Sistem Informasi, 1. https://journal.maranatha.edu/index.php/jutisi/article/download/575/571

Kurniawan, M. R., & Rofiah, N. H. (2020). Pola Penggunaan Internet di Lingkungan Sekolah Dasar Se-Kota Yogyakarta. Southeast Asian Journal of Islamic Education, 2(2), 93–105. https://doi.org/10.21093/sajie.v2i2.1930

Mahardika, K. B., Wijaya, A. F., & Cahyono, A. D. (2019). Manajemen Risiko Teknologi Informasi Menggunakan Iso 31000 : 2018 (Studi Kasus: Cv. Xy). Sebatik, 23(1), 277–284. https://doi.org/10.46984/sebatik.v23i1.572

Mudawamah, N. S. (2020). Perilaku Pengguna Internet : Studi Kasus Pada Mahasiswa Jurusan Perpustakaan Dan Ilmu. BIBLIOTIKA : Jurnal Kajian Perpustakaan Dan Informasi, 4(1), 107–113. http://journal2.um.ac.id/index.php/bibliotika/article/download/14762/6000

Okudan, O., Budayan, C., & Dikmen, I. (2021). A knowledge-based risk management tool for construction projects using case-based reasoning. Expert Systems with Applications, 173. https://doi.org/10.1016/j.eswa.2021.114776

Pangestu, R. H., Cahyono, A. D., & Tanaem, P. F. (2021). Analisis Manajemen Resiko Aplikasi SIPP di Pengadilan Negeri Salatiga Kelas 1B Mengunakan ISO 31000. Journal of Computer and Information Systems Ampera, 2(1). https://doi.org/10.51519/journalcisa.v2i1.59

Pardjo. (2017). Manajemen Risiko Perusahaan. In Tongue thrust and the stability of overjet correction. https://books.google.co.id/books?hl=id&lr=&id=AA1fDwAAQBAJ&oi=fnd&pg=PA89&dq=Manajemen+Risiko+Perusahaan&ots=0YovTUc4y6&sig=4WbnuFzywrWOSsbZ7LmpUpq-TYg&redir_esc=y#v=onepage&q=Manajemen Risiko Perusahaan&f=false

Pribadi, H. I., & Ernastuti, E. (2020). Manajemen Risiko Teknologi Informasi Pada Penerapan E-Recruitment Berbasis ISO 31000:2018 Dengan FMEA (Studi Kasus PT Pertamina). Jurnal Sistem Informasi Bisnis, 10(1), 28–35. https://doi.org/10.21456/vol10iss1pp28-35

Rahmawati, A., & Wijaya, A. F. (2019). Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 Pada Aplikasi ITOP. Jurnal SITECH : Sistem Informasi Dan Teknologi, 2(1), 13–20. https://doi.org/10.24176/sitech.v2i1.3122

Ramadhan, D. L., Febriansyah, R., & Dewi, R. S. (2020). Analisis Manajemen Risiko Menggunakan ISO 31000 pada Smart Canteen SMA XYZ. JURIKOM (Jurnal Riset Komputer), 7(1), 91. https://doi.org/10.30865/jurikom.v7i1.1791

Published
2022-12-14
How to Cite
Elly, E., Hanes, H., & Joosten, J. (2022). ISO 31000:2018-Based IT Infrastructure Risk Management Study (Case Study: Universitas Mikroskil). Jurnal Riset Informatika, 5(1), 469-480. https://doi.org/10.34288/jri.v5i1.448
Article Metrics

Abstract viewed = 81 times
PDF downloaded = 56 times