ASSESSMENT RESIKO TEKNOLOGI PADA IMPLEMENTASI SISTEM INFORMASI AKADEMIK E-UNIVERSITY

  • Yayuk Ike Meilani Universitas Bina Darma
  • Dedy Syamsuar Universitas Bina Darma
  • Yesi Novaria Kunang Universitas Bina Darma
Keywords: Assessment, NIST, Risk Management

Abstract

Information technology has become an essential part of human life so as to facilitate a business activity. However, the use of information technology is not separated from the risks that can affect the process of the activity. As for the purpose of this study was to conduct an assessment of risk against potential vulnerabilities and threats that can attack the academic information system E-University all at once mempersiapan action anticipation towards things that can interfere with the the system. To do the assessment, this study uses the framework NIST SP 800-30r-1 consisting of nine stages to risk assessment i.e. in the characteristics of the system are used, identify the threats that attack system, identification of vulnerability, control systems, determine the likelihood of occurring (likelihood), determine the impact (impact), the determination of risks, control recommendations and documentation of results. The results of the risk assessment against the academic information system E-University is there are three risks disrupting existing activities in the system. Then from the results of the assessment of risks in the form of recommendations are used to minimize the risks that occur on the system

Downloads

Download data is not yet available.

References

Andani, M. (2014). Manajemen Risiko Keamanan Aplikasi Sistem Informasi Laporan Harian Pks & Ppko Online Pada Ptpn V Menggunakan Metode Nist Sp 800-30, Universitas Islam Negeri Sultan Syarif Kasim Riau.

Aryani, D. and F. Rosinta (2011). Pengaruh kualitas layanan terhadap kepuasan pelanggan dalam membentuk loyalitas pelanggan. BISNIS & BIROKRASI: Jurnal Ilmu Administrasi dan Organisasi.

Cahyaningdyah, D. And Y.D. Ressany (2012), Pengaruh Kebijakan Manajemen Keuangan Terhadap Nilai Peusahaan, Jurnal Dinamika Manajemen.

Herdiansyah, H. (2013). Wawancara, observasi, dan focus groups: Sebagai instrumen penggalian data kualitatif. Jakarta: PT. Raja Grafindo Persada.

Mellisa, M. And F. A. Andono (2013). Penerapan Enterprise Risk Management dalam Rangka Meningkatkan Efektifitas Kegiatan Operasional CV. Anugerah Berkat Calindo Jaya.

NIST (2002). Sp 800-30. risk management guide for information technology systems. Recomendation of National Institute of Standards and Technology Special Publication 800-30r-1.Rahardjo, B. (2002). Keamanan Sistem Informasi Berbasis Internet. PT Insan Infonesia–Bandung & PT INDOCISC–Jakarta.

Suzanto, B. and I. Sidharta (2015). Pengukuran End-User Computing Satisfaction Atas Penggunaan Sistem Informasi Akademik. Jurnal Ekonomi, Bisnis & Entrepreneurship.

Wardana, S. H. and M. Si (2010). Menjadi Master PHP dengan Framework Codeigniter, Elex Media Komputindo, www.scholar.google.co.id, diakses: 18 Maret 2018.

Wideman, R. M. (1992). Project and program risk management: a guide to managing project risks and opportunities, University of Maribor, Faculty of Business and Economics.
Published
2019-02-06
Section
Articles
Abstract viewed = 49 times
Download PDF : 58 times