Analisis Penilaian Risiko Terhadap Penggunaan Sistem Informasi Akademik Pada Universitas Muhammadiyah Palembang Menggunakan Metode Octave Allegro

Authors

  • Kholifah Kholifah UIN Raden Fatah Palembang
  • Reza Ade Putra UIN Raden Fatah Palembang
  • Fathiyah Nopriani UIN Raden Fatah Palembang

DOI:

https://doi.org/10.51519/journalcisa.v2i1.58

Keywords:

Information Technology, Information Systems, Information Security, Assets, isk Assessment, Octave Allegro

Abstract

The development of technology in meeting information needs has been implemented at the Muhammadiyah University of Palembang where there are various information systems used in managing information as a basis for creating quality services and supporting optimization in the work process. However, apart from the perceived benefits, the increasing dependence on information systems is in line with the risks that can arise, one of which is the risk of information security where information is an important asset for an organization that needs to be protected and secured. As an effort to maintain and protect information security, it is necessary to carry out risk evaluation in order to identify and anticipate risks that can interfere with information security. This study aims to conduct a risk assessment analysis of the use of Academic Information Systems as a very crucial information system in a university. This risk assessment analysis uses the Octave Allegro method with the main focus on information assets which consists of 8 steps and is organized into 4 stages starting with determining drivers, developing information asset profiles, identifying threats, and identifying and mitigating risks. The results of this study are 10 (ten) areas of concern with a mitigation approach of 7 (seven) risks that must be reduced (mittigate), 2 (two) risks that can be deferred (defer), and 1 (one) risk. that can be accepted (accept). From the risk assessment carried out, recommendations are given to prevent / minimize the identified risks as an effort to maintain and improve information security.

References

Aristasari, P. dan Riadi, I. (2011) “Manajemen Risiko Pada Learning Management System Menggunakan Kerangka Kerja OCTAVE Allegro,” hal. 1–15.

Budiarto, R. (2017) “Manajemen Risiko Keamanan Sistem Informasi Menggunakan Metode Fmea Dan Iso 27001 Pada Organisasi Xyz,” Journal of Computer Engineering System and Science, 2(2), hal. 105–115. doi: 10.24114/cess.v2i2.6264.

Caralli, R. A. et al. (2007) “Introducing OCTAVE Allegro?: Improving the Information Security Risk Assessment Process,” (May).

Dalafranka, M. L., Syamsuar, D. dan Novaria, Y. (2018) “Information Technology Risk Assessment Sistem Informasi Elektronik Kinerja Pegawai Universitas Islam Negeri,” Seminar Nasional Teknologi Informasi Dan Komunikasi (SEMNASTIK) X, hal. 153–158.

Darmawi, H. (2006) Manajemen Risiko. Jakarta: Bumi Aksara.

Destrianto, F. R., Nelmiawati dan Sitorus, M. A. (2017) “Manajemen Risiko Ancaman pada Aplikasi Website Sistem Informasi Akademik Politeknik Negeri Batam Menggunakan Metode OCTAVE,” Jurnal Integrasi, 9(1), hal. 35–47.

Dewi, N. A. N. dan Yudana, I. G. P. H. (2016) “Analisa Manajemen Risiko Pada Sistem Akademik di STMIK STIKOM Bali,” Seminar Nasional Teknologi Informasi dan Multimedia 2016, 1, hal. 1.5.7-1.5.12.

Gondodiyoto, S. (2007) Audit sistem Informasi Pendekatan COBIT. Jakarta: Penerbit Mitra Wacana.

Hendarti, H. dan Maryani (2014) “DENGAN METODE OCTTAVE-S,” 5(9), hal. 917–924.

Idroes, F. N. (2008) Manajemen Risiko Perbankan: Pemahaman Pendekatan 3 Pilar Kesepakatan Bassel II Terkait Aplikasi Regulasi dan Pelaksanaannya di Indonesia. Jakarta: Rajawali Pers.

Jakaria, D. A., Dirgahayu, R. T. dan Hendrik (2013) “Manajemen Risiko Sistem Informasi Akademik pada Perguruan Tinggi Menggunakan Metoda Octave Allegro,” Seminar Nasional Aplikasi Teknologi Informasi (SNATI), hal. E-37-E42.

Krutz, R. L. dan Vines, R. l D. (2006) The CISSP Prep Guide - Mastering the Ten Domains of Computer Security. Wiley Computer Publishing John Wiley & Sons, Inc.

Downloads

Published

2021-01-07

How to Cite

Kholifah, K., Putra, R. A., & Nopriani, F. . (2021). Analisis Penilaian Risiko Terhadap Penggunaan Sistem Informasi Akademik Pada Universitas Muhammadiyah Palembang Menggunakan Metode Octave Allegro. Journal of Computer and Information Systems Ampera, 2(1), 28–42. https://doi.org/10.51519/journalcisa.v2i1.58