Penilaian Risiko Keamanan Informasi Menggunakan Octave Allegro: Studi Kasus pada Perguruan Tinggi
Main Article Content
Abstract
Currently the need for the use of information systems has become important for institution and organizations. The use of information systems has also expanded to various fields, namely educational institutions. However, on the other hand information can be an important security gap. The important information that falls to other parties can result in loss to the owner of the information. This study aims to conduct an internal assessment of information security risks from the use of information systems, so that it can be seen what risks are very high and need to be mitigated. In this study, the Octave Allegro framework was used to conduct an internal assessment. The steps taken in conducting an information security risk assessment consist of 8 steps. Each step produces an output that is used as the basis for evaluating the next step. There are 2 areas that need attention and become the focus of improvement. Information security risk management needs to be carried out and monitored closely and regularly against risks that are determined to be important and have a high risk probability.
Article Details
How to Cite
Ramjanati, P., Wijaya, F. K., & Muarie, M. S. (2021). Penilaian Risiko Keamanan Informasi Menggunakan Octave Allegro: Studi Kasus pada Perguruan Tinggi. JUSIFO (Jurnal Sistem Informasi), 7(1), 10-20. https://doi.org/10.19109/jusifo.v7i1.5870
Section
Articles
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work.
How to Cite
Ramjanati, P., Wijaya, F. K., & Muarie, M. S. (2021). Penilaian Risiko Keamanan Informasi Menggunakan Octave Allegro: Studi Kasus pada Perguruan Tinggi. JUSIFO (Jurnal Sistem Informasi), 7(1), 10-20. https://doi.org/10.19109/jusifo.v7i1.5870
References
Arifudin, O., Wahrudin, U., & Rusmana, F. D. (2020). Manajemen Risiko. Penerbit Widina. https://books.google.co.id/books?hl=id&lr=&id=zd4cEAAAQBAJ&oi=fnd&pg=PA2&dq=penting+manajemen+risiko&ots=89xNLn-4Mn&sig=k0y9owAJkK1bGUwOJPrEvI5WOQM&redir_esc=y#v=onepage&q=penting manajemen risiko&f=false
Caralli, R. A., Stevens, J. F., Young, L. R., & Wilson, W. R. (2007). Introducing OCTAVE Allegro: Improving the Information Security Risk Assessment Process. In Carnegie Mellon University (Issue May). https://resources.sei.cmu.edu/library/asset-view.cfm?assetid=8419
Hamzah, R. F., Jaya, I. D., & Putri, U. M. (2020). Analisis Risiko Keamanan Sistem Informasi E-LKP Dengan Metode Octave Pada Perguruan Tinggi Negeri X. Jusifo, 6(1), 55–65. https://doi.org/10.19109/jusifo.v6i1.5880
Idris, M. S., Wahyuni, S., & Akbar, H. A. (2020). Analisis Manajemen Risiko Keamanan Data Sistem Transaksi Laundry (Studi Kasus: Yuni Laundry). J-Sim: Jurnal Sistem Informasi, 3(2), 61–68. http://ojs.stmik-borneo.ac.id/index.php/J-SIm/article/view/61
Matondang, N., Isnainiyah, I. N., & Muliawatic, A. (2018). Analisis Manajemen Risiko Keamanan Data Sistem Informasi (Studi Kasus: RSUD XYZ). Jurnal RESTI (Rekayasa Sistem Dan Teknologi Informasi), 2(1), 282–287. https://doi.org/10.29207/resti.v2i1.96
Rachmaniah, M., & Mustafa, B. (2015). Penilaian Risiko Kerawanan Informasi Dengan Menggunakan Metode Octave Allegro. Jurnal Pustakawan Indonesia, 14(1), 14–22. https://journal.ipb.ac.id/index.php/jpi/article/view/11507
Rahardjo, B. (2005). Keamanan Sistem Informasi Berbasis Internet. In PT Insan Infonesia (5.3). PT Insan Infonesia. https://budi.rahardjo.id/files/keamanan.pdf
Ramadhintia, R., & Bisma, R. (2021). Perencanaan Mitigasi Risiko Menggunakan Metode OCTAVE Allegro pada SMA Semen Gresik. Journal of Emerging Information System and Business Intelligence (JEISBI), 2(2), 17–23. https://ejournal.unesa.ac.id/index.php/JEISBI/article/view/39087
Rijayanti, R. (2018). Penilaian Tingkat Keamanan Informasi Dengan Pendekatan Risiko pada Inspection Kendaraan (Studi Kasus: Certificate of Roadworthiness di PT. XYZ). Konferensi Nasional Sistem Informasi (KNSI) 2018. http://jurnal.atmaluhur.ac.id/index.php/knsi2018/article/view/483
Sanjaya, J. (2020). Analisis Risk Assessment Terhadap Perusahaan IT di Bidang Finansial Menggunakan OCTAVE Allegro Framework. Inspiration: Jurnal Teknologi Informasi Dan Komunikasi, 10(1), 57–67. https://doi.org/10.35585/inspir.v10i1.2528
Saputra, R. R., Setiawan, E., & Ambarwati, A. (2019). Manajemen Risiko Teknologi Informasi Menggunakna Metode Octave Allegro pada PT Hakiki Donarta Surabaya. SITEKIN: Jurnal Sains, Teknologi Dan Industri, 17(1), 1–10. https://doi.org/10.24014/SITEKIN.V16I2.7457
Seta, H. B., Theresiawati, T., & Rahayu, T. (2017). Manajemen Risiko Aplikasi Pembelajaran Berbasis Online pada Universitas dengan Menggunakan Metode Octave Allegro. Seminar Nasional Teknologi Informasi Dan Multimedia, 5(1), 8–12. https://ojs.amikom.ac.id/index.php/semnasteknomedia/article/view/1815
Suroso, J. S., & Fakhrozi, M. A. (2018). Assessment of Information System Risk Management with Octave Allegro at Education Institution. Procedia Computer Science, 135, 202–213. https://doi.org/10.1016/j.procs.2018.08.167
Tobing, J. J. L., & Puspa, A. K. (2015). Analisis Manajemen Resiko untuk Evaluasi Aset Menggunakan Metode Octave Allegro. EXPERT: Jurnal Manajemen Sistem Informasi Dan Teknologi, 5(1), 28–30. https://doi.org/10.36448/jmsit.v5i1.719
Zulfia, A., Ruskan, E. L., & Putra, P. (2021). Penilaian Risiko Aset Informasi dengan Metode OCTAVE Allegro: Studi Kasus ICT Fakultas Ilmu Komputer Universitas Sriwijaya. JOINS (Journal of Information System), 6(1), 40–47. https://doi.org/10.33633/joins.v6i1.4088
Caralli, R. A., Stevens, J. F., Young, L. R., & Wilson, W. R. (2007). Introducing OCTAVE Allegro: Improving the Information Security Risk Assessment Process. In Carnegie Mellon University (Issue May). https://resources.sei.cmu.edu/library/asset-view.cfm?assetid=8419
Hamzah, R. F., Jaya, I. D., & Putri, U. M. (2020). Analisis Risiko Keamanan Sistem Informasi E-LKP Dengan Metode Octave Pada Perguruan Tinggi Negeri X. Jusifo, 6(1), 55–65. https://doi.org/10.19109/jusifo.v6i1.5880
Idris, M. S., Wahyuni, S., & Akbar, H. A. (2020). Analisis Manajemen Risiko Keamanan Data Sistem Transaksi Laundry (Studi Kasus: Yuni Laundry). J-Sim: Jurnal Sistem Informasi, 3(2), 61–68. http://ojs.stmik-borneo.ac.id/index.php/J-SIm/article/view/61
Matondang, N., Isnainiyah, I. N., & Muliawatic, A. (2018). Analisis Manajemen Risiko Keamanan Data Sistem Informasi (Studi Kasus: RSUD XYZ). Jurnal RESTI (Rekayasa Sistem Dan Teknologi Informasi), 2(1), 282–287. https://doi.org/10.29207/resti.v2i1.96
Rachmaniah, M., & Mustafa, B. (2015). Penilaian Risiko Kerawanan Informasi Dengan Menggunakan Metode Octave Allegro. Jurnal Pustakawan Indonesia, 14(1), 14–22. https://journal.ipb.ac.id/index.php/jpi/article/view/11507
Rahardjo, B. (2005). Keamanan Sistem Informasi Berbasis Internet. In PT Insan Infonesia (5.3). PT Insan Infonesia. https://budi.rahardjo.id/files/keamanan.pdf
Ramadhintia, R., & Bisma, R. (2021). Perencanaan Mitigasi Risiko Menggunakan Metode OCTAVE Allegro pada SMA Semen Gresik. Journal of Emerging Information System and Business Intelligence (JEISBI), 2(2), 17–23. https://ejournal.unesa.ac.id/index.php/JEISBI/article/view/39087
Rijayanti, R. (2018). Penilaian Tingkat Keamanan Informasi Dengan Pendekatan Risiko pada Inspection Kendaraan (Studi Kasus: Certificate of Roadworthiness di PT. XYZ). Konferensi Nasional Sistem Informasi (KNSI) 2018. http://jurnal.atmaluhur.ac.id/index.php/knsi2018/article/view/483
Sanjaya, J. (2020). Analisis Risk Assessment Terhadap Perusahaan IT di Bidang Finansial Menggunakan OCTAVE Allegro Framework. Inspiration: Jurnal Teknologi Informasi Dan Komunikasi, 10(1), 57–67. https://doi.org/10.35585/inspir.v10i1.2528
Saputra, R. R., Setiawan, E., & Ambarwati, A. (2019). Manajemen Risiko Teknologi Informasi Menggunakna Metode Octave Allegro pada PT Hakiki Donarta Surabaya. SITEKIN: Jurnal Sains, Teknologi Dan Industri, 17(1), 1–10. https://doi.org/10.24014/SITEKIN.V16I2.7457
Seta, H. B., Theresiawati, T., & Rahayu, T. (2017). Manajemen Risiko Aplikasi Pembelajaran Berbasis Online pada Universitas dengan Menggunakan Metode Octave Allegro. Seminar Nasional Teknologi Informasi Dan Multimedia, 5(1), 8–12. https://ojs.amikom.ac.id/index.php/semnasteknomedia/article/view/1815
Suroso, J. S., & Fakhrozi, M. A. (2018). Assessment of Information System Risk Management with Octave Allegro at Education Institution. Procedia Computer Science, 135, 202–213. https://doi.org/10.1016/j.procs.2018.08.167
Tobing, J. J. L., & Puspa, A. K. (2015). Analisis Manajemen Resiko untuk Evaluasi Aset Menggunakan Metode Octave Allegro. EXPERT: Jurnal Manajemen Sistem Informasi Dan Teknologi, 5(1), 28–30. https://doi.org/10.36448/jmsit.v5i1.719
Zulfia, A., Ruskan, E. L., & Putra, P. (2021). Penilaian Risiko Aset Informasi dengan Metode OCTAVE Allegro: Studi Kasus ICT Fakultas Ilmu Komputer Universitas Sriwijaya. JOINS (Journal of Information System), 6(1), 40–47. https://doi.org/10.33633/joins.v6i1.4088