Evaluasi Tata Kelola Keamanan Teknologi Informasi menggunakan Indeks KAMI untuk Persiapan Standar SNI ISO/IEC 27001

Studi Kasus: Stmik Mardira Indonesia

Authors

  • Asep Ririh Riswaya STMIK Mardira Indonesia, Bandung
  • Ashwin Sasongko Universitas Langlangbuana, Bandung
  • Asep Maulana Universitas Langlangbuana, Bandung

Keywords:

Governance TI, Information Technology Security, SNI ISO / IEC 27001, SNI ISO / IEC 27002

Abstract

Today's technology is an important asset to support the business activities of institutions or institutions, STMIK Mardira Indonesia is a higher education institution that requires technology for educational service facilities. Information technology security governance is useful for protecting assets while maintaining the sustainability of information technology services, several standards for governance have also been used to ensure the security of information technology assets, SNI ISO / IEC 27001 and SNI ISO / IEC 27002 are national standards that adopt from international standards in its activities require evaluation to determine governance readiness and the US index is used as an evaluation tool towards the standardization. The evaluation results in the electronics sector have a value of 21 which means the electronics sector in this institution is high according to the US Index 10 to 15 low, 16 to 34 high and 35 to 50 strategic. However, on the status of preparedness with a value of 117 which means that it is still not feasible for SNI ISO / IEC 27001 certification to be eligible for certification is a range of values 273 to 445. On the basis of some evaluation results obtained, governance is carried out in Annex A.5.1.1 Information security policy document, A.5.1.2 Review of the policies for information security, A.6.1.1 Information security roles and responsibilities, A.15.1.1 Information security policy for supplier relationships, A.16.1 Reporting information security events and weaknesses and Annex 16.1 .3 Reporting information security weaknesses.

Author Biographies

Asep Ririh Riswaya, STMIK Mardira Indonesia, Bandung

 

 

Ashwin Sasongko, Universitas Langlangbuana, Bandung

 

 

Asep Maulana, Universitas Langlangbuana, Bandung

 

 

Downloads

Published

15.06.2020

How to Cite

Riswaya, A. R., Sasongko, A., & Maulana, A. (2020). Evaluasi Tata Kelola Keamanan Teknologi Informasi menggunakan Indeks KAMI untuk Persiapan Standar SNI ISO/IEC 27001 : Studi Kasus: Stmik Mardira Indonesia. Jurnal Computech &Amp; Bisnis (e-Journal), 14(1), 10–18. Retrieved from https://jurnal.stmik-mi.ac.id/index.php/jcb/article/view/85

Issue

Vol. 14 No. 1 (2020): Jurnal Computech & Bisnis (e-Journal)

Section

Articles

License

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

Copyright

The copyright by authors, because basically the author is the copyright holder and does not require a copyright transfer agreement. The authors retain the copyright and full publishing rights without restrictions.

Licensing by

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.