Security Analysis of Grr Rapid Response Network using COBIT 5 Framework

Riadi, Imam; Sunardi, Sunardi; Handoyo, Eko

doi:10.24843/lkjiti.2019.v10.i01.p04

Cited by 6 publications

(7 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Hasil dari penelitian ini mendapatkan domain proses DSS01, DSS02, dan BAI09 berada pada level 2, domain proses DSS06 serta BAI08 ada pada level 1 [11]. Pada tahun 2019 juga terdapat penelitian menggunakan COBIT 5 untuk menganalisis keamanan jaringan respos cepat GRR [12].…”

Section: Pendahuluanunclassified

Evaluasi Tata Kelola Teknologi Informasi di Perpustakaan Perguruan Tinggi dengan COBIT 5

Mambang

Marleny²,

Febriani

et al. 2022

jidt

View full text Add to dashboard Cite

The COBIT 5 framework can be implemented in all organizations or enterprises. This study analyzes and finds the maturity level of IT governance in the XYZ Library. Libraries have a role in encouraging the efficiency and effectiveness of the learning process. The IT governance element in COBIT 5 aims to get results from evaluating stakeholders' needs, conditions and choices. Survey and in-person interviews are methods of obtaining data and information from the IT governance process at the XYZ Library. The COBIT 5 domains used are evaluated, direct, and monitored (EDM) and align, plan and organize (APO) domains. The results of the evaluation that have been carried out show the findings of gaps in the process domain EDM01 with a value of 2.34 and EDM04 with a gap of 2.25. While in the process domain, APO01 with a gap of 2.13, and APO07 with a gap of 2.34. With the average value of the entire gap at the level of 2.26, the findings of the XYZ Library with the process domains EDM01, EDM04, APO01, and APO07 show that the process is managed and the results are determined, controlled, and maintained (Managed). For further research, we can add more process domains both in the Governance and Management areas so that the audit process with the COBIT 5 framework can be carried out comprehensively.

show abstract

Section: Pendahuluanunclassified

Evaluasi Tata Kelola Teknologi Informasi di Perpustakaan Perguruan Tinggi dengan COBIT 5

Mambang

Marleny²,

Febriani

et al. 2022

jidt

View full text Add to dashboard Cite

show abstract

“…The application of security systems aims to overcome all problems and constraints, both technically and nontechnically which can affect the performance of the system such as availability, confidentiality and integrity factors so that the level of security [5]. Penetration testing is an emerging method to test the vulnerabilities in the system, identification of poor and improper system configuration, hardware & software flaws and operational weaknesses in the process or technical countermeasures [6].…”

Section: Penetration Testingmentioning

confidence: 99%

“…The main purpose of penetration testing is to identify system security weaknesses. In addition, it can also be used to test organizational security policies, awareness of organizational employees on security requirements, and the ability of organizations to identify and respond to security incidents [4,5]. Penetration testing process consists of information gathering, identifying penetration points, and reporting the results of testing [9].…”

Section: Penetration Testingmentioning

confidence: 99%

Information Technology Risk Management Using ISO 31000 Based on ISSAF Framework Penetration Testing (Case Study: Election Commission of X City)

Sanjaya¹,

Sasmita²,

Arsa³

2020

IJCNIS

View full text Add to dashboard Cite

Election Commission of X City is an institution that serves as the organizer of elections in the X City, which has a website as a medium in the delivery of information to the public and as a medium for the management and structuring of voter data in the domicile of X City. As a website that stores sensitive data, it is necessary to have risk management aimed at improving the security aspects of the website of Election Commission of X City. The Information System Security Assessment Framework (ISSAF) is a penetration testing standard used to test website resilience, with nine stages of attack testing which has several advantages over existing security controls against threats and security gaps, and serves as a bridge between technical and managerial views of penetration testing by applying the necessary controls on both aspects. Penetration testing is carried out to find security holes on the website, which can then be used for assessment on ISO 31000 risk management which includes the stages of risk identification, risk analysis, and risk evaluation. The main findings of this study are testing a combination of penetration testing using the ISSAF framework and ISO 31000 risk management to obtain the security risks posed by a website. Based on this research, obtained the results that there are 18 security gaps from penetration testing, which based on ISO 31000 risk management assessment there are two types of security risks with high level, eight risks of medium level security vulnerabilities, and eight risks of security vulnerability with low levels. Some recommendations are given to overcome the risk of gaps found on the website.

show abstract

“…Penelitian terdahulu terkait dengan audit sudah pernah dilakukan dengan implementasi audit pada database [4] dan audit menggunakan framework Cobit 5 sudah pernah dilakukan sebelumnya, tujuan penelitian terdahulu yaitu untuk mengukur tata kelola keamanan informasi [5] dan analisis keamanan jaringan [6]. Penelitian ini dibandingkan penelitian-penelitian sebelumnya berbeda pada dinas yang dijadikan studi kasus yaitu Dinas Kebudayaan, Dinas Pariwisata, dan Dinas Sosial Kabupaten X dan dengan menggunakan pengukuran indikator kerja tahun 2022-2027.…”

Section: Introductionunclassified

Audit Tata Kelola TI Pada Organisasi Perangkat Daerah Di Lingkungan Pemerintahan Kabupaten X Dengan Menggunakan Pendekatan Framework Cobit 5 (Studi Kasus: Dinas Kebudayaan, Dinas Pariwisata, dan Dinas Sosial)

Wangsa

Piarsa²,

Rusjayanthi³

2023

jitter

View full text Add to dashboard Cite

Peranan teknologi informasi dalam manajemen dapat meningkatkan efektivitas manajemen pemerintahan dalam melaksanakan good governance. Pemanfaatan teknologi di dinas kebudayaan, dinas pariwisata dan dinas sosial kabupaten X bertujuan untuk mendukung proses bakti sosial untuk menciptakan tata pemerintahan yang baik dalam mengimplementasikan indikator kerja tahun 2022-2027. Tujuan pemeriksaan manajemen TI dengan menggunakan kerangka kerja Cobit 5 adalah untuk mengetahui tingkat kemampuan instansi tersebut. Fungsi framework Cobit 5 adalah EDM (Evaluate, Direct dan Monitor), APO (Align, Plan, dan Organize), BAI (Build, Acquire, dan Implement), DSS (Deliver, Service, dan Support) dan MEA (Monitor, Evaluate, dan Assess). pengumpulan data dilakukan dengan cara observasi pada Organisasi Perangkat Daerah (OPD), wawancara dengan narasumber dan penyebaran kuesioner. Ada 3 proses pada tingkat capability Dinas Kebudayaan yaitu APO11, APO07 dan EDM04, yang berada pada level 1 (belum semua tercapai) menunjukkan perbedaan pada GAP 3. Ada 5 proses pada tingkat capability Dinas Pariwisata yaitu APO06, APO04, MEA01 dan APO07 yang berada pada level 1 (belum semua tercapai) menunjukkan perbedaan pada GAP 3, proses DSS02 berada pada level 2 (sebagian besar tercapai), menunjukkan perbedaan. pada GAP 2. Terdapat 3 proses pada level kapabilitas pelayanan sosial yaitu MEA01, DSS02 dan DSS01 yang berada pada level 1 (belum semua tercapai), menunjukkan perbedaan pada GAP 3. Rekomendasi dibuat menggunakan referensi Cobit 5 untuk jangkauan tingkat yang dicapai sepenuhnya.

show abstract

Security Analysis of Grr Rapid Response Network using COBIT 5 Framework

Cited by 6 publications

References 10 publications

Evaluasi Tata Kelola Teknologi Informasi di Perpustakaan Perguruan Tinggi dengan COBIT 5

Evaluasi Tata Kelola Teknologi Informasi di Perpustakaan Perguruan Tinggi dengan COBIT 5

Information Technology Risk Management Using ISO 31000 Based on ISSAF Framework Penetration Testing (Case Study: Election Commission of X City)

Audit Tata Kelola TI Pada Organisasi Perangkat Daerah Di Lingkungan Pemerintahan Kabupaten X Dengan Menggunakan Pendekatan Framework Cobit 5 (Studi Kasus: Dinas Kebudayaan, Dinas Pariwisata, dan Dinas Sosial)

Contact Info

Product

Resources

About