Tata Kelola Teknologi Informasi Dengan Kerangka Kerja Cobit 4.1 Pada PT.DUNIA Saftindo

Himayadi, Hendry; Andry, Johanes Fernandes

doi:10.32520/stmsi.v8i3.464

Cited by 2 publications

(4 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Langkah ini tidak hanya melibatkan pemangku kepentingan tetapi juga pengelola TI. Tujuan dari Langkah ini adalah untuk memastikan bahwa investasi TI yang dilakukan mendukung secara efektif strategi bisnis perusahaan [23], [28], [33], [34] [35], [36], [42], [44], [47].…”

Section: Strategi Implementasi Cobit Untuk It Risk Management DI Sekt...unclassified

See 1 more Smart Citation

Systematic Literature Review: Analisis Implementasi Manajemen Risiko TI Menggunakan Framework COBIT di Sektor Industri Jasa

Nisa',

Febrianti,

Ajrina

2023

bulletincsr

View full text Add to dashboard Cite

The use of Information Technology (IT) is an important part of all business activities, especially in the service sector. It is important to ensure the security, availability and integrity of their systems. The impact of failure in IT Risk Management greatly influences success. The implementation of IT Risk Management is needed to be able to help companies in the event of losses. In its use, a framework is needed that functions to identify, evaluate and manage existing risks. Therefore, this research will show the COBIT framework that is suitable for managing existing risk management. This research was carried out using the Systematic Literature Review method which started from the stages of formulating research questions, literature search, literature selection, data extraction and discussion aimed at answering Research Questions. In this research, 25 articles were found which were used as literature sources. The research results show that COBIT 2019 is the version of COBIT most often used in IT Risk Management in the industrial service sectors. In implementing COBIT, companies face various challenges such as lack of in-depth understanding of COBIT, lack of work process documentation and lack of operational standards for risk control and incompatibility of IT strategy with company strategy. This research also found that there are 8 points of COBIT implementation strategy to help service industry companies achieve organizational goals more effectively and efficiently through IT risk management.

show abstract

Section: Strategi Implementasi Cobit Untuk It Risk Management DI Sekt...unclassified

“…Manajemen Risiko TI COBIT Industri Jasa [33], [34][35], [36], [37], [38], [39], [40], [41], [42], [43], [44], [45], [46], [47]…”

mentioning

confidence: 99%

Systematic Literature Review: Analisis Implementasi Manajemen Risiko TI Menggunakan Framework COBIT di Sektor Industri Jasa

Nisa',

Febrianti,

Ajrina

2023

bulletincsr

View full text Add to dashboard Cite

show abstract

“…Penelitian pada PT Dunia Saftindo menghasilkan nilai maturity level PO9 sebesar 2,6 yang dapat dikategorikan pada Level 3 (Defined Process). Hal ini memiliki arti bahwa PT Dunia Saftindo memiliki tingkat kemampuan yang baik dalam pengelolaan risiko TI, akan tetapi perlu peningkatan mutu dari sistem keamanan [16].…”

Section: Tinjauan Literaturunclassified

“…Proses manajemen risiko keamanan informasi dapat diterapkan pada organisasi secara keseluruhan, setiap bagian diskrit organisasi (misalnya departemen, lokasi fisik, layanan), setiap sistem informasi, aspek yang ada atau yang direncanakan atau kontrol tertentu (misalnya perencanaan kelangsungan bisnis). [17] SISTEMASI: Jurnal Sistem Informasi ISSN:2302-8149 Volume 10, Nomor 1, Januari 2021: [13][14][15][16][17][18][19][20][21][22][23][24][25] e-ISSN:2540-9719…”

Section: Tinjauan Literaturunclassified

Penilaian Risiko Data Sistem Informasi Manajemen Puskesmas dan Aset Menggunakan ISO 27005

2021

View full text Add to dashboard Cite

AbstrakSistem Informasi Manajemen Puskesmas atau SIMPUS merupakan sistem informasi manajemen yang digunakan oleh staf Puskesmas Pasir Putih guna menyediakan layanan kesehatan kepada masyarakat. Keberadaan SIMPUS sangat mendukung kegiatan pelayanan kesehatan. Namun ada permasalahan pada sistem informasi puskesmas dalam pelayanan pasien, pada komputer terkena virus sehingga SIMPUS tidak bisa digunakan sementara. Penelitian ini dilakukan untuk penilaian risiko terhadap kemungkinan ancaman dan risiko yang muncul menggunakan ISO 27005. Hasil penelitian dari penilaian risiko rata-rata risiko sedang dan risiko tinggi masih kecil pada ancaman yang mungkin terjadi dan penanganan risiko dari 30 skenario ancaman yang mungkin terjadi yaitu, risk modification (RM) 20 skenario, risk Avoidance (RA) 3 skenario dan risk sharing (RS) 7 skenario. Rekomendasi untuk penanganan risiko pada Puskesmas Pasir Putih yaitu perlu adanya kebijakan dan aturan dari kepala puskesmas terhadap aset utama aplikasi SIMPUS untuk pengolahan, penghapusan dan output data SIMPUS. Dilakukan pelatihan terhadap pengelola dan pengguna aplikasi SIMPUS. Penambahan keamanan, pemeliharaan dan kontrol pada aset pendukung dan menambah kebutuhan yang diperlukan.Kata Kunci: ISO 27005, Puskesmas Pasir Putih, Penilaian Risiko AbstractSistem Informasi Manajemen Puskesmas or SIMPUS is a health center management information system that is used by Puskesmas Pasir Putih staff to provide health care services for citizens. SIMPUS have supported health care service. But, there is a problem in patient service when virus computer attack SIMPUS. This incident caused SIMPUS cannot be used temporarily. This research was conducted to assess the risk of possible threats and risks that arise using ISO 27005. The result shown that the average risk assessment of moderate risk and high risk were still small on the threats that might occur, and the risk management of 30 possible threat can be occurred such as risk modification (RM) 20 scenarios, risk Avoidance (RA) 3 scenarios and risk sharing (RS) 7 scenarios. There are several recommendations for risk management at Puskesmas Pasir Putih. Policies and rules need to be made by the head of Puskesmas to maintain the main assets of SIMPUS application for processing, deleting and outputing the SIMPUS data. Doing training for maintainers and simpus application users, increasing security, maintaining and controlling to support assets and increasing need. Keywords: ISO 27005, Puskesmas Pasir Putih, Risk Assessment

show abstract

Tata Kelola Teknologi Informasi Dengan Kerangka Kerja Cobit 4.1 Pada PT.DUNIA Saftindo

Cited by 2 publications

References 8 publications

Systematic Literature Review: Analisis Implementasi Manajemen Risiko TI Menggunakan Framework COBIT di Sektor Industri Jasa

Systematic Literature Review: Analisis Implementasi Manajemen Risiko TI Menggunakan Framework COBIT di Sektor Industri Jasa

Penilaian Risiko Data Sistem Informasi Manajemen Puskesmas dan Aset Menggunakan ISO 27005

Contact Info

Product

Resources

About