Prasetyo, Carena Learns (2022) Pengukuran Tingkat Kapabilitas Manajemen Risiko Keamanan Informasi pada Sistem Informasi Pengelolaan Surat Menggunakan Kerangka Kerja COBIT 5 (Studi Kasus: Dinas Komunikasi dan Informatika Kota Surabaya). Undergraduate thesis, UPN Veteran Jawa Timur.
|
Text (Cover)
18082010042._cover.pdf Download (2MB) | Preview |
|
|
Text (Bab 1)
18082010042.-bab1.pdf Download (216kB) | Preview |
|
Text (Bab 2)
18082010042.-bab2.pdf Restricted to Registered users only until 8 June 2024. Download (722kB) |
||
Text (Bab 3)
18082010042.-bab3.pdf Restricted to Registered users only until 8 June 2024. Download (688kB) |
||
Text (Bab 4)
18082010042.-bab4.pdf Restricted to Registered users only until 8 June 2024. Download (280kB) |
||
|
Text (Bab 5)
18082010042.-bab5.pdf Download (44kB) | Preview |
|
|
Text (Daftar Pustaka)
18082010042.-daftarpustaka.pdf Download (137kB) | Preview |
|
Text (Lampiran)
18082010042.-lampiran.pdf Restricted to Registered users only until 8 June 2024. Download (2MB) |
Abstract
Utilization of information technology in an organization needs to do to improve the quality of performance. The increasingly fierce global competition, organization is required to meet the needs quickly while minimizing the impact of risk from the plans made. From this issue, Dinkominfo Surabaya (Department of Communication and Information) seeks to facilitate the realization of good governance through electronic government (e-government). There are various information systems that are realized as a form of this effort, one of which is e-Surat. Dinkomifo has implemented an Information Security Management System (ISMS) with ISO 27001:2013 standard. However, the risk of data loss and mail disposition errors still occurs. It's necessary to optimize and manage information technology risks so that they are in accordance with the capabilities and objectives of the organization. Therefore, it's indispensable to measure the level of capability to find out what actions need to be taken to improve risk management in information security. This study aims to obtain the level of capability of the information security risk management process in the current e-Surat (Mail Management Information System) and the conditions expected by Dinkominfo Surabaya and to find out the gap between that two conditions and give recommendations for improvement according to COBIT 5. This study measuring two selected processes of COBIT 5 from the enterprise goal EG15 Compliance with internal policies, EDM03 Ensure Risk Optimization and APO12 Manage Risk. The results of the assessment show that the EDM03 and APO12 are at level 1 (performed) and gap value is 2 from the expected capability level 3 (established). The proposed recommendations are prepared based on the results of the assessment, list of observation findings, and validation of work products. Several actions were proposed that Dinkominfo should take to achieve the expected level.
Item Type: | Thesis (Undergraduate) | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Contributors: |
|
||||||||||||
Subjects: | T Technology > T Technology (General) > T58.6-58.62 Management Information Systems | ||||||||||||
Divisions: | Faculty of Computer Science > Departemen of Information Systems | ||||||||||||
Depositing User: | CARENA LEARNS PRASETYO | ||||||||||||
Date Deposited: | 08 Jun 2022 08:33 | ||||||||||||
Last Modified: | 08 Jun 2022 08:33 | ||||||||||||
URI: | http://repository.upnjatim.ac.id/id/eprint/6805 |
Actions (login required)
View Item |