Penilaian Risiko Sistem Informasi Fakultas Teknik Universitas Diponegoro Menggunakan Metode Failure Mode Effect And Analysis Berbasis Framework ISO 27001
Risk Assessment of Information System of Faculty of Engineering University Diponegoro Using Failure Mode Effect and Analysis Method based on Framework ISO 27001

The data leakage and misuse of information by unauthorized parties that had happened forces the protection of security of information system in the Faculty of Engineering Diponegoro University (SIFT UNDIP) to be improved. This research aims to identify the risks, to analyze security of information system management, and to determine risk priority in SIFT UNDIP. This research is conducted using Failure Mode Effect and Analysis method based on ISO 27001 framework. Analysis results show that there are 25 risk agents in SIFT UNDIP which are categorized into four types of assets. The highest risk in High Level Risk category is the risk of dependence on employees which has Risk Priority Number value of 80.
Article Metrics:
- Chen, H.C. (1996) Failure Modes and Effects Analysis Training Manual. Personal Communication, Hen Technology Inc., USA
- Darmawi, H. (2005). Manajemen Resiko. Jakarta : Bumi Aksara,
- Djohanputro, B. (2008). Corporate Risks Management. Jakarta: PPM
- Huang, G.Q., Nie, M., Mak, K.L. (1999) Web-Based Failure Mode and Effect Analysis. Computers & Industrial Engineering, 37, 177-180
- Kountur, R. (2008). Manajemen Resiko Operasional Perusahaan. Jakarta: Pendidikan Pembinaan Manajemen
- Mufadhol (2009). Kerahasiaan dan Keutuhan Keamanan Data dalam Menjaga Integritas dan Keberadaan Informasi Data. Jurnal Transformatika, 6(2), 80
- Muslich, M. (2007). Manajemen Resiko Operasional. Jakarta: Bumi Aksara
- Russomanno, D.J., Bonnell, R.D., Bowles, J.B. (1993) Functional Reasoning in a Failure Modes and Effects Analysis (FMEA) Expert-System. Proceedings of the Annual Reliability and Maintainability Symposium, Atlanta, 26-28 January 1993, 339-347
- Sarno, R. (2009). Audit Sistem dan Teknologi Informasi. Surabaya: ITS Press
- Sarno, R., Iffano, I. (2009). Sistem Manajemen Keamanan Informasi berbasis ISO 27001. Surabaya: ITS Press
- Stamatis, D. H. (2003). Failure Mode and Effect Analysis: FMEA from Theory to Execution. Amer Society for Quality, 2
- Whitman, M.E., Mattord, H. J. (2010). Management of Information Security. Ed.3. Boston: Course Technology
Last update: 2021-02-26 18:03:09
Last update: 2021-02-26 18:03:09
License URL: http://creativecommons.org/licenses/by-sa/4.0
The Authors submitting a manuscript do so on the understanding that if accepted for publication, copyright of the article shall be assigned to jurnal TEKNIK and Faculty of Engineering, Diponegoro University as publisher of the journal.
Copyright transfer agreement can be found here: [Copyright transfer agreement in doc] and [Copyright transfer agreement in pdf].