Penilaian Risiko Sistem Informasi Fakultas Teknik  Universitas Diponegoro Menggunakan Metode Failure Mode Effect And Analysis Berbasis Framework ISO 27001

Naniek Utami Handayani; Mochammad Agung Wibowo; Diana Puspita Sari; Yoga Satria; Akbar Romadhona Gifari

doi:10.14710/teknik.v39i2.15918

Penilaian Risiko Sistem Informasi Fakultas Teknik Universitas Diponegoro Menggunakan Metode Failure Mode Effect And Analysis Berbasis Framework ISO 27001

Risk Assessment of Information System of Faculty of Engineering University Diponegoro Using Failure Mode Effect and Analysis Method based on Framework ISO 27001

*Naniek Utami Handayani

- Department of Industrial Engineering, Faculty of Engineering, Diponegoro University, Indonesia

Mochammad Agung Wibowo - Department of Civil Engineering, Faculty of Engineering, Diponegoro University, Indonesia

Diana Puspita Sari - Department of Industrial Engineering, Faculty of Engineering, Diponegoro University, Indonesia

Yoga Satria - Department of Industrial Engineering, Faculty of Engineering, Diponegoro University, Indonesia

Akbar Romadhona Gifari - Department of Industrial Engineering, Faculty of Engineering, Diponegoro University, Indonesia

Published: 31 Dec 2018.

DOI: https://doi.org/10.14710/teknik.v39i2.15918 View

Citation Format:

Abstract

The data leakage and misuse of information by unauthorized parties that had happened forces the protection of security of information system in the Faculty of Engineering Diponegoro University (SIFT UNDIP) to be improved. This research aims to identify the risks, to analyze security of information system management, and to determine risk priority in SIFT UNDIP. This research is conducted using Failure Mode Effect and Analysis method based on ISO 27001 framework. Analysis results show that there are 25 risk agents in SIFT UNDIP which are categorized into four types of assets. The highest risk in High Level Risk category is the risk of dependence on employees which has Risk Priority Number value of 80.

Keywords: Information System; Risk assessment; ISO 27001 Framework; risk agent; FMEA; RPN

Article Metrics:

Article Info

Section: Artikel

Language: ID

In Vol 39, No. 2 (2018): Desember 2018

Statistics: 1962 3767

PEMETAAN ANCAMAN BANJIR KOTA SEMARANG MENGGUNAKAN FUZZY LOGIC DAN SIG PELUANG PENGEMBANGAN SMART CITY UNTUK MEWUJUDKAN KOTA TANGGUH DI KOTA SEMARANG (Studi Kasus: Penyusunan Sistem Peringatan Dini Banjir Sub Drainase Beringin) PENGARUH ACTIVITY SUPPORT TERHADAP KAWASAN PECINAN SEMARANG DI MALAM HARI Improving The Performance of Alumni Achievement Assessment by Integrating Website-Based Tracer Study Information Systems and Telegram API PERSEPSI MASYARAKAT TERHADAP KEBERADAAN SIGNAGE (Studi Kasus Jalan Tjilik Riwut di Kota Palangka Raya, Kalimantan Tengah)

Chen, H.C. (1996) Failure Modes and Effects Analysis Training Manual. Personal Communication, Hen Technology Inc., USA
Darmawi, H. (2005). Manajemen Resiko. Jakarta : Bumi Aksara,
Djohanputro, B. (2008). Corporate Risks Management. Jakarta: PPM
Huang, G.Q., Nie, M., Mak, K.L. (1999) Web-Based Failure Mode and Effect Analysis. Computers & Industrial Engineering, 37, 177-180
Kountur, R. (2008). Manajemen Resiko Operasional Perusahaan. Jakarta: Pendidikan Pembinaan Manajemen
Mufadhol (2009). Kerahasiaan dan Keutuhan Keamanan Data dalam Menjaga Integritas dan Keberadaan Informasi Data. Jurnal Transformatika, 6(2), 80
Muslich, M. (2007). Manajemen Resiko Operasional. Jakarta: Bumi Aksara
Russomanno, D.J., Bonnell, R.D., Bowles, J.B. (1993) Functional Reasoning in a Failure Modes and Effects Analysis (FMEA) Expert-System. Proceedings of the Annual Reliability and Maintainability Symposium, Atlanta, 26-28 January 1993, 339-347
Sarno, R. (2009). Audit Sistem dan Teknologi Informasi. Surabaya: ITS Press
Sarno, R., Iffano, I. (2009). Sistem Manajemen Keamanan Informasi berbasis ISO 27001. Surabaya: ITS Press
Stamatis, D. H. (2003). Failure Mode and Effect Analysis: FMEA from Theory to Execution. Amer Society for Quality, 2
Whitman, M.E., Mattord, H. J. (2010). Management of Information Security. Ed.3. Boston: Course Technology

Last update: 2021-05-16 13:07:25

No citation recorded.

Last update: 2021-05-16 13:07:25

No citation recorded.

The Authors submitting a manuscript do so on the understanding that if accepted for publication, copyright of the article shall be assigned to jurnal TEKNIK and Faculty of Engineering, Diponegoro University as publisher of the journal.

Copyright transfer agreement can be found here: [Copyright transfer agreement in doc] and [Copyright transfer agreement in pdf].

TEKNIK (p-ISSN: 0852-1697; e-ISSN: 2460-9919), is a scientific journal published by Fakultas Teknik, Universitas Diponegoro, Jln. Prof. Soedarto, SH, UNDIP Tembalang Campus, Semarang, Central Java, ZIP: 50275; Telp. (024)7460056, Fax: (024)7460055, E-mail: jteknik@live.undip.ac.id

Journal Teknik can be accessed online by http://ejournal.undip.ac.id/index.php/teknik is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

View My Stats