Analisis Manajemen Risiko IT Pada Sistem Informasi Akademik Menggunakan ISO 31000

Ridho Fahlepi(1*), Mona Fronita(2), Eki Saputra(3), Muhammad Luthfi Hamzah(4), Arif Marsal(5), Suandi Daulay(6),

(1) Universitas Islam Negeri Sultan Syarif Kasim Riau, Indonesia
(2) Universitas Islam Negeri Sultan Syarif Kasim Riau, Indonesia
(3) Universitas Islam Negeri Sultan Syarif Kasim Riau, Indonesia
(4) Universitas Islam Negeri Sultan Syarif Kasim Riau, Indonesia
(5) Universitas Islam Negeri Sultan Syarif Kasim Riau, Indonesia
(6) Sekolah Tinggi Teknologi Pekanbaru, Indonesia
(*) Corresponding Author

Abstract


The development of information technology is unavoidable. All aspects of human life require information technology. The use of information technology makes work easier to carry out. However, information technology also poses risks that can threaten the activities of an agency. The Pekanbaru College of Technology (STT) has implemented an Academic Information System (SIAKAD) to improve academic administration services, such as managing KRS, KHS, value input, schedules, and payments. Through interviews, it was identified possible risks that could disrupt business processes in the agency. The purpose of this study was to obtain an RPN (Risk Priority Number) value to provide recommendations for risk treatment in the Academic Information System (SIAKAD). The method used is ISO 31000 to measure the level of risk. The research stages include risk identification, risk analysis, calculation of RPN values, risk evaluation, and risk treatment. This research produces a level of risk from the highest to the lowest that can be used as a reference in the evaluation, treatment, and recommendations to overcome these risks.

Full Text:

PDF

References


Mahardika, Krisdana Bima, Agustinus Fritz Wijaya dan Ariya Dwika Cahyono. 2019. “Manajemen Risiko Teknologi Informasi Menggunakan ISO 31000:2018 (Studi Kasus: CV. XY). ” Sebatik 23(1):277–84. doi: 10.46984/sebatik.v23i1.572.

Grey, Manson, S., & Louise, C. (2015). The Audit Process: Principles, Practice and Cases,6th edition. Cengage Learning.

Angraini, A., dan Pertiwi, I. D. (2017). Analisa pengelolaan risiko penerapan teknologi informasi menggunakan iso 31000. Jurnal Ilmiah Rekayasa dan Manajemen Sistem Informasi, 3(2), 70–76.

Nurbaya, F., Witanti, W., dan Umbara, F. R. (2017). Manajemen risiko sistem informasi akademik di universitas jenderal achmad yani menggunakan committee of sponsoring organizations of the treadway commission’s (coso). Prosiding SNST Fakultas Teknik, 1(1).

A. Novia Rilyani, Y. A. Firdaus W ST, and D. S. Dwi Jatmiko, “Analisis Risiko Teknologi Informasi Berbasis Risk Management Menggunakan ISO 31000 (Studi Kasus : iGracias Telkom University) Information Technology Risk Analysis Based On Risk Management Using Iso 31000 (Case Study : iGracias Telkom University),” e-Proceeding Eng., vol. 2, no. 2, pp. 6201–6208, 2015.

Harimurti, F., 2006, Manajemen Risiko, Fungsi dan Mekanismenya, Jurnal Ekonomi dan Kewirausahaan, no. 1, vol. 6, hal 105-112.

Iswajuni, I., Manasika, A., & Soetedjo, S. (2018). The effect of enterprise risk management(ERM) on firm value in manufacturing companies listed on Indonesian Stock Exchange year 2010-2013. Asian Journal of Accounting Research, 3(2):224-235.

Aisyah, A. P., dan Dahlia, L. (2022). Enterprise risk management berdasarkan ISO 31000 dalam pengukuranRisiko Operasional Pada Klinik spesialis esti. Jurnal Akuntansi Dan Manajemen, 19(02), 78–90. https://doi.org/10.36406/jam.v19i02.483.

Vorst, Charles R., D., Priyarsono, dan Arif Budiman. 2018. MANAJEMEN RISIKO BERBASIS SNI ISO 31000.

Manoppo, Franky. 2017. “Perencanaan Strategis Sistem Informasi Menggunakan Metode Ward and Peppard Pada PT. Serasi Autoraya.” Sebatik 23(1):185–91. doi: 10.46984/sebatik.v23i1.467.

C. Lalonde and O. Boiral, “Managing risks through ISO 31000: A critical analysis,” Risk Manag., vol. 14, no. 4, pp. 272–300, Nov. 2012.

P. P. Thenu, A. F. Wijaya, and C. Rudianto, “Analisis Manajemen Risiko Teknologi Informasi Menggunakan Cobit 5 (Studi Kasus: Pt Global Infotech),” J. Bina Komput., vol. 2, no. 1, pp. 1–13, 202.

Agustinus, S., Nugroho, A., & Cahyono, A. D. (2017). Analisis Risiko Teknologi informasi menggunakan ISO 31000 PADA program HRMS. Jurnal RESTI (Rekayasa Sistem Dan Teknologi Informasi), 1(3), 250–258. https://doi.org/10.29207/resti.v1i3.94.

Nice, Francisca Lady, dan Radiant Victor Imbar. 2016. “Analisis Risiko Teknologi Informasi pada Lembaga Penerbangan dan Antariksa Nasional (LAPAN) pada Website SWIFTS Menggunakan ISO 31000.” Jurnal Informatika dan Sistem Informasi 2(2):1689–99.

Susilo, L. dan Kaho, R. (2018). Manajemen risiko berbasis iso 31000: untuk industri nonperbankan. edisi revisi. Jakarta: PPM.

Fernando, Andri. 2020. “Analisis Manajemen Risiko Sistem Informasi Automotive Management System (AMS) Menggunakan Metode ISO 31000”.

M. Miftakhatun, “Analisis Manajemen Risiko Teknologi Informasi pada Website Ecofo Menggunakan ISO 31000,” J. Comput. Sci. Eng., vol. 1, no. 2, pp. 128–146, 2020, doi: 10.36596/jcse.v1i2.76.

D. E. Adi and N. Susanto, “Analisis Manajemen Risiko Aktivitas Pengadaan pada Percetakan Surat Kabar,” J. Metris, vol. 18, pp. 113–118, 2017.

D. L. Ramadhan, R. Febriansyah, and R. S. Dewi, “Analisis Manajemen Risiko Menggunakan ISO 31000 pada Smart Canteen SMA XYZ,” JURIKOM (Jurnal Riset Komputer), vol. 7, no. 1, p. 9.

A. R. Tampubolon and Suhardi, “Manajemen Risiko Teknologi Informasi Menggunakan Framework ISO 31000 : 2009 Studi Kasus : Pembobolan ATM BCA Tahun 2010,” J. Telemat., vol. 7, no. 2, pp. 1–10, 2011.




DOI: http://dx.doi.org/10.30645/j-sakti.v7i2.675

Refbacks

  • There are currently no refbacks.


J-SAKTI (Jurnal Sains Komputer & Informatika)
Published Papers Indexed/Abstracted By:

Jumlah Kunjungan :

View My Stats