This research aims to find out what risks may occur at xyz hospital Pekan Baru and how big the probability is and the impact on xyz hospital, by using ISO 31000 and determining the RACI Chart. The first step is risk assessment. It consists of the phases of risk identification, risk analysis, and risk assessment. In the second stage, risk treatment is used. In this phase, we will solve any solutions that will reduce or even prevent all the consequences and potential damage that may occur due to the risk. The findings of this research are that there are 10 risks, 2 of which are in the High category and 8 of which are in the Medium category, the risk treatment for the High category needs to be taken seriously where the risk treatment for power outages has a UPS (backs up computer power when the power goes out) and then connected to generators, and risk treatment for fire. Providing fire extinguishers at every point in the hospital, and there is a code red team (front guard team in case of fire). 2 risks, namely fire and power outages, which are classified in the high category and require serious action to handle them, and there are 8 medium risk categories, at the medium level the number that appears the most is number 12 where there are 4 risks, namely server down, human error , lightning, and corrupt data which has the number 12 and the number 12 also needs to take serious action to deal with it because it is almost classified as High.

N. M. Fadilla and W. Setyonugroho, “Sistem informasi manajemen rumah sakit dalam meningkatkan efisiensi: mini literature review,” J. Tek. Inform. dan Sist. Inf., vol. 8, no. 1, pp. 357–374, 2021.

L. E. Hutagalung, “Analisa Manajemen Risiko Sistem Informasi Manajemen Rumah Sakit (Simrs) Pada Rumah Sakit Xyz Menggunakan Iso 31000,” TeIKa, vol. 12, no. 01, pp. 23–33, 2022, doi: 10.36342/teika.v12i01.2820.

A. P. Aisyah and L. Dahlia, “Enterprise Risk Management Berdasarkan ISO 31000 Dalam Pengukuran Risiko Operasional pada Klinik Spesialis Esti,” J. Akunt. dan Manaj., vol. 19, no. 02, pp. 78–90, 2022, doi: 10.36406/jam.v19i02.483.

R. D. P. Suhanda and D. Pratami, “RACI Matrix Design for Managing Stakeholders in Project Case Study of PT. XYZ,” Int. J. Innov. Enterp. Syst., vol. 5, no. 02, pp. 122–133, 2021, doi: 10.25124/ijies.v5i02.134.

Yuswardi, F. Adinda, Helen, L. Meilani, V. L. Kevin, and Vallencia, “Jurnal Mirai Management Pengaruh Penerapan Manajemen Risiko Bisnis dalam Small Business Development pada UMKM Board Games,” J. Mirai Manag., vol. 7, no. 3, pp. 512–526, 2022.

G. Gioferi and Y. Yulhendri, “Penilaian Risiko TI Pada Website DosenIT Dengan Framework ISO 31000 Dan ISO 27002,” J. Teknol. Dan Sist. Inf. Bisnis, vol. 5, no. 4, pp. 409–419, 2023, doi: 10.47233/jteksis.v5i4.897.

A. Fernando, “Analisis Manajemen Risiko Sistem Informasi Automotive Management System (Ams) Menggunakan Metode Iso 31000,” J. Ekon., vol. 2, no. 1, pp. 41–49, 2020, [Online]. Available: http://repository.uin-suska.ac.id/30869/

D. L. Ramadhan, R. Febriansyah, and R. S. Dewi, “Analisis Manajemen Risiko Menggunakan ISO 31000 pada Smart Canteen SMA XYZ,” JURIKOM (Jurnal Ris. Komputer), vol. 7, no. 1, p. 91, 2020, doi: 10.30865/jurikom.v7i1.1791.

S. Agustinus, A. Nugroho, and A. D. Cahyono, “Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 pada Program HRMS,” J. RESTI (Rekayasa Sist. dan Teknol. Informasi), vol. 1, no. 3, pp. 250–258, 2017, doi: 10.29207/resti.v1i3.94.

R. Bisma, “Risiko Aset Teknologi Informasi: Studi kasus Implementasi Manajemen Risiko SPBE Dinas Komunikasi dan Informatika Pemerintah Kota Balikpapan,” J. Inf. Eng. Educ. Technol., vol. 6, no. 2, pp. 73–79, 2022, doi: 10.26740/jieet.v6n2.p73-79.

S. A. Atmojo and A. D. Manuputty, “Analisis Manajemen Risiko Teknologi Informasi Menggunakan ISO 31000 pada Aplikasi AHO Office,” JATISI (Jurnal Tek. Inform. dan Sist. Informasi), vol. 7, no. 3, pp. 546–558, 2020, doi: 10.35957/jatisi.v7i3.525.

N. M. Farhan and B. Setiaji, “Indonesian Journal of Computer Science,” Indones. J. Comput. Sci., vol. 12, no. 2, pp. 284–301, 2023, [Online]. Available: http://ijcs.stmikindonesia.ac.id/ijcs/index.php/ijcs/article/view/3135

R. Fahlepi et al., “Analisis Manajemen Risiko IT Pada Sistem Informasi Akademik Menggunakan ISO 31000,” J. Sains Komput. Inform. (J-SAKTI, vol. 7, no. 2, p. 663, 2023.

A. Rahmawati and A. F. Wijaya, “Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 Pada Aplikasi ITOP,” J. SITECH Sist. Inf. dan Teknol., vol. 2, no. 1, pp. 13–20, 2019, doi: 10.24176/sitech.v2i1.3122.

W. Jannah, F. Sains, D. A. N. Teknologi, U. Islam, N. Sultan, and S. Kasim, “Ta. Wardatul Jannah,” 2022.

F. M. Hutabarat and A. D. Manuputty, “Analisis Resiko Teknologi Informasi Aplikasi VCare PT Visionet Data Internasional Menggunakan ISO 31000,” J. Bina Komput., vol. 2, no. 1, pp. 52–65, 2020, doi: 10.33557/binakomputer.v2i1.792.

M. I. Fachrezi, “Manajemen Risiko Keamanan Aset Teknologi Informasi Menggunakan Iso 31000:2018 Diskominfo Kota Salatiga,” JATISI (Jurnal Tek. Inform. dan Sist. Informasi), vol. 8, no. 2, pp. 764–773, 2021, doi: 10.35957/jatisi.v8i2.789.