Analisis Risiko Aplikasi HCMS PT. Bank SulutGo menggunakan ISO 31000

Regina Sophia Laode(1*), Rudi Latuperissa(2),

(1) Universitas Kristen Satya Wacana, Indonesia
(2) Universitas Kristen Satya Wacana, Indonesia
(*) Corresponding Author

Abstract


This study aims to analyze the risks contained in the Human Capital Management System (HCMS) application at PT Bank SulutGo using the ISO 31000 standard as a risk management framework. The research method used is qualitative, with data collection through literature studies, interviews with HCMS application admins, and direct observation of application business processes. The risk management process is carried out through the stages of communication and consultation, context setting, risk assessment (identification, analysis, and risk evaluation), and risk treatment according to ISO 31000 guidelines. The results showed that there were 11 main risks identified, which were grouped into human, environmental, and system factors. These risks include data input errors, password theft, lack of operator training, network disruptions, and data breaches. Risk analysis was conducted by assessing the probability and impact of each risk, then evaluated to determine the priority of handling. Proposed risk mitigation recommendations include increased training, strengthened system security, and improved data input procedures. In conclusion, a systematic approach to IT risk management is essential to maintain the sustainability and security of banking operations in the digital era.

Full Text:

PDF

References


Admin, “Mengenal Apa itu Human Resource Management System,” 28 Juni. [Online]. Available: https://fitacademy.id/blog/mengenal-apa-itu-human-resource-management-system.

Prospero, “Manajemen Risiko Operasional: Tantangan dan Solusi untuk Bank di Indonesia,” 3 Januari.

“Langkah Menghindari Risiko dengan IT Risk Management,” 6 November. [Online]. Available: https://sisi.id/stories/insight/langkah-menghindari-risiko-dengan-it-risk-management/.

P. SoM, “Manajemen Risiko: Pengertian, Manfaat dan Langkahnya,” 20 Juni. [Online]. Available: https://ppmschool.ac.id/manajemen-risiko/#Pengertian.

ISO, “Manajemen Risiko — Prinsip dan Pedoman,” November. [Online]. Available: https://www-iso-org.translate.goog/standard/43170.html?_x_tr_sl=en&_x_tr_tl=id&_x_tr_hl=id&_x_tr_pto=sge.

C. Kusuma, “Membedah Anatomi ISO 31000: 2009 Risk Management – Principles and Guidelines.” [Online]. Available: https://crmsindonesia.org/publications/membedah-anatomi-iso-31000-2009-risk-management-principles-and-guidelines/.

K. B. Mahardika, A. F. Wijaya, and A. D. Cahyono, “Manajemen Risiko Teknologi Informasi Menggunakan Iso 31000 : 2018 (Studi Kasus: Cv. Xy),” Sebatik, vol. 23, no. 1, pp. 277–284, 2019, doi: 10.46984/sebatik.v23i1.572.

E. Haryani, S. S. Informasi, F. T. Informasi, U. Kristen, and S. Wacana, “Penerapan ISO 31000 : 2018 untuk Analisis Manajemen Risiko pada Sistem Informasi Smart Operation di PT . XYZ,” vol. 9, pp. 947–957, 2024.

N. Novita Setyaningrum and E. Maria, “Penerapan Iso 31000:2018 Untuk Manajemen Risiko Pada Sistem Informasi Sekolah Terpadu,” J. Pendidik. Teknol. Inf., vol. 7, no. 1, pp. 31–44, 2024, doi: 10.37792/jukanti.v7i1.1164.

R. I. Dewi and I. Ilham, “Analisis Manajemen Risiko pada UMKM Menggunakan Iso 31000,” J. Bisnis, Manajemen, Dan Inform., vol. 20, no. 2, pp. 124–135, 2023, doi: 10.26487/jbmi.v20i2.32130.

H. T. I. Driantami, Suprapto, and A. R. Perdanakusuma, “Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 ( Studi kasus : Sistem Penjualan PT Matahari Department Store Cabang Malang Town Square ),” J. Pengemb. Teknol. Inf. dan Ilmu Komput., vol. 2, no. 11, pp. 4991–4998, 2018.

Q. Dr Ir Dwi Rachmina, M.Si, “Penilaian Risiko – In General.” [Online]. Available: https://irmapa.org/penilaian-risiko-in-general/.




DOI: https://doi.org/10.30645/kesatria.v6i2.590

DOI (PDF): https://doi.org/10.30645/kesatria.v6i2.590.g585

Refbacks

  • There are currently no refbacks.


Published Papers Indexed/Abstracted By: