Quantitative Risk Analysis of Asset Information Technology at STT Pagaralam

Muslim, Buhori

doi:10.28989/senatik.v4i0.186

Cited by 4 publications

(5 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Analisis risiko kuantitatif adalah teknik menganalisis risiko dengan angka untuk mewakili efektivitas dan probabilitas. Jika nilai risiko kuantitatif yang diharapkan berlaku untuk penerapan pengukuran numerik biaya sumber daya yang dinyatakan dalam jumlah, bersama dengan probabilitas kerugian, jumlah kasus, dan nilai frekuensi kejadian serta ancaman kerentanan, metode ini memperoleh hasil ke dalam bentuk indikator [12]. Fase QRA (Quantitative Risk Analysis) terdiri dari tujuh fase penting berikut ini.…”

Section: Metode Penelitianunclassified

“…Penjumlahan dengan cara perhitungan rumit mulai terjadi karena pada tahapan ini harus menghitung satu nilai Faktor Dampak untuk setiap bagian jenis aset IT. Pada tabel 1 dapat dilihat nilai aset adalah nilai finansial setiap aset IT yang nilainya ditentukan pada langkah penetapan harga aset [12]. Sedangkan pada tabel 2 menampilkan Eksposur Factor (EF) yang terdapat nilai Persentase kerugian karena ancaman terhadap sumber daya IT, pada EF memiliki jarak rentang nilai antara 0 dan 1 dalam rumus (2), Annualized Rate Occurrence (ARO), persentase potensi ancaman terhadap aset IT dalam setahun [13].…”

Section: Quantitative Risk Analysisunclassified

See 1 more Smart Citation

Penilaian IT Governance dalam Manajemen Risiko IT Menggunakan Metode Quantitative dan Qualitative Risk Analysis

Syaputra¹

2022

JAMIKA

View full text Add to dashboard Cite

IT Governance is the structure of process relationships that guide and control an organization to achieve its vision and mission by adding value that will balance risks with IT and its processes. The analytical method used in this research is quantitative and qualitative risk analysis. The Quantitative Risk Analysis (QRA) approach focuses on analyzing the maintenance of IT resources to find risk factors that need serious consideration and treatment. For the qualitative risk analysis method, NIST SP 800-30 is used to analyze the various threat and risk attributes to provide guidelines for managing IT installations at XYZ Campus. Based on the QRA risk assessment, Internal HR who has access to the server is calculated as the highest potential campus loss. This can be seen in the risk aspect where losses caused by Internal HR who play the role of server admins have the greatest potential for losses. Qualitative assessment of risk management finds sources of threats with high risk are Internal HR and IT Infrastructure Systems. This level of risk can be detected during the hazard source classification process. The presentation of all risk analysis results can provide risk recommendations that will be communicated to campus IT management. To then be able to assist the campus in making a decision that includes policies, procedures, budgets, system operations, and change management.

show abstract

Section: Metode Penelitianunclassified

Section: Quantitative Risk Analysisunclassified

Penilaian IT Governance dalam Manajemen Risiko IT Menggunakan Metode Quantitative dan Qualitative Risk Analysis

Syaputra¹

2022

JAMIKA

View full text Add to dashboard Cite

show abstract

“…Kegiatan utama dalam bidang pemerintahan salah satunya adalah pelayanan kepada masyarakat sesuai dengan fungsi utamanya yaitu pelayanan optimal [3]. Dalam mengimplementasikan layanan pada masyarakat ini, sangat penting untuk menggunakan IT yang dapat menjaga kecepatan, kenyamanan dan kemudahan dalam layanan pada masyarakat untuk memberikan kepada masyarakat layanan yang berkualitas tinggi [4]. Adopsi TI untuk penggunaan TI harus disertai dengan tata kelola khusus untuk meminimalkan gangguan lebih lanjut terhadap proses bisnis.…”

Section: Pendahuluanunclassified

Implementasi Metode Quantitative dan Qualitative Pada Risk Analysis & IT Risk Management

Syaputra,

Muslim

2022

FaktorExacta

View full text Add to dashboard Cite

The purpose of this study is to produce blue prints based on the level that positively and negatively affects hardware and software in one of the Agencies in City which will later become a benchmark to avoid or overcome problems that will be faced in the IT governance and IT infrastructure. IT governance is a process relationship structure that guides and controls an organization to achieve its vision and mission by creating value that balances risk with IT and its processes. An IT facility is an entity that performs the administrative and management functions of all IT applications in the Department XYZ environment for protection against unwanted threats that require risk management assessment. Minimize the danger or risk that may arise. The two analytical methods used in this study are quantitative and qualitative risk analysis. In the future, the quantitative risk analysis (QRA) approach will focus more on analyzing the condition of IT assets to find risk factors that need serious consideration and handling. For qualitative risk analysis methods, NIST SP 80030 is used to analyze various threat and risk attributes for to provide guidelines for the management of IT facilities in Department XYZ. Based on the QRA risk assessment, it was concluded that server-class IT resources are counted as the biggest potential loss to the Service. This is reflected in the risk aspect, where power losses have the most potential damage. Qualitative assessment of risk management according to NIST SP 80030 found that the sources of high-risk threats are high-risk power grids and the Internet. This level of risk can be identified during the threat source classification process. Submission of all risk analysis results can provide the results of risk recommendations communicated with departement IT management. To then be able to help the campus make decisions that include policies, procedures, budgets, operating systems and change management.

show abstract

“…Metode penelitian yang dalam arti luasnya merupakan tata cara dilaksanakannya penelitian ini, mengikuti metode tertentu mulai analisis awal perumusan, pengumpulan data, analisis kebutuhan data, desain atau rancangan penelitian, sampai dengan hasil dan analisis data berkenaan dengan fokus masalah tertentu yang diselesaikan pada penelitian [14].…”

Section: Metodeunclassified

Animated Stunting Counseling for Department of Health Pagar Alam City Based on Multimedia

Muslim¹,

Firdaus²

2020

Senatik

Self Cite

View full text Add to dashboard Cite

Stunting counseling carried out by the Pagar Alam City Health Office is still conventional, explaining directly by extension agents and power points so that people who take part in extension activities are easily bored, this study aims to design and build media for stunting prevention using animation at the Pagar Alam City Health Service based on multimedia using adobe. Flash Cs6 is able to attract interest and eliminate the feeling of boredom of extension participants, the development stage of this research uses the ADDIE method, the ADDIE model development design consists of five steps, namely analysis, design, development, implementation, evaluation. This animation was built and designed using adobe flash CS6 actionscript 2.0 to measure the validity level of the animation. This countermeasure is used, namely expert reviews of experts, or alpha tests obtained from the results to see the level of understanding and public interest before and after the use of stunting control animation. This animation is expected to be able to help the health office of Pagar Alam City in making stunting education more efficient. The final result of this research is an animation of stunting control to increase public knowledge and become an animated video for the

show abstract

Quantitative Risk Analysis of Asset Information Technology at STT Pagaralam

Cited by 4 publications

References 0 publications

Penilaian IT Governance dalam Manajemen Risiko IT Menggunakan Metode Quantitative dan Qualitative Risk Analysis

Penilaian IT Governance dalam Manajemen Risiko IT Menggunakan Metode Quantitative dan Qualitative Risk Analysis

Implementasi Metode Quantitative dan Qualitative Pada Risk Analysis & IT Risk Management

Animated Stunting Counseling for Department of Health Pagar Alam City Based on Multimedia

Contact Info

Product

Resources

About