Risk Analysis and Control of Personal Data Protection in the Population Administration Information System

Santosa, Iqbal; Yusvinindya, Raras

doi:10.29207/resti.v3i3.1068

Cited by 3 publications

(3 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Penelitian kualitatif adalah metode pengumpulan data deskriptif individu, bahasa tertulis dan lisan digunakan untuk menggambarkan perilaku yang diamati. [2], [3], [4], [5], [6], [7], [8], [9], [10], [11], [12], [13], [14], [15], [16], [17], [18], [19] dan [20].…”

Section: Pengumpulan Dataunclassified

Manajemen Risiko Sistem Informasi Mengacu pada NIST SP 800-30 dan NIST SP 800-53 rev.5

Asari,

2023

JTEKSIS

View full text Add to dashboard Cite

Melalui Balai Penelitian, Kementerian Pertanian memanfaatkan penggunaan website yaitu bsip.pertanian.go.id yang bertujuan untuk keperluan membantu pengguna dengan cara penyebaran informasi. Dalam pengelolaan sistem informasi ini, teknologi informasi merupakan salah satu bagian terpenting, di mana keberhasilan pelayanan tergantung sejauh mana manajemen teknologi informasi telah berkembang. Namun, bahaya yang mengancam kelangsungan sistem informasi sering berkembang. Tujuan dari penelitian ini adalah untuk menentukan risiko dan saran atau rekomendasi untuk penanganan risiko tersebut yang berdasarkan metode NIST SP 800-30 dalam karakterisasi sistem, identifikasi ancaman, identifikasi kerentanan, analisis kontrol, penentuan kemungkinan, analisis dampak, penentuan risiko, rekomendasi kontrol dengan pedoman pendukung NIST SP 800-53 rev.5 dan hasil dokumentasi. Dengan menggunakan metode pengumpulan data berupa wawancara dan observasi. Menurut penelitian ini, terdapat 18 risiko diantaranya 3 high, 4 medium, 6 low dan 5 very low pada tingkat penialian risiko beserta rekomendasinya pada setiap risiko pada website bsip.pertanian.go.id.

show abstract

Section: Pengumpulan Dataunclassified

Manajemen Risiko Sistem Informasi Mengacu pada NIST SP 800-30 dan NIST SP 800-53 rev.5

Asari,

2023

JTEKSIS

View full text Add to dashboard Cite

show abstract

“…Although its function far exceeds the sum of the individual alliance members, it does not have compulsory alliances in terms of property rights. e right of contact between employees and enterprises and the virtual enterprise realizes the sharing of different dedicated assets under the premise of no transfer of property rights [25].…”

Section: Constraint Determinationmentioning

confidence: 99%

Risk Control of Virtual Enterprise Based on Distributed Decision‐Making Model

Ouyang

2021

Complexity

View full text Add to dashboard Cite

Virtual enterprise is a dynamic alliance of businesses, in which multiple members undertake joint research, development, manufacturing, operation, etc. The complexity of the relationship between business members, coupled with many new technologies or methods applied in the alliance operation, leads to more uncertain factors and difficulties in the operation and risk management of the virtual enterprise. The distributed decision-making model is a fast and effective decision-making model, in which dispersed intellectual resources and information resources are dynamically integrated through virtual organization forms and operating mechanisms, and the dynamic reorganization, result evaluation, and synthesis of the decision-making system are realized by certain control rules. On the basis of summarizing and analyzing previous research works, this paper expounded the research status and significance of the risk control of virtual enterprise; elaborated the development background, current status, and future challenges of distributed decision-making model; introduced the related works of decision-making variable calculation and constraint determination; constructed a risk control model for virtual enterprise based on distributed decision-making model; analyzed the multiobjective model and interval programming model of risk control; established a risk control approach for virtual enterprise based on distributed decision-making model; performed the optimal allocation of risk control funds and the selective optimization of backup allies; and finally conducted a case analysis. The study results show that, in view of the diversity of relationships between alliance businesses and the complexity of the distribution of cooperative areas, the distributed decision-making model can more reasonably describe the relationship between alliance members and accurately control the risks of virtual enterprise from multiple angles, which can effectively manage the risks of virtual enterprise. The study results of this paper provide a reference for further research on the risk control of virtual enterprise based on distributed decision-making model.

show abstract

“…The results of this study; 1) the PO8 domain is the domain with the highest maturity level; 1.7 is Repeatable where the company has developed, but the company does not have documentation but standard procedures; 2) the PO4 domain of 0.8 Initial/Ad hoc where the company knows the existing problems but the process is not balanced. [11] conducted a study to analyze data with risk analysis using the ISO 31000:2018 risk management approach, where the relevant risk identification refers to Generic Risk Scenarios COBIT 5 For Risk, and the determination of relevant controls refers to the Department of Defense Instruction 8500.2 and NIST 800-53. This research involves the Head of Service and Disdukcapil employees of XYZ City who are related to the strategic and operational aspects of SIAK.…”

Section: Introductionmentioning

confidence: 99%

Information technology governance in University of Muhammadiyah Palembang using framework COBIT 5 domain; Evaluate, Direct and Monitor (EDM)

et al. 2022

View full text Add to dashboard Cite

This study aims to find out about Information Technology management at Muhammadiyah University of Palembang and to get right advice in managing Information Technology from the University level to the Study Program. Regarding benchmarks in Information Technology Governance use the Cobit 5 framework with the Evaluate, Direct and Monitor domains. Monitoring and evaluation was carried out using a questionnaire distributed to lecturers and employees at the Muhammadiyah University of Palembang and the researchers did observations on the management of higher education information technology governance. Based on the questionnaire result, the highest gap occurs in sub domain 4, which is 3.65 while the observation result towards the capability level is at level 3 with a value of 56.67%, the sub domain ensuring resource optimization has the highest capability value of 66.67%. Based on the data obtained using the EDM domain, the University of Muhamadiyah Palembang has to set Standard Operating Procedures (SOP) and Work Instructions (IK) so every five processes can run well to create good IT governance.

show abstract

Risk Analysis and Control of Personal Data Protection in the Population Administration Information System

Cited by 3 publications

References 3 publications

Manajemen Risiko Sistem Informasi Mengacu pada NIST SP 800-30 dan NIST SP 800-53 rev.5

Manajemen Risiko Sistem Informasi Mengacu pada NIST SP 800-30 dan NIST SP 800-53 rev.5

Risk Control of Virtual Enterprise Based on Distributed Decision‐Making Model

Information technology governance in University of Muhammadiyah Palembang using framework COBIT 5 domain; Evaluate, Direct and Monitor (EDM)

Contact Info

Product

Resources

About