Text

Perancangan ICT Readiness for Business Continuity menggunakan SNI ISO/IEC 27031:2016 (studi kasus: Diskominfo kabupaten Bogor)

---

Pemutakhiran teknologi informasi sebagai implementasi dari Sistem Pemerintahan Berbasis Elektronik (SPBE) sudah mulai diterapkan di Dinas Komunikasi dan Informatika (Diskominfo) Kabupaten Bogor. Adanya perkembangan teknologi informasi tersebut membuat semakin besar peluang ancaman terhadap keamanan siber maupun keamanan informasi. Oleh karena itu perlu adanya ICT Readiness for Business Continuity (IRBC), agar dapat mengurangi risiko dan kerugian akibat kerentanan yang muncul. Tahapan dalam melakukan IRBC diantaranya yaitu risk assessment, ICT readiness policy for business continuity, dan ICT readiness strategy berdasarkan SNI ISO/IEC 27031:2016. Perancangan IRBC dilakukan di Seksi Persandian dan Sub Bidang Infrastruktur Pusat Data Diskominfo Kabupaten Bogor. Penilaian risiko terfokus pada aset TIK yang meliputi proses bisnis, informasi, software, hardware, dan sumber daya manusia, dengan mengadopsi tujuh tahapan yang ada pada NIST SP 800-30 Rev 1. Pembuatan ICT readiness policy for business continuity berdasarkan NIST SP 80-34 Rev 1. Berdasarkan hasil penilaian risiko, terdapat 129 risiko. Risiko dengan kategori high menjadi prioritas utama. Proses bisnis layanan sertifikat digital dalam bentuk E-Sign dan layanan pusat data memiliki tingkat kritikalitas yang besar. Pembuatan rekomendasi kesiapan aset TIK untuk keberlangsungan bisnis di Diskominfo Kabupaten Bogor, dilakukan dengan mengelompokan aset berdasarkan enam elemen IRBC. --

Updating information technology as an implementation of the Electronic-Based Government System has begun to be implemented at the Bogor Regency Communications and Information Office (Diskominfo). With the development of information technology, there are greater opportunities for threats to cyber security and information security. Therefore, it is necessary to have ICT Readiness for Business Continuity (IRBC), in order to reduce risks and losses due to emerging vulnerabilities. The stages in conducting IRBC include risk assessment, ICT readiness policy for business continuity, and ICT readiness strategy based on SNI ISO/IEC 27031:2016. The IRBC design was carried out in the Encryption Section and the Infrastructure Sub-Sector of the Data Center Diskominfo Bogor Regency. The risk assessment focuses on ICT assets which include business processes, information, software, hardware, and human resources, by adopting the seven stages contained in NIST SP 800-30 Rev 1. Developing an ICT readiness policy for business continuity based on NIST SP 80-34 Rev 1. Based on the results of the risk assessment, there are 129 risks. Risks with a high category are the top priority. The business process of digital certificate services in the form of E-Sign and data center services has a high level of criticality. Making recommendations for the readiness of ICT assets for business continuity at the Diskominfo Bogor Regency is carried out by grouping assets based on six IRBC elements.

---

Availability

No copy data

Detail Information

Series Title

-

Call Number

2022 SAF p

Publisher

Bogor : Poltek SSN., 2022

Collation

xv, 175 hlm.

Language

Indonesia

ISBN/ISSN

--

Classification

--

Content Type

-

Media Type

-

Carrier Type

-

Edition

--

Subject(s)

rekomendasi kontrol
Business Impact Analysis
Diskominfo Kabupaten Bogor
IRBC
Risk Assessment
Rekomendasi Strategi

Specific Detail Info

-

Statement of Responsibility

Saffana Tistiyani

Other version/related

File Attachment

Comments

---

You must be logged in to post a comment