ANALISIS MANAJEMEN RISIKO KEAMANAN INFORMASI BERDASARKAN KONTROL KERANGKA KERJA NIST SP 800-30 STUDI KASUS: SISTEM INFORMASI AKADEMIK (SIAK) UPI

    Ananda Sekar Putri, - (2023) ANALISIS MANAJEMEN RISIKO KEAMANAN INFORMASI BERDASARKAN KONTROL KERANGKA KERJA NIST SP 800-30 STUDI KASUS: SISTEM INFORMASI AKADEMIK (SIAK) UPI. S1 thesis, Universitas Pendidikan Indonesia.

    Abstract

    Sistem informasi menjadi salah satu bentuk teknologi yang banyak dimanfaatkan oleh berbagai bidang kehidupan. Dalam dunia pendidikan digunakan sistem informasi akademik sebagai sistem yang ditujukkan kepada civitas akademik, khususnya mahasiswa dan dosen untuk menyimpan, mengolah dan menampilkan data mengenai administrasi akademik. Melihat kebutuhan sistem informasi akademik menghimpun banyak data civitas akademik yang terlibat, maka hal tersebut memungkinkan kerentanan pada keamanan jaringan sistem informasi. Penelitian ini bertujuan untuk mengidentifikasi keamanan sistem yang diterapkan pada sistem informasi akademik. Dalam penelitian ini digunakan pendekatan kualitatif dan desain penelitian studi kasus dengan proses analisis yang dilakukan melalui observasi wawancara dan dokumentasi. Pada proses analisis digunakan metode OCTAVE (Operationally Critical Threat, Asset and Vulnerability) guna melakukan pengolahan data hasil wawancara dan observasi. Berdasarkan penelitian yang dilakukan diharapkan dapat menghasilkan manajemen risiko kepamanan sistem informasi akademik yang mengacu pada kontrol kerangka kerja keamanan informasi NIST SP 800-30.
    -----
    Information systems are a form of technology that is widely used by various fields of
    life. In the world of education, an academic information system is used as a system aimed
    at the academic community, especially students and lecturers, to store, process and
    display data regarding academic administration. Seeing the need for an academic
    information system to collect a lot of data from the academic community involved, this
    allows for vulnerabilities in the security of the information system network. This study
    aims to identify system security that is applied to academic information systems. In this
    study used a qualitative approach and a case study research design with an analysis
    process carried out through observation, interviews and documentation. In the analysis
    process used the OCTAVE method (Operationally Critical Threat, Asset and
    Vulnerability) in order to process data from interviews and observations. Based on the
    research conducted, it is hoped that it will produce security risk management for
    academic information systems that refer to the NIST SP 800-30 information security
    framework controls.
    Keywords: Academic Information Systems, Information Security, Risk Management, NIST
    SP 800-30

    [thumbnail of S_PSTI_1904412_Title.pdf] Text
    S_PSTI_1904412_Title.pdf

    Download (284kB)
    [thumbnail of S_PSTI_1904412_Chapter 1.pdf] Text
    S_PSTI_1904412_Chapter 1.pdf

    Download (122kB)
    [thumbnail of S_PSTI_1904412_Chapter 2.pdf] Text
    S_PSTI_1904412_Chapter 2.pdf
    Restricted to Staf Perpustakaan

    Download (206kB) | Request a copy
    [thumbnail of S_PSTI_1904412_Chapter 3.pdf] Text
    S_PSTI_1904412_Chapter 3.pdf

    Download (77kB)
    [thumbnail of S_PSTI_1904412_Chapter 4.pdf] Text
    S_PSTI_1904412_Chapter 4.pdf
    Restricted to Staf Perpustakaan

    Download (230kB) | Request a copy
    [thumbnail of S_PSTI_1904412_Chapter 5.pdf] Text
    S_PSTI_1904412_Chapter 5.pdf

    Download (51kB)
    [thumbnail of S_PSTI_1904412_Appendix.pdf] Text
    S_PSTI_1904412_Appendix.pdf
    Restricted to Staf Perpustakaan

    Download (1MB) | Request a copy
    Official URL: http://repositori.upi.edu
    Item Type: Thesis (S1)
    Additional Information: Link Google Scholer : Nuur Wachid Abdul Majid : https://scholar.google.com/citations?user=EOVUYkEAAAAJ&hl=en&oi=sra Rizki Hikmawan : https://scholar.google.com/citations?user=f2CeMUMAAAAJ&hl=en&oi=sra ID Sinta Nuur Wachid Abdul Majid : 6054692 Rizki Hikmawan : 6122897
    Uncontrolled Keywords: Sistem Informasi Akademik, Keamanan Informasi, Manajemen Risiko, NIST SP 800-30
    Subjects: L Education > L Education (General)
    T Technology > T Technology (General)
    Divisions: UPI Kampus Purwakarta > S1 Pendidikan Sistem Teknologi dan Informasi
    Depositing User: Ananda Sekar Putri
    Date Deposited: 22 Aug 2023 08:00
    Last Modified: 22 Aug 2023 08:00
    URI: http://repository.upi.edu/id/eprint/97821

    Actions (login required)

    View Item View Item