Ananda Sekar Putri, - (2023) ANALISIS MANAJEMEN RISIKO KEAMANAN INFORMASI BERDASARKAN KONTROL KERANGKA KERJA NIST SP 800-30 STUDI KASUS: SISTEM INFORMASI AKADEMIK (SIAK) UPI. S1 thesis, Universitas Pendidikan Indonesia.
![[img]](http://repository.upi.edu/style/images/fileicons/text.png) |
Text
S_PSTI_1904412_Title.pdf Download (284kB) |
|
Text
S_PSTI_1904412_Chapter 1.pdf Download (122kB) |
|
Text
S_PSTI_1904412_Chapter 2.pdf Restricted to Staf Perpustakaan Download (206kB) | Request a copy |
|
Text
S_PSTI_1904412_Chapter 3.pdf Download (77kB) |
|
Text
S_PSTI_1904412_Chapter 4.pdf Restricted to Staf Perpustakaan Download (230kB) | Request a copy |
|
Text
S_PSTI_1904412_Chapter 5.pdf Download (51kB) |
|
Text
S_PSTI_1904412_Appendix.pdf Restricted to Staf Perpustakaan Download (1MB) | Request a copy |
Abstract
Sistem informasi menjadi salah satu bentuk teknologi yang banyak dimanfaatkan oleh berbagai bidang kehidupan. Dalam dunia pendidikan digunakan sistem informasi akademik sebagai sistem yang ditujukkan kepada civitas akademik, khususnya mahasiswa dan dosen untuk menyimpan, mengolah dan menampilkan data mengenai administrasi akademik. Melihat kebutuhan sistem informasi akademik menghimpun banyak data civitas akademik yang terlibat, maka hal tersebut memungkinkan kerentanan pada keamanan jaringan sistem informasi. Penelitian ini bertujuan untuk mengidentifikasi keamanan sistem yang diterapkan pada sistem informasi akademik. Dalam penelitian ini digunakan pendekatan kualitatif dan desain penelitian studi kasus dengan proses analisis yang dilakukan melalui observasi wawancara dan dokumentasi. Pada proses analisis digunakan metode OCTAVE (Operationally Critical Threat, Asset and Vulnerability) guna melakukan pengolahan data hasil wawancara dan observasi. Berdasarkan penelitian yang dilakukan diharapkan dapat menghasilkan manajemen risiko kepamanan sistem informasi akademik yang mengacu pada kontrol kerangka kerja keamanan informasi NIST SP 800-30. ----- Information systems are a form of technology that is widely used by various fields of life. In the world of education, an academic information system is used as a system aimed at the academic community, especially students and lecturers, to store, process and display data regarding academic administration. Seeing the need for an academic information system to collect a lot of data from the academic community involved, this allows for vulnerabilities in the security of the information system network. This study aims to identify system security that is applied to academic information systems. In this study used a qualitative approach and a case study research design with an analysis process carried out through observation, interviews and documentation. In the analysis process used the OCTAVE method (Operationally Critical Threat, Asset and Vulnerability) in order to process data from interviews and observations. Based on the research conducted, it is hoped that it will produce security risk management for academic information systems that refer to the NIST SP 800-30 information security framework controls. Keywords: Academic Information Systems, Information Security, Risk Management, NIST SP 800-30
| Item Type: | Thesis (S1) |
|---|---|
| Additional Information: | Link Google Scholer : Nuur Wachid Abdul Majid : https://scholar.google.com/citations?user=EOVUYkEAAAAJ&hl=en&oi=sra Rizki Hikmawan : https://scholar.google.com/citations?user=f2CeMUMAAAAJ&hl=en&oi=sra ID Sinta Nuur Wachid Abdul Majid : 6054692 Rizki Hikmawan : 6122897 |
| Uncontrolled Keywords: | Sistem Informasi Akademik, Keamanan Informasi, Manajemen Risiko, NIST SP 800-30 |
| Subjects: | L Education > L Education (General) T Technology > T Technology (General) |
| Divisions: | UPI Kampus Purwakarta > S1 Pendidikan Sistem Teknologi dan Informasi |
| Depositing User: | Ananda Sekar Putri |
| Date Deposited: | 22 Aug 2023 08:00 |
| Last Modified: | 22 Aug 2023 08:00 |
| URI: | http://repository.upi.edu/id/eprint/97821 |
Actions (login required)
 |
View Item |