SARI, WINNI INDAH KURNIA (2023) RISK ASSESMENT PENGENDALIAN KEAMANAN INFORMASI BERBASIS ISO/IEC 27001:2013 MENGGUNAKAN METODE FAILURE MODE AND EFFECTS ANALYSIS (FMEA) STUDI KASUS: TIM BRINESIA PT. BRI ASURANSI INDONESIA. S1 thesis, Universitas Mercu Buana Jakarta-Menteng.
|
Text (Cover)
41820120029 - WINNI INDAH KURNIA SARI - 01 Cover.pdf Download (317kB) | Preview |
|
|
Text (Abstrak)
41820120029 - WINNI INDAH KURNIA SARI - 02 Abstrak.pdf Download (142kB) | Preview |
|
Text (Bab 1)
41820120029 - WINNI INDAH KURNIA SARI - 03 Bab 1.pdf Restricted to Registered users only Download (124kB) |
||
Text (Bab 2)
41820120029 - WINNI INDAH KURNIA SARI - 04 Bab 2.pdf Restricted to Registered users only Download (327kB) |
||
Text (Bab 3)
41820120029 - WINNI INDAH KURNIA SARI - 05 Bab 3.pdf Restricted to Registered users only Download (188kB) |
||
Text (Bab 4)
41820120029 - WINNI INDAH KURNIA SARI - 06 Bab 4.pdf Restricted to Registered users only Download (202kB) |
||
Text (Bab 5)
41820120029 - WINNI INDAH KURNIA SARI - 07 Bab 5.pdf Restricted to Registered users only Download (141kB) |
||
Text (Daftar Pustaka)
41820120029 - WINNI INDAH KURNIA SARI - 08 Daftar Pustaka.pdf Restricted to Registered users only Download (110kB) |
||
Text (Lampiran)
41820120029 - WINNI INDAH KURNIA SARI - 09 Lampiran.pdf Restricted to Registered users only Download (335kB) |
||
Text (Formulir pernyataan keabsahan dan publikasi tugas akhir)
Formulir pernyataan keabsahaan dan publikasi tugas akhir.pdf Restricted to Registered users only Download (110kB) |
Abstract
Penerapan teknologi informasi tidak terlepas dari adanya risiko (Information Technology Risk) yang dapat mempengaruhi pencapaian sasaran organisasi. Sebagai salah satu bidang yang sangat erat kaitannya dengan pengembangan teknologi, mengharuskan tim BRINESIA menjadi unit yang membutuhkan perlindungan keamanan informasi sebagai upaya menjaga kualitas keamanan informasi termasuk aset-aset yang dimiliki. Untuk mengantisipasi kemungkinan terjadinya kebocoran data, kerusakan, ketidakakuratan, ketidaktersediaan atau gangguan lain terhadap informasi maka perlu dilakukan penilaian risiko. Metode yang digunakan untuk menganalisis potensi kegagalan atau risiko yaitu FMEA (Failure Mode & Effect Analysis) metode terstruktur yang dapat digunakan untuk mengidentifikasi, memprioritaskan mode kegagalan (failure mode) dengan cara menentukan nilai severity, occurrence, detection hingga menghasilnya Nilai Risk Priority Number (RPN) serta dapat memberikan rekomendasi mitigasi risiko berbasis ISO/IEC 27001:2013. Penelitian ini menghasilkan level failuire mode pada aset informasi yang dikelola pada tim BRINESIA, serta acuan mitigasi risiko yang dapat digunakan oleh tim BRINESIA dalam melaksanakan pengendalian keamanan informasi. Kata Kunci: FMEA (Failure Mode & Effect Analysis), severity, occurrence, detection, Risk Priority Number, ISO/IEC 27001:2013, mitigasi risiko. The application of information technology is inseparable from the existence of risks (Information Technology Risk) that can affect the goals of the organization. As a field that is closely related to technology development, it requires the BRINESIA team to become a unit that requires information security protection to maintain the quality of information security, including its assets. To anticipate the possibility of data leakage, damage, inaccuracy, unavailability, or other disturbances to information, it is necessary to carry out a risk assessment. There are various methods for analyzing potential failures or risks, one of which is quite popular is FMEA (Failure Mode & Effect Analysis) a structured method that can be used to identify, and prioritize failure modes by determining the level of severity, occurrence, detection to produce a Risk Priority Number (RPN) and be able to provide recommendations for risk management based on ISO/IEC 27001:2013. This research produces potential failure rate modes for information assets managed by the BRINESIA team and priority risks, as well as risk management references that can be used by the BRINESIA team in implementing information security controls. Keywords: FMEA (Failure Mode & Effect Analysis), Risk Priority Number, ISO/IEC 27001:2013, risk mitigation.
Item Type: | Thesis (S1) |
---|---|
NIM/NIDN Creators: | 41820120029 |
Uncontrolled Keywords: | Kata Kunci: FMEA (Failure Mode & Effect Analysis), severity, occurrence, detection, Risk Priority Number, ISO/IEC 27001:2013, mitigasi risiko. Keywords: FMEA (Failure Mode & Effect Analysis), Risk Priority Number, ISO/IEC 27001:2013, risk mitigation. |
Subjects: | 000 Computer Science, Information and General Works/Ilmu Komputer, Informasi, dan Karya Umum > 000. Computer Science, Information and General Works/Ilmu Komputer, Informasi, dan Karya Umum > 003 Systems/Sistem-sistem |
Divisions: | Fakultas Ilmu Komputer > Sistem Informasi |
Depositing User: | SITI NOVI NUR CAHYANI |
Date Deposited: | 04 Apr 2023 03:10 |
Last Modified: | 04 Apr 2023 03:10 |
URI: | http://repository.mercubuana.ac.id/id/eprint/76011 |
Actions (login required)
View Item |