IMPLEMENTASI IBM QRADAR COMMUNITY EDITION SEBAGAI SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) UNTUK DETEKSI ANCAMAN DAN SERANGAN SIBER

FATAH, MOHAMAD REZA AL (2024) IMPLEMENTASI IBM QRADAR COMMUNITY EDITION SEBAGAI SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM) UNTUK DETEKSI ANCAMAN DAN SERANGAN SIBER. S1 thesis, Universitas Mercu Buana Jakarta.

Preview	Text (HAL COVER) 01 COVER.pdf Download (468kB) | Preview
Preview	Text (ABSTRAK) 02 ABSTRAK.pdf Download (172kB) | Preview
	Text (BAB I) 03 BAB 1.pdf Restricted to Registered users only Download (148kB)
	Text (BAB II) 04 BAB 2.pdf Restricted to Registered users only Download (248kB)
	Text (BAB III) 05 BAB 3.pdf Restricted to Registered users only Download (297kB)
	Text (BAB IV) 06 BAB 4.pdf Restricted to Registered users only Download (789kB)
	Text (BAB V) 07 BAB 5.pdf Restricted to Registered users only Download (123kB)
	Text (DAFTAR PUSTAKA) 08 DAFTAR PUSTAKA.pdf Restricted to Registered users only Download (138kB)
	Text (LAMPIRAN) 09 LAMPIRAN.pdf Restricted to Registered users only Download (377kB)

Abstract

Cybersecurity is a crucial element in managing information technology infrastructure, especially with the increasing frequency and complexity of cyberattacks. This study aims to apply IBM QRadar Community Edition as a Security Information and Event Management (SIEM) platform to detect threats and cyberattacks on servers. IBM QRadar Community Edition offers an integrated solution to collect, analyze, and correlate log data from various sources to identify suspicious activity and provide early warnings. The research methodology includes the installation and configuration of IBM QRadar Community Edition on a virtual machine, setting up data flow sources to collect data from Linux servers, and creating rules to detect specific threats. Testing was conducted by simulating cyberattacks to evaluate the effectiveness of SIEM's detection and response capabilities. The study results show that IBM QRadar Community Edition can detect various types of cyberattacks in real-time and provide alerts that administrators can use to take mitigation actions. Implementing SIEM using IBM QRadar Community Edition has proven to enhance visibility and response to cyber threats, helping organizations manage network security more proactively and efficiently. This study makes a significant contribution to the field of cybersecurity, particularly in the application of SIEM solutions to detect and respond to threats in server environments. Keywords: Cybersecurity, IBM QRadar Community Edition, Security Information and Event Management (SIEM), Threat Detection, Cyber Attacks, Security Analysis. Keamanan siber adalah elemen penting dalam manajemen infrastruktur teknologi informasi, terutama dengan meningkatnya frekuensi dan kompleksitas serangan siber. Penelitian ini bertujuan untuk mengaplikasikan IBM QRadar Community Edition sebagai platform Security Information and Event Management (SIEM) untuk mendeteksi ancaman dan serangan siber pada server. IBM QRadar Community Edition menawarkan solusi yang terintegrasi untuk mengumpulkan, menganalisis, dan mengkorelasikan data log dari berbagai sumber guna mengidentifikasi aktivitas mencurigakan dan memberikan peringatan dini. Metode penelitian ini meliputi instalasi dan konfigurasi IBM QRadar Community Edition pada mesin virtual, pengaturan sumber aliran data untuk mengumpulkan data dari server Linux, serta pembuatan aturan untuk mendeteksi ancaman tertentu. Pengujian dilakukan dengan mensimulasikan serangan siber untuk menilai efektivitas deteksi dan respons SIEM. Hasil penelitian menunjukkan bahwa IBM QRadar Community Edition dapat mendeteksi berbagai jenis serangan siber secara real-time dan memberikan peringatan yang dapat digunakan oleh administrator untuk mengambil tindakan mitigasi. Implementasi SIEM menggunakan IBM QRadar Community Edition terbukti meningkatkan visibilitas dan respons terhadap ancaman siber, serta membantu organisasi dalam mengelola keamanan jaringan dengan lebih proaktif dan efisien. Penelitian ini memberikan kontribusi yang signifikan dalam bidang keamanan siber, khususnya dalam penerapan solusi SIEM untuk mendeteksi dan merespons ancaman di lingkungan server. Kata Kunci: Keamanan Siber, IBM QRadar Community Edition, Security Information and Event Management (SIEM), Deteksi Ancaman, Serangan Siber, Analisis Keamanan

Item Type:	Thesis (S1)
Call Number CD:	FIK/INFO. 24 164
NIM/NIDN Creators:	41520010183
Uncontrolled Keywords:	Keamanan Siber, IBM QRadar Community Edition, Security Information and Event Management (SIEM), Deteksi Ancaman, Serangan Siber, Analisis Keamanan
Subjects:	000 Computer Science, Information and General Works/Ilmu Komputer, Informasi, dan Karya Umum > 000. Computer Science, Information and General Works/Ilmu Komputer, Informasi, dan Karya Umum > 000.01-000.09 Standard Subdivisions of Computer Science, Information and General Works/Subdivisi Standar Dari Ilmu Komputer, Informasi, dan Karya Umum 000 Computer Science, Information and General Works/Ilmu Komputer, Informasi, dan Karya Umum > 020 Library and Information Sciences/Perpustakaan dan Ilmu Informasi > 025 Operations, Archives, Information Centers/Operasional Perpustakaan, Arsip dan Pusat Informasi, Pelayanan dan Pengelolaan Perpustakaan > 025.8 Preservation of Collections/Pemeliharaan Bahan Pustaka > 025.82 Security Against Theft and Other Hazards/Keamanan Terhadap Pencurian dan Bahaya Lainnya 700 Arts/Seni, Seni Rupa, Kesenian > 700. Arts/Seni, Seni Rupa, Kesenian > 702 Miscellany of Fine and Decorative Art/Aneka Ragam tentang Kesenian, Aneka Ragam tentang Karya Seni > 702.8 Techniques, Precedures, Apparatus, Equipment, Materials/Teknik, Prosedur, Perlengkapan, Peralatan, Bahan > 702.89 Safety Measures/Keamanan
Divisions:	Fakultas Ilmu Komputer > Informatika
Depositing User:	khalimah
Date Deposited:	15 Aug 2024 03:03
Last Modified:	15 Aug 2024 03:03
URI:	http://repository.mercubuana.ac.id/id/eprint/90261

Actions (login required)

View Item