PERENCANAAN SISTEM MANAJEMEN KEAMANAN INFORMASI BERDASARKAN STANDAR ISO 27001:2013 PADA KOMINFO KABUPATEN MALANG

  • Anis Setyaningrum Universitas Ma Chung
  • Yudhi Kurniawan Universitas Ma Chung
  • Rudy Setiawan Universitas Ma Chung
DOI: https://doi.org/10.33479/kurawal.v6i1.1029
Keywords: SNI ISO/IEC 27001:2013, Information Security Management System (SMKI), Standard Operating Procedure (SOP)

Abstract

The Department of Communication and Information (DISKOMINFO) of Malang Regency is a Regional Apparatus (PD) that utilizes Information and Communications Technology (ICT). Regarding the importance of implementing ICT Governance for the Information Security Management System, as stipulated in Presidential Regulation No. 95 of 2018 on Electronic-Based Government Systems (SPBE) and the Regulation of the Minister of Communication and Information of the Republic of Indonesia Number 4 of 2016, all government agencies are required to implement security management for all the information they handle. The method used in this study to address the discussed issues involves developing policies and standard operating procedures (SOPs) and assessing information security risks in organizational assets, referring to the ISO/IEC 27001:2013 standard as a guideline for information security management. The reason for using these standards is that the Indonesian government, through the National Standardization Body (BSN), has designated SNI ISO/IEC 27001:2013 as the national standard (SNI) for managing information security for organizations of all types and sizes. The result of this research is the creation of information security policy documents and SOP documents to enhance security controls within information security management systems based on ISO/IEC 27001:2013.

Downloads

Download data is not yet available.

References

[1] DIT. (2020). IT System Maintenance Policy.
[2] Dinas Komunikasi dan Informatika Kab. Malang. (2019). Standar Operasional Prosedur KJKS. 155.
[3] Atmojo, S. A., & Manuputty, A. D. (2020). Analisis Manajemen Risiko Teknologi Informasi Menggunakan ISO 31000 pada Aplikasi AHO Office. JATISI (Jurnal Teknik Informatika Dan Sistem Informasi), 7(3), 546–558. https://doi.org/10.35957/jatisi.v7i3.525
[4] Briggs, S. (2022). Disposal of IT Equipment Policy. February, 1–5.
[5] Driantami, H. T. I., Suprapto, & Perdanakusuma, A. R. (2018). Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 ( Studi kasus : Sistem Penjualan PT Matahari Department Store Cabang Malang Town Square ). Jurnal Pengembangan Teknologi Informasi Dan Ilmu Komputer, 2(11), 4991–4998.
[6] Hartati, T. (2017). Perencanaan Sistem Manajemen Keamanan Informasi Bidang Akademik Menggunakan ISO 27001: 2013. KOPERTIP : Jurnal Ilmiah Manajemen Informatika Dan Komputer, 1(2), 63–70. https://doi.org/10.32485/kopertip.v1i02.24
[7] Ismanto, I., Hidayah, F., & Charisma, K. (2020). Pemodelan Proses Bisnis Menggunakan Business Process Modelling Notation (BPMN) (Studi Kasus Unit Penelitian Dan Pengabdian Kepada Masyarakat (P2KM) Akademi Komunitas Negeri Putra Sang Fajar Blitar). Briliant: Jurnal Riset Dan Konseptual, 5(1), 69.
Published
2023-03-23
How to Cite
Setyaningrum, A., Kurniawan, Y., & Setiawan, R. (2023). PERENCANAAN SISTEM MANAJEMEN KEAMANAN INFORMASI BERDASARKAN STANDAR ISO 27001:2013 PADA KOMINFO KABUPATEN MALANG. Kurawal - Jurnal Teknologi, Informasi Dan Industri, 6(1), 53-64. https://doi.org/https://doi.org/10.33479/kurawal.v6i1.1029
Issue
Vol 6 No 1 (2023): Jurnal Kurawal Volume 6, Nomor 1, March 2023
Section
Articles

Open Access Policy

This is an open-access journal which means that all content is freely available without charge to the users or their institution. Users are allowed to read, download, copy, distribute, print, search, or link to the full texts of the articles, or use them for any other lawful purpose, without asking prior permission from the publisher or the author. This is in accordance with the BOAI definition of open access.

This work is licensed under Creative Commons Attribution-ShareAlike 4.0 International

Most read articles by the same author(s)