Information System Security Risk Management Analysis in Universitas Advent Indonesia Using Octave Allegro Method

  • Elmor Benedict Wagiu Fakultas Teknologi Informasi, Universitas Advent Indonesia
  • Raminson Siregar Fakultas Teknologi Informasi
  • Raymond Maulany Fakultas Teknologi Informasi
Keywords: Risk Management Analysis, Risk Assessment Analysis, Information Systems, OCTAVE Allegro

Abstract

Universitas Advent Indonesia is one of the many universities that use information technologyto support their business processes in the hope that information technology will providesignificant benefits. The use of information technology in supporting a business can not beseparated from the risks that might be faced. for that, good management of informationtechnology will be the key to how much risk will be faced. In this case, the researcher willconduct an analysis of information system risk management at the Universitas AdventIndonesia. The method used by researchers is OCTAVE ALLEGRO. OCTAVE ALLEGROis a method that is often used to carry out analysis in the field of risk management and riskassessment. The purpose of this study was to identify risks that could potentially threatenbusiness processes at Universitas Advent Indonesia by first identifying the impact of the area,determining the scale of priorities etc. The results of the study using OCTAVE Allegro is arisk reduction approach for each area of concern of each UNAI critical information assetnamely student financial information, lecturer financial information, student scoreinformation, student transcript information, and class attendance data. UNAI makes writtenrules regarding responsibilities in maintaining information security and sanctions for violatorsand do socialize about the rule well gradually to Universitas Advent Indonesia employees.Re-evaluate information security by using OCTAVE Allegro method periodically, forexample, once every 2 years.
Article Metrics

Downloads

Download data is not yet available.

References

Whitman, M. E. (2010). Management of Information Security. US: Thomson-Course Technology.

Christopher Alberts, A. D. (2002). Managing Information Security Risks: the OCTAVE Approach (1st ed.). Boston, US: Addison-Wesley Professional.

Koun, J. (2010). Information Technology Risk Management in Enterprise Environment. New Jersey: John Willey & Sons.

Talabis, M., and Martin, J. (2013). Information Security Risk Assessment Toolkit: Practical Assessment through Data Collection and Data Analysis. Amsterdam, Netherlands: Elsevier.

Whitman, M. E. (2010). Management of Information Security. US: Thomson-Course Technology.

Published
2019-12-18
How to Cite
Wagiu, E., Siregar, R., & Maulany, R. (2019). Information System Security Risk Management Analysis in Universitas Advent Indonesia Using Octave Allegro Method. Abstract Proceedings International Scholars Conference, 7(1), 1741-1750. https://doi.org/10.35974/isc.v7i1.1387