Assessment IT Risk Management at The Computer and Network Laboratory School

Arlin Nurliyani(1*),


(1) 
(*) Corresponding Author

Abstract


The Computer and Network Engineering Laboratory School is a means for teaching and learning that has problems with information technology. In this research, IT Risk Management Assessment will be carried out at the Computer and Network Engineering Laboratory of School. This research was conducted to determine what risks of what happened. In this study, the NIST SP 800-30r1 Framework method will be used to obtain risk scores. While for data collection techniques will use qualitative analysis. The stages of risk assessment carried out include Prepare for Assessment, Conduct Assessment, Communicate Result, and Maintain Assessment. From the assessment stage, the level of risk obtained is in a moderate position. This assessment was taken from the results of interviews with five respondents in the organization management of The Computer and Network Engineering Laboratory School. Emerging risks have a serious impact on assets, organization and activities in The Computer and Network Engineering Laboratory School.


Keywords


Risk Management, Laboratorium School, NIST SP 800-30r1 Framework, Qualitative Analysis, Risk

Full Text:

PDF

References


Creswell, J. W. (2014). Penelitian Kualitatif & Desain Riset Memilih Diantara Lima Pendekatan (edisi 3). Yogyakarta, Indonesia: Pustaka Pelajar.

Miles, M. B., & A. Michael, H. (1992). Analisis Data Kualitatif. Jakarta: Universitas Indonesia.

Setiawan, D. (2006). Sistem Keamanan Komputer. Jakarta: Elex Media Komputindo.

Situmorang, S. H. (2010). Analisis Data : Untu Riset Manajemen dan Bisnis. Medan. Indonesia: USU Press.

Haryanto, E.V. (2012). Jaringan Komputer. Jakarta, Indonesia : Penerbit Andy.

National Institute Standard and Technology (NIST). (2012). Guide for Conducting – NIST Special Publication 800-30 (Revision 1). USA.

Wagito. (2007). Jaringan Komputer : Teori dan Implementasi Berbasis Linux. Jakarta, Indonesia : Penerbit Gava Media.

Riadi. (2012). Tesis Analisis Dan Desain Jaringan Intranet SMK Negeri 3 Ogan Komering Ulu Menggunakan Metode Network Development Life Cycle. Palembang, Indonesia : Universitas Bina Darma Palembang..

Hardanto, S.S. (2006). Manajemen Risiko Bagi Bank Umum. Jakarta, Indonesia : Penerbit Elex Media Komputindo.

Kurniawan, N.B. (2013). Manajemen Risiko Teknologi Informasi Pada Badan Pusat Statistik . Bandung, Indonesia.

Stoneburner, G., A. Goguen and Feringa A. (2002). Risk Management Guide for Information Technology System, Recommedation of National Institute of Standards and Technology Special Publication 800-30. USA.




DOI: http://dx.doi.org/10.31289/jite.v3i1.2622

Article Metrics

Abstract view : 0 times
PDF - 0 times

Refbacks

  • There are currently no refbacks.