INFORMATION SECURITY RISK MANAGEMENT USING OCTAVE ALLEGRO METHOD AT UNIVERSITY

International Journal of Ethno-Sciences and Education Research Pub Date : 2023-10-08 DOI:10.46336/ijeer.v3i4.506

Utami Aryanti, Moch. Taufan Anwar, Tina Rahmawati

{"title":"INFORMATION SECURITY RISK MANAGEMENT USING OCTAVE ALLEGRO METHOD AT UNIVERSITY","authors":"Utami Aryanti, Moch. Taufan Anwar, Tina Rahmawati","doi":"10.46336/ijeer.v3i4.506","DOIUrl":null,"url":null,"abstract":"Information is one of the important and valuable assets for the life of an organization's business. Information management is needed to maintain the confidentiality, integrity, and availability of the information from cyber attacks. These cyber attacks can be in form of viruses, malware, phishing, Distributed Denial-of-service (DoS), fraud, and Ransomware.The education sector is a significant contributor to the increase in cyber attacks during the COVID-19 pandemic. The use of ICT in higher education must have right information securityThis study aims to Analysis the risks of information security in higher education. Identification of information security risks necessary for the organization to take appropriate preventive and mitigating actions.OCTAVE Allegro is the framework used to perform risk management in this research. This framework focuses on the information assets owned by the organization. How the asset is used, stored, transferred, occurs and how threats (threats), vulnerabilities (vulnerabilities) and disturbances can be on the asset. The results of this study are recommendations for mitigating approach for identified risks.","PeriodicalId":191312,"journal":{"name":"International Journal of Ethno-Sciences and Education Research","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-10-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Ethno-Sciences and Education Research","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.46336/ijeer.v3i4.506","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Information is one of the important and valuable assets for the life of an organization's business. Information management is needed to maintain the confidentiality, integrity, and availability of the information from cyber attacks. These cyber attacks can be in form of viruses, malware, phishing, Distributed Denial-of-service (DoS), fraud, and Ransomware.The education sector is a significant contributor to the increase in cyber attacks during the COVID-19 pandemic. The use of ICT in higher education must have right information securityThis study aims to Analysis the risks of information security in higher education. Identification of information security risks necessary for the organization to take appropriate preventive and mitigating actions.OCTAVE Allegro is the framework used to perform risk management in this research. This framework focuses on the information assets owned by the organization. How the asset is used, stored, transferred, occurs and how threats (threats), vulnerabilities (vulnerabilities) and disturbances can be on the asset. The results of this study are recommendations for mitigating approach for identified risks.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

利用八度快板方法进行高校信息安全风险管理

信息是组织业务生命中重要而有价值的资产之一。需要信息管理来维护信息的机密性、完整性和可用性，以防止网络攻击。这些网络攻击可能以病毒、恶意软件、网络钓鱼、分布式拒绝服务(DoS)、欺诈和勒索软件的形式出现。在2019冠状病毒病大流行期间，教育部门是网络攻击增加的重要因素。在高等教育中使用信息通信技术必须有正确的信息安全，本研究旨在分析高等教育中的信息安全风险。识别信息安全风险，以便组织采取适当的预防和缓解措施。OCTAVE Allegro是本研究中用于进行风险管理的框架。该框架主要关注组织拥有的信息资产。资产是如何使用、存储、传输和发生的，以及资产上的威胁(threats)、漏洞(vulnerability)和干扰是如何发生的。本研究的结果为减轻已识别风险的方法提供了建议。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

International Journal of Ethno-Sciences and Education Research

自引率

0.00%

发文量