Andi Sofyan Anas, I. Utami, A. B. Maulachela, A. Juliansyah
{"title":"基于KAMI指数的XYZ大学学术信息系统安全评价","authors":"Andi Sofyan Anas, I. Utami, A. B. Maulachela, A. Juliansyah","doi":"10.31940/MATRIX.V11I2.2447","DOIUrl":null,"url":null,"abstract":"XYZ University is one of the universities that has used information technology to create quality service for students and the entire academic community. This Information technology service is managed by Information Technology and Communication Center (PUSTIK) which is responsible to carry out the development, management, service, and maintaining the security of information and communication technology. Good information technology governance should be able to maintain information security. Therefore, it is necessary to evaluate information system security especially the security of academic information systems. This information system security evaluation uses Keamanan Informasi (KAMI) Index which refers to the ISO/IEC 27001:2013 standard to be able to determine the maturity level of information security. An evaluation of five areas of the KAMI Index shows the Information Security Risk Management area gets the lowest score at 10 out of a total of 72. The result of the KAMI Index dashboard shows that the maturity level of each area of information security is at levels I and I+ with a total score of 166. This means that the level of completeness of implement ISO 27001:2013 standard is in the inadequate category.","PeriodicalId":31964,"journal":{"name":"Matrix Jurnal Manajemen Teknologi dan Informatika","volume":"96 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2021-07-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"KAMI index as an evaluation of academic information system security at XYZ university\",\"authors\":\"Andi Sofyan Anas, I. Utami, A. B. Maulachela, A. Juliansyah\",\"doi\":\"10.31940/MATRIX.V11I2.2447\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"XYZ University is one of the universities that has used information technology to create quality service for students and the entire academic community. This Information technology service is managed by Information Technology and Communication Center (PUSTIK) which is responsible to carry out the development, management, service, and maintaining the security of information and communication technology. Good information technology governance should be able to maintain information security. Therefore, it is necessary to evaluate information system security especially the security of academic information systems. This information system security evaluation uses Keamanan Informasi (KAMI) Index which refers to the ISO/IEC 27001:2013 standard to be able to determine the maturity level of information security. An evaluation of five areas of the KAMI Index shows the Information Security Risk Management area gets the lowest score at 10 out of a total of 72. The result of the KAMI Index dashboard shows that the maturity level of each area of information security is at levels I and I+ with a total score of 166. This means that the level of completeness of implement ISO 27001:2013 standard is in the inadequate category.\",\"PeriodicalId\":31964,\"journal\":{\"name\":\"Matrix Jurnal Manajemen Teknologi dan Informatika\",\"volume\":\"96 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-07-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Matrix Jurnal Manajemen Teknologi dan Informatika\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.31940/MATRIX.V11I2.2447\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Matrix Jurnal Manajemen Teknologi dan Informatika","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.31940/MATRIX.V11I2.2447","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
摘要
XYZ大学是利用信息技术为学生和整个学术界提供优质服务的大学之一。该信息技术服务由信息技术和通信中心(PUSTIK)管理,该中心负责开展信息和通信技术的开发、管理、服务和维护安全。良好的信息技术治理应该能够维护信息安全。因此,有必要对信息系统的安全进行评估,特别是对高校信息系统的安全进行评估。本信息系统安全评估使用Keamanan Informasi (KAMI)指数,该指数参考ISO/IEC 27001:2013标准,能够确定信息安全的成熟度级别。对KAMI指数的5个领域进行评价的结果显示,信息安全风险管理领域在72分中仅获得10分,是最低值。KAMI指数仪表板的结果显示,信息安全各领域的成熟度等级为I级和I+级,总分为166分。这意味着实施ISO 27001:2013标准的完整程度处于不充分类别。
KAMI index as an evaluation of academic information system security at XYZ university
XYZ University is one of the universities that has used information technology to create quality service for students and the entire academic community. This Information technology service is managed by Information Technology and Communication Center (PUSTIK) which is responsible to carry out the development, management, service, and maintaining the security of information and communication technology. Good information technology governance should be able to maintain information security. Therefore, it is necessary to evaluate information system security especially the security of academic information systems. This information system security evaluation uses Keamanan Informasi (KAMI) Index which refers to the ISO/IEC 27001:2013 standard to be able to determine the maturity level of information security. An evaluation of five areas of the KAMI Index shows the Information Security Risk Management area gets the lowest score at 10 out of a total of 72. The result of the KAMI Index dashboard shows that the maturity level of each area of information security is at levels I and I+ with a total score of 166. This means that the level of completeness of implement ISO 27001:2013 standard is in the inadequate category.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
