MODEL OF INFORMATION SECURITY RISK MANAGEMENT USING ISO 27005 AND OCTAVE ALLEGRO (CASE STUDY: BAKAMLA)
<p align="justify">Information is a valuable asset for an organization, so it must be protected from anything that can violate aspects of confidentiality, integrity and availability. One of the best efforts to address information security is by managing risks or applying information...
Saved in:
| Main Author: | |
|---|---|
| Format: | Theses |
| Language: | Indonesia |
| Online Access: | https://digilib.itb.ac.id/gdl/view/27655 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Institut Teknologi Bandung |
| Language: | Indonesia |
| Summary: | <p align="justify">Information is a valuable asset for an organization, so it must be protected from anything that can violate aspects of confidentiality, integrity and availability. One of the best efforts to address information security is by managing risks or applying information security risk management (ISRM), so the potential adverse events can be identified, assessed, treated and prepared for mitigation control. <br />
<br />
<br />
Bakamla is a non-ministerial government institution having the main duty and function of safeguarding maritime security and safety in Indonesian waters and jurisdictions. In achieving the vision and mission of organizational goals, Bakamla manages critical information-based early warning system, both for internal purposes as a support for maritime security operations, as well as services for people or interested parties in the maritime field, thereby it must be protected. <br />
<br />
<br />
This study discusses the integration of ISO 27005: 2011 standard with OCTAVE Allegro method, so that the ISRM model is comprehensive and wide-ranging but easy to apply and suitable for the newly formed Bakamla institution and still has limited resources. The results of the ISRM process with the context of Bakamla's role in monitoring and supervising the waters, 20 risk scenarios were obtained from five critical assets of Bakamla. Consisting of 4 low risk categories, 11 moderates and 5 high risks. The option of treatment is 17 mitigated, 1 transferred and 2 risks maintained.<p align="justify"> <br />
|
|---|