DESIGN OF INFORMATION SECURITY CONTROL (ISO 27001:2013) AND ANTI BRIBERY (ISO 37001:2016) BASED ON RISK USING ISO 31000:2018 CASE STUDY: PUSINFOLAHTA TNI

DESIGN OF INFORMATION SECURITY CONTROL (ISO 27001:2013) AND ANTI BRIBERY (ISO 37001:2016) BASED ON RISK USING ISO 31000:2018 CASE STUDY: PUSINFOLAHTA TNI

For a government or private institution, information is a very valuable data asset, but there is still a lot of information leakage a few years before, so it can reduce the level of investment in an organization. In particular the TNI organization, in developing and developing TNI information system...

Full description

Saved in:
Bibliographic Details
Main Author: Nurmalasari S T, Okti
Format: Theses
Language:Indonesia
Online Access:https://digilib.itb.ac.id/gdl/view/35946
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Institut Teknologi Bandung
Language: Indonesia
Description
Summary:For a government or private institution, information is a very valuable data asset, but there is still a lot of information leakage a few years before, so it can reduce the level of investment in an organization. In particular the TNI organization, in developing and developing TNI information systems, confidentiality factors, data availability, integrity and authenticity must always be maintained so that all data does not leak to other parties. These developments and problems gave birth to several methodologies to identify the risk of possible damage to information systems that might occur, predict the magnitude of the losses that might occur and in the end the analysis can be used to build strategies for handling and controlling the risks faced. In securing information, especially for TNI organizations, the Government has issued Regulation of the Minister of Defense of the Republic of Indonesia Number 68 of 2014 concerning Information Security within the Ministry of Defense and the Indonesian National Army. On the other hand, there is a threat of information from humans, namely bribery. Where the risk of bribery can result in damage to the information security system. The guideline standard governing information security is ISO 27001: 2013, while the standard governing anti-bribery is ISO 37001: 2016. This study discusses how to design information security controls and anti-bribery in a risk-based TNI organization using ISO 31000: 2018, so as to produce an information security and anti-bribery policy document as well as guidance documents for securing information that can be used by organizations.

Similar Items