Evaluasi Pelaksanaan Manajemen Risiko Teknologi Informasi pada Kantor Arsip Daerah Kota Samarinda dengan Menggunakan The Risk IT Framework

  • Damar Nurcahyo Politeknik Negeri Samarinda
Keywords: Domain, Evaluasi, Kematangan, Risiko, Risk IT

Abstract

Samarinda City Regional Archives Office has implemented a computerized information technology system in achieving its organizational goals. This system has benefits as well as risks which has the potential to cause harm and disruption in the activities to achieve the goals of the institution. In order to know whether an institution has prevented the occurrence of errors to minimize losses or not, it is necessary to evaluate the risk management process of information technology. The framework used in the evaluation of information technology risk management in this study is IT RISK .This study describes the current state of maturity level, then measures the maturity level of information technology risk management condition needed, and formulates a program to improve the IT RISK management maturity of current maturity level towards the expected maturity level in Samarinda City Regional Archives Office.The results obtained from this study demonstrate that some process of information technology risk management implementation at Samarinda City Regional Archives Office has reached its target but in some cases it has not reached the target. This is evidenced by the level of maturity of information technology attributes most of which are in the maturity level of repeatable but intuitive and definedprocess. On the other hand, the maturity level required by Samarinda City Regional Archives Office for Governance Risk, Risk Evaluation and Risk Response domain is defined and the subsequent development is Managed and Measurable. This study has also formulated several programs to improve the conditions of each domain toward the expected maturity of Samarinda City Regional Archives Office.

References

ISACA. (2009). The "Risk IT" Framework. United States of America: Information Systems and Audit Control Association.

Yasrul. (2012). Evaluasi Manajemen Risiko Teknologi Informasi Dengan Menggunakan The Risk IT Framework Studi Kasus Pada Biro Umum Sekretariat Daerah Provinsi Nusa Tenggara Barat. Tesis tidak terpublikasi. Yogyakarta: Program Studi S2 Magister Teknologi Informasi Pascasarjana Fakultas Teknik Universitas Gadjah Mada.

Maliki, I. (2010). Manajemen Risiko Teknologi Informasi Untuk Keberlangsungan Layanan Publik Menggunakan Framework Information Technology Infrastructure Library (ITIL Versi 3). Paper yang dipresentasikan pada Seminar Nasional Aplikasi Teknologi Informasi (SNATI) 2010. Yogyakarta: Universitas Islam Indonesia.

Megawati,Juliustianto,Hamonangan.(2009).Evaluasi manajemen risiko teknologi informasi pada PT.Graha Hexindo,Skripsi tidak terpublikasi, Prodi Sistem Informasi, Jurusan Komputerisasi Akuntansi, Universitas Bina Nusantara.Jakarta

Iskandar,Chandra,Halim (2009). Evaluasi manajemen risiko teknologi informasi pada PT. Sanggar Mustikapadma, Skripsi tidak terpublikasi, Prodi Sistem Informasi, Jurusan Komputerisasi Akuntansi,Universitas Bina Nusantara.Jakarta

Maulana, M.M. ; & Supangkat, S. H. (2006). Pemodelan Framework Manajemen Risiko Teknologi Informasi Untuk Perusahaan di Negara Berkembang. Prosiding Konferensi Nasional Teknologi Informasi & Komunikasi untuk Indonesia 2006. Bandung : Institut Teknologi Bandung.

ISO/IEC Guide 73. (2002). Risk Management — Vocabulary — Guidelines for Use in Standards. London : British Standard Institute (BSI)

Published
2014-11-12
How to Cite
Damar Nurcahyo. (2014). Evaluasi Pelaksanaan Manajemen Risiko Teknologi Informasi pada Kantor Arsip Daerah Kota Samarinda dengan Menggunakan The Risk IT Framework. Jurnal Nasional Teknik Elektro Dan Teknologi Informasi, 2(3), 1-4. Retrieved from https://dev.journal.ugm.ac.id/v3/JNTETI/article/view/3124
Section
Articles