Analisa Risiko terhadap Perencanaan Strategis Teknologi Informasi di Organisasi X
| Main Authors: | Santoso, Gabriel Rizkiawan; Program Studi Teknik Informatika, Wibowo, Adi; Program Studi Teknik Informatika, Dewi, Lily Puspa; Program Studi Teknik Informatika |
|---|---|
| Other Authors: | Program Studi Teknik Informatika, Universitas Kristen Petra Surabaya |
| Format: | Article info application/pdf eJournal |
| Bahasa: | eng |
| Terbitan: |
Jurnal Infra
, 2015
|
| Subjects: | |
| Online Access: |
http://studentjournal.petra.ac.id/index.php/teknik-informatika/article/view/3122 http://studentjournal.petra.ac.id/index.php/teknik-informatika/article/view/3122/2813 |
Daftar Isi:
- Organization X is an organization working in the field of education from kindergarten to high school and vocational secondary school. Organization X are now starting to implement an IT system for all business processes that exist in the organization. All the IT services are intended to facilitate the organization's business processes, and the services provided to consumers can be brought to its best. The problem that occurs in Organization X related to the management system is still manually operated, IT equipment such as hardware, network and servers do not meet the requirements to operate well. That problem requires a risk analysis to provide a proper plan of IT services that will be used by the Organization X.In this thesis, the risk analysis assessment is performed based on the condition of the current IT services in Organization X, so as to determine the if Organizational X can assist the planning process of IT services in the future. The analysis is based on comprehension of the business model and strategy, an identification of IT Audit Universe, Control Objective Plan and Organize 1-3, as well as evaluating IT risk factors found. The process of risk analysis is performed using the method of Global Technology Audit Guidelines (GTAG), COBIT 4.1 Plan and Organis 1-3, OWASP Risk Methodology.Based on the examination, a number of IT risks in the Organization X were found, i.e. IT people are not fully involved in determining business goals, resulting in IT Division can not provide maximum role in giving an idea of the progress of IT-related organizations. No particular team established to plan the long-term IT services, resulting in no clear plan on a long-term IT of an organization.