Open AccessAnalisis Manajemen Keamanan Informasi Menggunakan Standard ISO 27001:2005 Pada Staff IT Support Di Instansi XYZ
Author(s) -
Titus Kristanto,
Mohammad Sholik,
Dewi Rahmawati,
Muhammad Nasrullah
Publication year - 2019
Publication title -
jurnal informatika dan sains/jisa (jurnal informatika dan sains)
Language(s) - English
Resource type - Journals
eISSN - 2776-3234
pISSN - 2614-8404
DOI - 10.31326/jisa.v2i2.497
Subject(s) - information security management system , information security , information security management , itil security management , standard of good practice , certified information systems security professional , information technology , computer science , business , engineering management , process management , risk analysis (engineering) , computer security , security information and event management , engineering , security service , cloud computing , cloud computing security , network security policy , operating system
Information security management is very important to use, especially for educational instutions, because it is able to reduce the risk of threats to the use of information technology for educational organizations. Information security management is indispensable as an effort to minimize the risk of data enhancement and information threats. Implementation of information security management is intended to know technical problems and non technical problems. The research uses the ISO 27001:2005 standard is very flexible depending on the needs of the organization and focus on information security management. The research results using the ISO 27001:2005 standard is able to reduce the risk level and perform some activities that must be improved to improve information security at XYZ institutions.