Penilaian Risiko Keamanan Data Karyawan Pada Sistem Informasi Dengan Menggunakan Framework Nist Sp 800-30 pada PT. ABC

Authors

  • nur fitrianti fahrudin Institut Teknologi Nasional Bandung
  • Aditya Nugraha S
  • Kurnia Ramadhan Putra

DOI:

https://doi.org/10.33197/jitter.vol8.iss3.2022.900

Keywords:

risk management, NIST SP 800-30, risk assessment

Abstract

Security of employee data in the information system has several risks that can occur which of course can cause losses for the company. Risk can be in the form of events and conditions that can disrupt services and hinder the decision-making process. The purpose of this study is to describe the implementation of employee data security risk management in the company PT. ABC uses the NIST SP 800-30 framework to determine emerging risks. If there is no risk management in the company, the company will not know what risks occur and the impacts that occur. This research begins by mapping risks, assessing risks, and providing recommendations according to the level of threat. The overall risk results consist of natural, human, and technical errors, the potential risk is 14% for low risk, 36% for moderate risk, and 50% for high risk. The advice given is: that to perform regular system maintenance, the system needs to be supported by adequate software & hardware.

Downloads

Download data is not yet available.

Published

2022-08-15

How to Cite

[1]
nur fitrianti fahrudin, A. . Nugraha S, and K. . Ramadhan Putra, “Penilaian Risiko Keamanan Data Karyawan Pada Sistem Informasi Dengan Menggunakan Framework Nist Sp 800-30 pada PT. ABC”, jitter, vol. 8, no. 3, Aug. 2022.

Issue

Section

Articles