Assessment Penerapan Manajemen Risiko TI Unit XYZ Menggunakan ISO 31000
نویسندگان
چکیده
Pustik telah mengintegrasikan ISO 9001:2015, ISO/IEC 20000-1:2018 dan 27001: 2013 ke dalam Integrated Management System (IMS). Sejak tahun menerapkan Risk (RMS) diperkuat dengan Kebijakan Internal Lembaga tentang Manajemen Risiko yang terintegrasi 27001:2013. Adapun pengintegrasian RMS 9001:2015 belum ada pedoman khusus mengatur hal tersebut. Kondisi ini dapat menyebabkan isu menjadi perhatian tidak terekam baik Register . Untuk mengetahui kesenjangan antara 31000:2018, perlu dilakukan as- sessment penerapan sesuai standar 31000:2018. Penelitian melakukan penilaian terhadap dokumentasi implementasi berdasarkan 31000, sehingga diperoleh seberapa besar nilai kesesuaian ketidaksesuaian, serta rekomendasi perbaikan pengelo- laan risiko peluang IMS. Hasil penelitian terdapat proses IMS saat adalah 75,93%, 4 klausul terpenuhi secara keseluruhan, 5 hanya sebagian. peneli- tian digunakan untuk menentukan langkah-langkah perbaikan, bisa penyusunan manajemen
منابع مشابه
Applying the Iso 31000 Risk Assessment Framework to Coastal Zone Management
The NSW Government’s Sea Level Rise Policy Statement, Coastal Planning Guideline: Adapting to Sea Level Rise and Draft Guidelines for Preparing Coastal Zone Management Plans have endorsed the use of a ‘risk assessment approach’ to coastal zone management. The risk assessment framework is used extensively in industry and government as it provides a process for determining sensible management out...
متن کاملISO 31000:2009--Setting a new standard for risk management.
Last year saw the publication of IS0 31000:2009, a new globally accepted standard for risk management together with a new, associated vocabulary in ISO Guide 73:2009. These were developed through a consensus-driven process over four years, through seven drafts, and involving the input of hundreds of risk management professionals around the world. The new standard supports a new, simple way of t...
متن کاملXYZ Privacy
In this paper, we present the XYZ Privacy mechanism. XYZ Privacy maintains constant error from the ground truth while each data owner submits multiple contradictory responses, achieves scalable non-attributable (privatized) writes, and it protects the aggregate answer against malicious data owners attempts to corrupt (e.g., pollution attacks). We show an optimization of a square root reduction ...
متن کاملSoftware-Infrastrukturen für das Risiko- und Katastrophenmanagement
Neben der wichtigen Klärung der fachlichen Abstimmung in allen Phasen des Risikound Katastrophenmanagements nimmt die Bereitstellung einer geeigneten Software-Infrastruktur eine zunehmend wichtigere Rolle ein. Der Beitrag betrachtet diese Anforderungen aus der Sicht der Informatik an Hand der Konzeption eines Web-Portals zur Kernreaktor-Fernüberwachung (KFÜ) und des EU-Projekts ORCHESTRA beschr...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Jurnal Ilmiah Komputasi
سال: 2022
ISSN: ['1412-9434', '2549-7227']
DOI: https://doi.org/10.32409/jikstik.21.2.3061