Assessment of Information Security Management System: A Case Study of Data Recovery Center in Ministry XYZ

Fitri Wijayanti, Dana Indra Sensuse, Arief Anthadi Putera, Andy Syahrizal

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

The DRC of the Ministry XYZ has suffered from a system breach. The DRC's problem will lead to a lack of system information security, availability, and an increasing threat to the whole system of Ministry XYZ. In 2019, the KAMI Index assessment of the Ministry XYZ stated that the level of maturity and completeness of the application of ISO 27001 standards of the XYZ Ministry were at the level of fulfillment of the basic framework. There is a gap between the assessment result and the operational problem within the DRC of Ministry XYZ due to the lack of an information security management system. Therefore, this study conducts the same KAMI Index assessment within the scope of the DRC only and aims to offer a recommendation based on ISO 27001 as the basis of the KAMI Index assessment. This study used discussion, observation, and KAMI Index assessment tools for collecting data and analyze the result. The assessment result of the DRC showed that the maturity level of the ISO 27001 standard on the DRC is on the application of the basic framework. The suggested recommendations to improve the information security management system of the DRC were mostly in the aspect of the information security framework and assets management.

Original languageEnglish
Title of host publication2020 3rd International Conference on Computer and Informatics Engineering, IC2IE 2020
EditorsIndra Hermawan, Muhammad Yusuf Bagus Rasyidin, Malisa Huzaifa, Iklima Ermis Ismail, Asep Taufik Muharram, Anggi Mardiyono, Noorlela Marcheeta, Dewi Kurniawati, Ade Rahma Yuly, Ariawan Andi Suhanda
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages393-398
Number of pages6
ISBN (Electronic)9781728182476
DOIs
Publication statusPublished - 15 Sept 2020
Event3rd International Conference on Computer and Informatics Engineering, IC2IE 2020 - Depok, Indonesia
Duration: 15 Sept 202016 Sept 2020

Publication series

Name2020 3rd International Conference on Computer and Informatics Engineering, IC2IE 2020

Conference

Conference3rd International Conference on Computer and Informatics Engineering, IC2IE 2020
Country/TerritoryIndonesia
CityDepok
Period15/09/2016/09/20

Keywords

  • information security
  • ISO 27001
  • KAMI Index

Fingerprint

Dive into the research topics of 'Assessment of Information Security Management System: A Case Study of Data Recovery Center in Ministry XYZ'. Together they form a unique fingerprint.

Cite this