ANALISIS RISIKO SISTEM INFORMASI TERPADU XAVERIUS (SIDUX) MENGGUNAKAN NIST SP 800-30 REVISION 1 (Studi Kasus: Yayasan Xaverius Palembang)

Simarmata, Faskawaty (2022) ANALISIS RISIKO SISTEM INFORMASI TERPADU XAVERIUS (SIDUX) MENGGUNAKAN NIST SP 800-30 REVISION 1 (Studi Kasus: Yayasan Xaverius Palembang). Undergraduate thesis, Universitas Katolik Musi Charitas.

[img] Text (Cover)
SI-2022-1814015-cover.pdf

Download (740kB)
[img] Text (Abstract)
SI-2022-1814015-abstract.pdf
Restricted to Registered users only

Download (26kB) | Request a copy
[img] Text (Table Of Content)
SI-2022-1814015-tableofcontent.pdf
Restricted to Registered users only

Download (38kB) | Request a copy
[img] Text (Chapter 1)
SI-2022-1814015-chapter1.pdf
Restricted to Registered users only

Download (108kB) | Request a copy
[img] Text (Chapter 2)
SI-2022-1814015-chapter2.pdf
Restricted to Registered users only

Download (515kB) | Request a copy
[img] Text (Chapter 3)
SI-2022-1814015-chapter3.pdf
Restricted to Registered users only

Download (89kB) | Request a copy
[img] Text (Chapter 4)
SI-2022-1814015-chapter4.pdf
Restricted to Registered users only

Download (385kB) | Request a copy
[img] Text (Chapter 5)
SI-2022-1814015-chapter5.pdf
Restricted to Registered users only

Download (44kB) | Request a copy
[img] Text (Reference)
SI-2022-1814015-reference.pdf
Restricted to Registered users only

Download (119kB) | Request a copy
[img] Text (Attachment)
SI-2022-1814015-attachment.pdf
Restricted to Registered users only

Download (4MB) | Request a copy
[img] Text (Complete)
SI-2022-1814015-complete.pdf
Restricted to Repository staff only

Download (6MB) | Request a copy
[img] Text (Summary.id)
SI-2022-1814015-summary_id.pdf
Restricted to Registered users only

Download (240kB) | Request a copy

Abstract

The Xaverius Integrated Information System (SIDUX) is a website-based system owned by the Xaverius Palembang Foundation, which is useful for collecting, storing, processing, and distributing personal information and matters relating to finance. This information system is managed directly by the Implementing Information and Communication Technology Sector (PBTIK) and used by 2 other executors, namely the Executor for the Finance Sector and the Implementer for the Human Resources Sector at the Xaverius Foundation Palembang. In the implementation of this system, it turned out that some initial known risks were found, such as the occurrence of network breaches from external parties, as well as during journal closing activities, inputs that did not have access permissions caused the financial statements to become unbalanced. Potential risks were also found, such as the vulnerability of the network security system due to the absence of a firewall. Therefore, to find other risks, an analysis was carried out on the system using NIST SP 800-30 Revision 1 on the information security side. From the results of the analysis carried out, 23 sources of threats or risks were found from the results of interviews with 7 research respondents who had been determined.

Item Type: Thesis (Undergraduate)
Uncontrolled Keywords: Risk; SIDUX; NIST; Information Security
Subjects: T Technology > T Technology (General)
Divisions: Theses - S1 > Information Systems Study Program
Depositing User: Faskawaty Simarmata
Date Deposited: 29 Aug 2022 09:27
Last Modified: 13 Oct 2022 01:51
URI: http://eprints.ukmc.ac.id/id/eprint/8673

Actions (login required)

View Item View Item