首页    期刊浏览 2024年12月02日 星期一
登录注册

文章基本信息

  • 标题:Assessment of Information Security Management System based on ISO/IEC 27001:2013 On Subdirectorate of Data Center and Data Recovery Center in Ministry of Internal Affairs
  • 本地全文:下载
  • 作者:Ari Kurnianto ; Rizal Isnanto ; Aris Puji Widodo
  • 期刊名称:E3S Web of Conferences
  • 印刷版ISSN:2267-1242
  • 电子版ISSN:2267-1242
  • 出版年度:2018
  • 卷号:31
  • 页码:1-6
  • DOI:10.1051/e3sconf/20183111013
  • 出版社:EDP Sciences
  • 摘要:Information security is a problem effected business process of an organization, so it needs special concern. Information security assessment which is good and has international standard is done using Information Security Management System (ISMS) ISO/IEC 27001:2013. In this research, the high level assessment has been done using ISO/IEC 27001:2013 to observe the strength of information secuity in Ministry of Internal Affairs. The research explains about the assessment of information security management which is built using PHP. The input data use primary and secondary data which passed observation. The process gets maturity using the assessment of ISO/IEC 27001:2013. GAP Analysis observes the condition now a days and then to get recommendation and road map. The result of this research gets all of the information security process which has not been already good enough in Ministry of Internal Affairs, gives recommendation and road map to improve part of all information system being running. It indicates that ISO/IEC 27001:2013 is good used to rate maturity of information security management. As the next analyzation, this research use Clause and Annex in ISO/IEC 27001:2013 which is suitable with condition of Data Center and Data Recovery Center, so it gets optimum result and solving problem of the weakness information security.
国家哲学社会科学文献中心版权所有