文章基本信息

标题：THE IMPLEMENTATION OF SYSTEM ENTERPRISE RISK MANAGEMENT USING FRAMEWORK ISO 31000
本地全文：下载
作者：GEDE WISNU ARTA SUYASA ; NILO LEGOWO
期刊名称：Journal of Theoretical and Applied Information Technology
印刷版ISSN：1992-8645
电子版ISSN：1817-3195
出版年度：2019
卷号：97
期号：10
页码：2669-2683
出版社：Journal of Theoretical and Applied
摘要：Enterprise Risk Management is very important in a company because it can have a very important impact on information systems in the company. The purpose of this study is to analyze the risk of risk management information systems especially on financial technology which is based on the level of risk that is happening and also measure the level of maturity that has been applied whether it is in line with the expected target of one of the state-owned banks. this research uses ISO 31000 standard, observations, audit check lists, and interviews. In this risk management information system analysis will focus on 7 domains. The results of this study indicate that the level of risk faced by Bank XYZ is at the highest risk level. so that Bank XYZ must take control to overcome these risks. Information system maturity level at Bank XYZ has an average value of 3.00 which explains that it is still in the defined stage. While the target expected by Bank XYZ is 4.00. The gap of 1.00 must be a concern, because the level of risk arises due to the maturity level of the Bank XYZ system that has not been fulfilled.
关键词：Information System Risk Management; Financial Technology; Enterprise Risk Management; ISO 31000; Maturity Level;