Analisis Manajemen Risiko pada Penerapan Sistem Informasi Pembangunan Daerah (SIPD) Menggunakan IEC/ISO 31010:2019
- Melani Mardolna Sine Universitas Kristen Satya Wacana, Salatiga, Indonesia
-
Evi Maria
*
Universitas Kristen Satya Wacana, Salatiga,
Indonesia
(*) Corresponding Author
Abstract
The purpose of this study was to analyze the risk of information technology in the application of the Regional Development Information System (SIPD) on the development planning menu at the Department of Communication, Information, Statistics and Encoding (DKISP) of Rote Ndao Regency using the IEC/ISO 31010:2019 standard. Risk management in this study includes the stages of communication and consultation, setting context, risk assessment, including the process of risk identification, risk analysis, risk evaluation, and risk treatment. The results of the study found that there were 17 possible risks in the SIPD application on the regional development planning menu. Of the 17 possible risks, there are three high-level risks, namely financial transaction failure, data leakage, misuse of accounts in the database system. Two risks at a moderate level are unreliable data and information and inadequate application documentation, as well as 12 risks with a low level, namely abuse of access rights, proposal submission being cancelled, database system error, proposal verification failure, users not understanding the function of the SIPD application menu, error in inputting prices in shopping accounts, data input for double development planning activities, failure to input income data, expenditure data not in accordance with programs, activities and sub-programs, system failure to archive deleted data, error in inputting validation ceilings, and sources of funds not having valid information. complete in accordance with SIPD features. The results of the risk management analysis are documented in the form of a risk register for management
Downloads
References
E. Maria, “Sistem Informasi Akuntansi dan UMKM saat Pandemi COVID-19,” in Dinamika Akuntansi di Masa Krisis, 1st ed., H. Fahlevy, R. Mullyany, M. Indriani, D. Setiawan, and H. Ihsan, Eds. Banda Aceh: Syah Kuala University Press, 2021, pp. 89–110.
K. M. L. Lole and E. Maria, “Analisis Manajemen Risiko Pada Aplikasi Pegadaian Digital Service Menu Tabungan Emas Menggunakan ISO 31000 : 2018,” JSON J. Sist. Komput. dan Inform., vol. 3, no. 3, pp. 319–324, 2022, doi: 10.30865/json.v3i3.3891.
F. Dione, “Implementation of Regional Development Information System (SIPD) in Increasing Coordination of Regional Development,” J. Kebijak. Pemerintah., vol. 3, no. 1, pp. 21–28, 2020, doi: 10.33701/jkp.v3i1.1061.
Badan Standardisasi Nasional, Manajemen risiko – Teknik Penilaian Risiko ISO 31010:2019. Jakarta: Badan Standardisasi Nasional, 2020.
G. W. Lantang, A. D. Cahyono, and M. N. N. Sitokdana, “Analisis Risiko Teknologi Informasi Pada Aplikasi SAP Di PT Serasi Autoraya Menggunakan ISO 31000,” Sebatik, vol. 23, no. 1, pp. 36–43, 2019, doi: 10.46984/sebatik.v23i1.441.
S. A. Atmojo and A. D. Manuputty, “Analisis Manajemen Risiko Teknologi Informasi Menggunakan ISO 31000 pada Aplikasi AHO Office,” JATISI (Jurnal Tek. Inform. dan Sist. Informasi), vol. 7, no. 3, pp. 546–558, 2020, doi: 10.35957/jatisi.v7i3.525.
F. M. Hutabarat and A. D. Manuputty, “Analisis Resiko Teknologi Informasi Aplikasi VCare PT Visionet Data Internasional Menggunakan ISO 31000,” J. Bina Komput., vol. 2, no. 1, pp. 52–65, 2020, doi: 10.33557/binakomputer.v2i1.792.
R. Reduction, “Analisis Risiko Teknologi Informasi Aplikasi CATTER PDAM Kota Salatiga Menggunakan ISO 31000,” vol. 8, no. 3, 2021.
S. Agustinus, A. Nugroho, and A. D. Cahyono, “Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 pada Program HRMS,” J. RESTI (Rekayasa Sist. dan Teknol. Informasi), vol. 1, no. 3, pp. 250–258, 2017, doi: 10.29207/resti.v1i3.94.
M. I. Fachrezi, “Manajemen Risiko Keamanan Aset Teknologi Informasi Menggunakan ISO 31000:2018 Diskominfo Kota Salatiga,” JATISI (Jurnal Tek. Inform. dan Sist. Informasi), vol. 8, no. 2, pp. 764–773, 2021, doi: 10.35957/jatisi.v8i2.789.
S. Hadisaputra and L. H. Kusumah, “Implementasi Manajemen Risiko Berbasis ISO 9001:2015 dan ISO 31010:2009 Pada Usaha Jasa Konsultasi dan Pelatihan Di PT BSU Penerapan Fault Tree Analysis (FTA) Dan Failure Mode And Effect Analysis (FMEA),” Pros. SENIATI, vol. 3, no. 2, p. C49.1-12, 2017, [Online]. Available: http://ejournal.itn.ac.id/index.php/seniati/article/view/1040.
K. Aprianto, S. Mardi, and S. Nugroho, “Analisis Manajemen Risiko SPBE Menggunakan COBIT 5 For Risk dan ISO 31000 : 2018 di Kabupaten Magetan,” vol. 23, no. 2, pp. 107–123, 2021.
M. I. Fachrezi, “Manajemen Risiko Keamanan Aset Teknologi Informasi Menggunakan Iso 31000:2018 Diskominfo Kota Salatiga,” JATISI (Jurnal Tek. Inform. dan Sist. Informasi), vol. 8, no. 2, pp. 764–773, 2021, doi: 10.35957/jatisi.v8i2.789.
J. Jonny, A. Ambarwati, and C. Darujati, “Penilaian Risiko Data Sistem Informasi Manajemen Puskesmas dan Aset Menggunakan ISO 27005,” Sistemasi, vol. 10, no. 1, p. 1, 2021, doi: 10.32520/stmsi.v10i1.995.
S. P. Zagoto and M. N. N. Sitokdana, “Analisis Risiko Teknologi Informasi Di Organisasi Xyz Cabang Salatiga Menggunakan Iso 31000,” J. Mnemon., vol. 4, no. 1, pp. 1–9, 2021.
A. Novia Rilyani, Y. A. Firdaus W ST, and D. S. Dwi Jatmiko, “Analisis Risiko Teknologi Informasi Berbasis Risk Management Menggunakan ISO 31000 (Studi Kasus : i-Gracias Telkom University) Information Technology Risk Analysis Based On Risk Management Using Iso 31000 (Case Study : i-Gracias Telkom University),” e-Proceeding Eng., vol. 2, no. 2, pp. 6201–6208, 2015.
Angraini and I. D. Pertiwi, “Analisa Pengelolaan Risiko Penerapan Teknologi Informasi Menggunakan Iso 31000,” J. Ilm. Rekayasa dan Manaj. Sist. Inf., vol. Vol. 3, no. 2, pp. 70–76, 2017.
H. T. I. Driantami, Suprapto, and A. R. Perdanakusuma, “Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 ( Studi kasus : Sistem Penjualan PT Matahari Department Store Cabang Malang Town Square ),” J. Pengemb. Teknol. Inf. dan Ilmu Komput., vol. 2, no. 11, pp. 4991–4998, 2018.
H. I. Pribadi and E. Ernastuti, “Manajemen Risiko Teknologi Informasi Pada Penerapan E-Recruitment Berbasis ISO 31000:2018 Dengan FMEA (Studi Kasus PT Pertamina),” J. Sist. Inf. Bisnis, vol. 10, no. 1, pp. 28–35, 2020, doi: 10.21456/vol10iss1pp28-35.
Bila bermanfaat silahkan share artikel ini
Berikan Komentar Anda terhadap artikel Analisis Manajemen Risiko pada Penerapan Sistem Informasi Pembangunan Daerah (SIPD) Menggunakan IEC/ISO 31010:2019
Pages: 96−105
Copyright (c) 2022 Melani Mardolna Sine, Evi Maria
This work is licensed under a Creative Commons Attribution 4.0 International License.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under Creative Commons Attribution 4.0 International License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (Refer to The Effect of Open Access).
