Information System Security Analysis of XYZ Company Using COBIT 5 Framework and ISO 27001:2013-Reference-Cited by-同舟云学术

Information System Security Analysis of XYZ Company Using COBIT 5 Framework and ISO 27001:2013

Published:2020-07-01 Issue:1 Volume:879 Page:012047
ISSN:1757-8981
Container-title:IOP Conference Series: Materials Science and Engineering
language:
Short-container-title:IOP Conf. Ser.: Mater. Sci. Eng.

Author:

Prapenan G G,Pamuji G C

Abstract

Abstract Information system security is now very important to prevent from an attack. Besides that, low level security can harm the productivity of an organization. The purpose of this research is to ascertain and know the level of information system security in XYZ Company, because it has never conducted an audit information system security. In this research, it used the COBIT 5 framework to audit information security management system in a company based on the ISO 27001 standard. This audit was conducted to identify information system security that was not good. In addition to improving the information security management system that will be adjusted to the ISO 27001 standard. This research was composed by applying a qualitative methodology, observation of the activity in the company and reviews related information security management system literature document existing. For the auditing using COBIT 5 framework, audit focuses on four kinds process that consists of APO12, DSS05, MEA02 dan EDM03. The audit COBIT 5 two results in consisting of “Managed Process” Level on APO12, MEA02 and EDM03 and “Performed Process” level on DSS05. The resulting of this research will be used a reference to the improvement of existing information system security in the company.

Publisher

IOP Publishing

Subject

General Medicine

Link

https://iopscience.iop.org/article/10.1088/1757-899X/879/1/012047/pdf

Reference15 articles.

1. Information System Risk Scenario Using COBIT 5 for Risk and NIST SP 800-30 Rev. 1 A Case Study;Supriyadi,2018

2. Improving the quality of information security management systems with ISO27000;Sinha;The TQM Journal,2011

3. Information security management system standards: A comparative study of the big five;Susanto;International Journal of Electrical Computer Sciences IJECSIJENS,2011

4. Evaluation of ISO 27001 implementation towards information security of cloud service customer in PT. IndoDev Niaga Internet;Fajar;Journal of Physics: Conference Series,2018

5. Security Management Analysis of Security Services Using Framework COBIT 5 Domain DSS05;Wahyudi;International Journal of Engineering and Emerging Technology

Cited by 3 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Simulation optimization applied to production scheduling in the era of industry 4.0: A review and future roadmap;Journal of Industrial Information Integration;2024-05

2. A Comprehensive Review of COBIT and ISO 27001: Approaches to Auditing Credit Bureau Automation System (CBAS) at PT XYZ;2023 9th International Conference on Signal Processing and Intelligent Systems (ICSPIS);2023-12-14

3. Decision Tree and Fuzzy Logic in The Audit of Information System for Tax Letter Issuance;2022 International Electronics Symposium (IES);2022-08-09