Measurement of Employee Information Security Awareness Using Analytic Hierarchy Process (AHP): A Case Study of Foreign Affairs Ministry

Abstract

Indonesian government has been mandated in presidential decree regarding bureaucratic reform to realize its commitment to implement electronic government (egovernment) based on Information and Communication Technology (ICT). This notion has caused the dependency of business process functions of government services to the public, using ICTs. Increased use of ICTs leads to high levels of vulnerability that can be exploited by major threats. The largest source of the information security breaches is due to a lack of awareness of the human aspect. Ministry of Foreign Affairs (MOFA) RI has a strategic problem concerning the awareness of employees. This study measured awareness of information security. Analytic Hierarchy Process (AHP) was used to assess the importance of each of those dimensions through pairwise comparison. Measurements conducted using questionnaire to all employees of the MOFA. Focus areas measured include: workstation security, password management, the use of email and instant messaging, internet usage, the use of social media, document handling, incident reporting, and security policies. The result shows that the security awareness of employees at the MOFA is at the average level, or in need of attention and supervision.