Muhammad Yasin, Arry Akhmad Arman, I. J. M. Edward, W. Shalannanda
{"title":"使用COBIT 2019框架和ISO 27001:2013设计信息安全治理建议和路线图(案例研究Ditreskrimsus Polda XYZ)","authors":"Muhammad Yasin, Arry Akhmad Arman, I. J. M. Edward, W. Shalannanda","doi":"10.1109/TSSA51342.2020.9310875","DOIUrl":null,"url":null,"abstract":"The use of technology has applied in all areas of Polri's duties. However, the use of this technology does not yet have a level of capability in information security management. For this reason, it is necessary to design recommendations and an ideal information governance roadmap based on COBIT 2019 and ISO/IEC 27001: 2013 concerning Information Security Management Systems (ISMS). The design is carried out based on six stages in the Design Science Research Methodology (DSRM) in the form of identify problems and motivate, define objects of a solution, design and development, demonstration, evaluation, and communication. By mapping ISO/IEC 27001: 2013 into COBIT 2019, 29 domains of the 2019 COBIT core model selected which became the basis for designing and assessing the level of information security management capability at Ditreskrimsus Polda XYZ. The formulation of recommendations considered the assessment results. It produced the model of organizational structure, human resources, and policies and procedures that must be applied to Ditreskrimsus Polda XYZ in the form of a roadmap starting in 2021-2025 in managing information security. This research contributes to producing an information security governance design.","PeriodicalId":166316,"journal":{"name":"2020 14th International Conference on Telecommunication Systems, Services, and Applications (TSSA","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-11-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":"{\"title\":\"Designing Information Security Governance Recommendations and Roadmap Using COBIT 2019 Framework and ISO 27001:2013 (Case Study Ditreskrimsus Polda XYZ)\",\"authors\":\"Muhammad Yasin, Arry Akhmad Arman, I. J. M. Edward, W. Shalannanda\",\"doi\":\"10.1109/TSSA51342.2020.9310875\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The use of technology has applied in all areas of Polri's duties. However, the use of this technology does not yet have a level of capability in information security management. For this reason, it is necessary to design recommendations and an ideal information governance roadmap based on COBIT 2019 and ISO/IEC 27001: 2013 concerning Information Security Management Systems (ISMS). The design is carried out based on six stages in the Design Science Research Methodology (DSRM) in the form of identify problems and motivate, define objects of a solution, design and development, demonstration, evaluation, and communication. By mapping ISO/IEC 27001: 2013 into COBIT 2019, 29 domains of the 2019 COBIT core model selected which became the basis for designing and assessing the level of information security management capability at Ditreskrimsus Polda XYZ. The formulation of recommendations considered the assessment results. It produced the model of organizational structure, human resources, and policies and procedures that must be applied to Ditreskrimsus Polda XYZ in the form of a roadmap starting in 2021-2025 in managing information security. This research contributes to producing an information security governance design.\",\"PeriodicalId\":166316,\"journal\":{\"name\":\"2020 14th International Conference on Telecommunication Systems, Services, and Applications (TSSA\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-11-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"10\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 14th International Conference on Telecommunication Systems, Services, and Applications (TSSA\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/TSSA51342.2020.9310875\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 14th International Conference on Telecommunication Systems, Services, and Applications (TSSA","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/TSSA51342.2020.9310875","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Designing Information Security Governance Recommendations and Roadmap Using COBIT 2019 Framework and ISO 27001:2013 (Case Study Ditreskrimsus Polda XYZ)
The use of technology has applied in all areas of Polri's duties. However, the use of this technology does not yet have a level of capability in information security management. For this reason, it is necessary to design recommendations and an ideal information governance roadmap based on COBIT 2019 and ISO/IEC 27001: 2013 concerning Information Security Management Systems (ISMS). The design is carried out based on six stages in the Design Science Research Methodology (DSRM) in the form of identify problems and motivate, define objects of a solution, design and development, demonstration, evaluation, and communication. By mapping ISO/IEC 27001: 2013 into COBIT 2019, 29 domains of the 2019 COBIT core model selected which became the basis for designing and assessing the level of information security management capability at Ditreskrimsus Polda XYZ. The formulation of recommendations considered the assessment results. It produced the model of organizational structure, human resources, and policies and procedures that must be applied to Ditreskrimsus Polda XYZ in the form of a roadmap starting in 2021-2025 in managing information security. This research contributes to producing an information security governance design.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
