Ferdynandus Ferdynandus, Johny Natu Prihanto, Winarno Winarno
{"title":"在印尼金融服务业实施 NIST 框架和人员、流程、技术方法","authors":"Ferdynandus Ferdynandus, Johny Natu Prihanto, Winarno Winarno","doi":"10.58291/ijec.v3i1.265","DOIUrl":null,"url":null,"abstract":"A financial services company in Indonesia was implementing digital transformation with various strategies. Regulators such as the Financial Services Authority have stipulated that financial services companies must ensure effective data security and smooth internal operations to counter evolving cybersecurity threats. The Gap Analysis results show that the Roadmap and Solution development will be focused starting from the Identify dimension of the NIST Framework, specifically in the asset management category. This research also uses a post-positivist paradigm with a mixed methods approach, which combines qualitative and quantitative research methods. This research will adopt two Digital Maturity Models. by considering the complementary elements of the two models, to create a Framework that is more holistic and in accordance with the specific needs of the organization. The benefit of this research is the development of a framework based on the NIST Cybersecurity Framework and Profile for Ransomware Risk Management, which will be integrated with the PPT Framework (People, Process & Technology) which is expected to improve cybersecurity maturity, especially in dealing with ransomware risks.","PeriodicalId":388974,"journal":{"name":"International Journal of Engineering Continuity","volume":"4 5","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-07-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Implementing NIST Framework and the People, Process, Technology approach in Indonesian Financial Services\",\"authors\":\"Ferdynandus Ferdynandus, Johny Natu Prihanto, Winarno Winarno\",\"doi\":\"10.58291/ijec.v3i1.265\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"A financial services company in Indonesia was implementing digital transformation with various strategies. Regulators such as the Financial Services Authority have stipulated that financial services companies must ensure effective data security and smooth internal operations to counter evolving cybersecurity threats. The Gap Analysis results show that the Roadmap and Solution development will be focused starting from the Identify dimension of the NIST Framework, specifically in the asset management category. This research also uses a post-positivist paradigm with a mixed methods approach, which combines qualitative and quantitative research methods. This research will adopt two Digital Maturity Models. by considering the complementary elements of the two models, to create a Framework that is more holistic and in accordance with the specific needs of the organization. The benefit of this research is the development of a framework based on the NIST Cybersecurity Framework and Profile for Ransomware Risk Management, which will be integrated with the PPT Framework (People, Process & Technology) which is expected to improve cybersecurity maturity, especially in dealing with ransomware risks.\",\"PeriodicalId\":388974,\"journal\":{\"name\":\"International Journal of Engineering Continuity\",\"volume\":\"4 5\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-07-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Journal of Engineering Continuity\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.58291/ijec.v3i1.265\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Engineering Continuity","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.58291/ijec.v3i1.265","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Implementing NIST Framework and the People, Process, Technology approach in Indonesian Financial Services
A financial services company in Indonesia was implementing digital transformation with various strategies. Regulators such as the Financial Services Authority have stipulated that financial services companies must ensure effective data security and smooth internal operations to counter evolving cybersecurity threats. The Gap Analysis results show that the Roadmap and Solution development will be focused starting from the Identify dimension of the NIST Framework, specifically in the asset management category. This research also uses a post-positivist paradigm with a mixed methods approach, which combines qualitative and quantitative research methods. This research will adopt two Digital Maturity Models. by considering the complementary elements of the two models, to create a Framework that is more holistic and in accordance with the specific needs of the organization. The benefit of this research is the development of a framework based on the NIST Cybersecurity Framework and Profile for Ransomware Risk Management, which will be integrated with the PPT Framework (People, Process & Technology) which is expected to improve cybersecurity maturity, especially in dealing with ransomware risks.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
