Hasil Pencarian  ::  Simpan CSV :: Kembali

""This book investigates different protocols and architectures that can be used to design, create, and develop security infrastructures by highlighting recent advances, trends, and contributions to the building blocks for solving security issues"-- Provided by publisher."

"The present volume aims to provide an overview of the current understanding of the so-called Critical Infrastructure (CI), and particularly the Critical Information Infrastructure (CII), which not only forms one of the constituent sectors of the overall CI, but also is unique in providing an element of interconnection between sectors as well as often also intra-sectoral control mechanisms. The 14 papers of this book present a collection of pieces of scientific work in the areas of critical infrastructure protection. In combining elementary concepts and models with policy-related issues on one hand and placing an emphasis on the timely area of control systems, the book aims to highlight some of the key issues facing the research community."

"As part of the syngress basics series, The basics of information security provides you with fundamental knowledge of information security in both theoretical and practical aspects. Author Jason Andress gives you the basic knowledge needed to understand the key concepts of confidentiality, integrity, and availability, and then dives into practical applications of these ideas in the areas of operational, physical, network, application, and operating system security.The basics of information security gives you clear-non-technical explanations of how infosec works and how to apply these principles whether you're in the IT field or want to understand how it affects your career and business. The new Second Edition has been updated for the latest trends and threats, including new material on many infosec subjects."

"This book constitutes the refereed proceedings of the 10th IFIP TC 9 International Conference on Human Choice and Computers, HCC10 2012, held in Amsterdam, The Netherlands, in September 2012. The 37 revised full papers presented were carefully reviewed and selected for inclusion in the volume. The papers are organized in topical sections on national and international policies, sustainable and responsible innovation, ICT for peace and war, and citizens' involvement, citizens' rights and ICT."

"Kementerian Sekretariat Negara memiliki tugas pokok dan fungsi dalam memberikan dukungan teknis dan administratif yang prima kepada Presiden dan Wakil Presiden serta pelayanan informasi kepada masyarakat luas secara cepat, akurat, komprehensif, konsisten, dan akuntabel. Untuk mendukung tugas pokok dan fungsi tersebut sudah semestinya memiliki sistem manajemen keamanan informasi dalam menjaga dan melindungi aset data dan informasi yang dimiliki untuk mencegah dan menanggulangi terjadinya kejahatan komputer yang mengancam aset-aset penting pada Kementerian Sekretariat Negara yang memiliki tingkat kekritisan tinggi dan vital yang berisi tentang data dan informasi bersifat kenegaraan dalam kaitan layanan kepada Presiden dan Wakil Presiden.Oleh karenanya dalam rangka penerapan sistem manajemen keamanan informasi tersebut diperlukan kajian yang komprehensif, salah satunya adalah dengan menggunakan Penilaian Indeks KAMI yang bertujuan untuk mengetahui tingkat kesiapan dan kematangan sistem manajemen keamanan informasi yang dalam kajian ini adalah di Kementerian Sekretariat Negara dengan menilai faktor-faktor: tata kelola, pengelolaan risiko, kerangka kerja, pengelolaan aset serta teknologi dan keamanan informasi.Adapun hasil dari penelitian ini adalah tersusunnya rekomendasi berkaitan dengan sistem manajemen keamanan informasi yang sesuai dengan kondisi di Kementerian Sekretariat Negara berdasarkan hasil penilaian Indeks KAMI sehingga dapat diterapkan secara sistematis.

---

Ministry of State Secretariat has duties and functions in providing technical support and administrative excellence to President and Vice President as well as an information service to the public in a timely, accurate, comprehensive, consistent, and accountable. To support the main tasks and functions it should have an information security management system to maintain and protect the data and information assets held to prevent and combat computer crimes that threaten critical assets to the Ministry of the State Secretariat who has a high level of critical and vital that contains about the data and information is a state in terms of service to the President and Vice President.

Therefore, in order to implement the information security management system required a comprehensive study, one of which is using Indeks KAMI Assessment which aims to determine the level of readiness and maturity of information security management systems in this study is in the Ministry of the State Secretariat to assess the factors: governance, risk management framework, as well as asset management and information security technologies.

The results of this research is the formulation of recommendations concerning the information security management system in accordance with the conditions in the Ministry of the State Secretariat based on the assessment of Indeks KAMI that can be applied systematically. "

"ABSTRAKBerkaitan dengan organisasi pemantauan keamanan Cyber nasional untuk publik, Indonesia memiliki tim insiden respon terhadap gangguan dan ancaman keamanan internet ID-SIRTII/CC (Indonesia Security Incident Response Team on Internet Infrastructure coordination centre) yang bertugas melakukan pengamanan pemanfaatan jaringan telekomunikasi berbasis protokol internet di Indonesia dimana menurut Peraturan Menteri nomor 16/PER/M.KOMINFO/10/2010 yang memiliki peran mendukung terlaksananya proses penegakan hukum, menciptakan lingkungan dan pemanfaatan jaringan telekomunkasi berbasis protokol internet yang aman dari berbagai macam potensi ancaman dan gangguan, Mendukung terlaksananya koordinasi dengan pihak pihak terkait di dalam maupun luar negeri dalam upaya pencegahan, pendeteksian, peringatan dini dan mitigasi insiden pada infrastruktur strategis.ID-SIRTII/CC dalam kegiatan operasionalnya mengandalkan TI untuk menunjang fungsi dan tugasnya dalam pelayanan publik. Tingginya tingkat ketergantungan organisasi terhadap TIK diperlukan manajemen risiko TI untuk mengurangi atau memperkecil risiko risiko yang terjadi. Sesuai dengan permen kominfo no.41 tahun 2007 bahwa dalam melakukan tata kelola TI oleh institusi pemerintahan diperlukan manajemen risiko atas keberlangsungan layanan.Pada Karya akhir ini disusun evaluasi terhadap manajemen risiko sistem monitoring ID-SIRTII/CC dengan menggunakan kerangka kerja NIST sp800-30. Perancangannya dimulai dari identifikasi Risiko,Mitigasi Risiko dan Evaluasi terhadap risiko yang ada untuk kemudian mendapatkan rekomendasi kontrol yang diperlukan untuk sistem monitoring ID-SIRTII/CC.

---

ABSTRACTIn connection with the organization of national cyber security monitoring to the public, Indonesia has incident response team to interference and internet security threats named ID-SIRTII/CC (Indonesia Security Incident Response Team on Internet Infrastructure coordination centers). which aims to safeguard the use of internet protocol based telecommunications network in Indonesia where, according to Regulation No. 16 / PER / M.KOMINFO / 10/2010 which has the role of support the implementation of the law enforcement process, creating environmental and utilization of telecommunication networks based on Internet protocols that are safe from various kinds of potential threats and disturbances, Supports implementation in coordination with the relevant parties at home and abroad in the prevention, detection, early warning and mitigation of incidents in strategic infrastructure.ID-SIRTII/CC in its operations rely on IT to support the functions and duties in the publik service. The high level of dependence on ICT organizations IT risk management is needed to reduce or minimize the risk of the risk. In accordance with Kominfo regulation no.41 of 2007 that in performing IT governance by government institutions necessary risk management on the sustainability of the service.At the end of the work is structured evaluation of risk management monitoring system with the ID-SIRTII/CC using sp800-30 NIST framework. Its design starting from risk identification, Risk Mitigation and evaluation of the risks that exist to then get recommendations necessary controls for monitoring systems Of ID-SIRTII/CC."

"Bencana telah menjadi sebuah isu penting di sektor Teknologi Informasi (TI) yang dapat terjadi kapan saja tanpa peringatan. Bencana pandemi yang terjadi saat ini, berdampak kepada kebutuhan akan mobilisasi dalam bekerja meningkat. Banyaknya instansi yang mengadopsi sistem outsourcing membuat jaringan informasi menjadi rentan terhadap ancaman serangan yang dapat berasal dari pihak luar atau pihak ketiga yang bertindak sebagai penyedia jasa, pihak internal, serta lingkungan dan ancaman yang bersifat fisik lainnya. Studi ini mengukur tingkat kesadaran, kesiapan, pelaksanaan Disaster Recovery Plan dengan menggunakan survei pada perusahaan di Indonesia. Penggunaan metodologi kuantitatif dalam studi ini ditambah dengan penggunaan SPSS Statistical Software yang berfokus pada perhitungan nilai rata-rata pada setiap bagian di setiap organisasi yang dibagi berdasarkan sektor industrinya. Hasil studi menunjukkan bahwa dari 3 aspek Disaster Recovery Plan yang dinilai, yaitu Disaster Recovery Plan Awareness, Disaster Recovery Plan Readiness, dan Disaster Recovery Plan Practices yang berdasarkan kepada hasil uji t-Test yang dilakukan menunjukkan bahwa nilai tingkat kesadaran, kesiapan, dan pelaksanaan pada organisasi di Indonesia masih rendah yang dipengaruhi oleh beberapa faktor, seperti kurangnya kesadaran individu terhadap keamanan data yang dimiliki, kurangnya pelatihan yang dilakukan kepada staff yang terkait, kurangnya peninjauan secara berkala dan dokumentasi yang jelas

---

Disaster has become an important issue in the Information Technology (IT) sector which can happen at any time without warning. The current pandemic disaster has increased the need for mobilization at work. The number of agencies adopting the outsourcing system makes information networks vulnerable to attack threats that can come from outside parties or third parties acting as service providers, internal parties, as well as the environment and other physical threats. This study measures the level of awareness, readiness, and implementation of the Disaster Recovery Plan using a survey of companies in Indonesia. The use of the quantitative methodology in this study is coupled with the use of SPSS Statistical Software which focuses on calculating the average score for each section in each organization divided by industry sector. The study results show that of the 3 assessed aspects of the Disaster Recovery Plan, namely the Disaster Recovery Plan Awareness, Disaster Recovery Plan Readiness, and Disaster Recovery Plan Practices which are based on the results of the t-Test conducted, it shows that the value of the level of awareness, readiness, and implementation at Organization in Indonesia is still low which is influenced by several factors, such as the lack of individual awareness of the security of the data they have, the lack of training provided to related staff, the lack of periodic reviews and clear documentation."

"The basics of IT audit : purposes, processes, and practical information provides you with a thorough, yet concise overview of IT auditing. Packed with specific examples, this book gives insight into the auditing process and explains regulations and standards such as the ISO-27000, series program, CoBIT, ITIL, Sarbanes-Oxley, and HIPPA.IT auditing occurs in some form in virtually every organization, private or public, large or small. The large number and wide variety of laws, regulations, policies, and industry standards that call for IT auditing make it hard for organizations to consistently and effectively prepare for, conduct, and respond to the results of audits, or to comply with audit requirements."

"ABSTRAKSkripsi ini membahas tentang analisis hukum terhadap ketahanan dan keamanan nasional negara Indonesia dari adanya potensi konglomerasi industri informasi dan komunikasi yang ditimbulkan oleh perusahaan asing di Indonesia. Perkembangan dan akselerasi teknologi digital di bidang industri informasi dan komunikasi di masing-masing negara di dunia juga mempengaruhi persaingan industri secara global, termasuk Indonesia. Penelitian hukum dalam skripsi ini menggunakan pendekatan normatif dengan menganalisis kaedah-kaedah hukum dalam peraturan perundang-undangan yang terkait, dengan sifat peneltian yaitu preskriptif-analitis. Dengan mengambil kasus dari Google Application dan Google Loon di Indonesia, penelitian ini menemukan bahwa struktur industri informasi dan komunikasi yang tadinya terpisah satu sama lain berubah menjadi terintegrasi, karena dua atau lebih produk atau layanan yang sebelumnya diselenggarakan oleh perusahaan yang berbeda, kemudian diselenggarakan oleh perusahaan yang sama. Perlindungan hukum yang diberikan negara Indonesia terhadap potensi konglomerasi dalam industri informasi dan komunikasi dalam kasus Google Application dan Google Loon didasarkan pada ketentuan khusus mengenai larangan praktek monopoli dan persaingan usaha tidak sehat dalam UU No. 5 Tahun 1999. Untuk penerapan Google Loon di Indonesia, dari hasil kajian yang telah ada, opsi yang menjadi pilihan pertama adalah opsi Status Quo atau Loon tidak diimplementasikan. Oleh karena itu, diharapkan pemerintah harus bisa bertindak tegas terhadap produk-produk asing dalam industri informasi dan komunikasi yang tidak mentaati regulasi yang ada di Indonesia.

---

ABSTRAKThis thesis discusses the legal analysis of Indonesian national resilience and security against potential conglomeration of information and communication industry which is caused by foreign companies in Indonesia. The development and acceleration of digital technology in the field of information and communication industry in each country in the world also affect the industry competition globally, including Indonesia. The legal research in this thesis uses normative approach by analyzing the legal principles in the related laws and regulations, with the nature of research that is the prescriptive analytical. Taking the case of Google Application and Google Loon in Indonesia, the study found that the information and communication industry structure that was once separate from one another turned into integrated, because two or more products or services previously held by different companies became organized by the same company. Legal protection granted by the state of Indonesia to potential conglomeration in the information and communication industry in the case of Google Application and Google Loon is based on special provisions concerning the ban on monopolistic practices and unfair business competition in Law of Republic of Indonesia Number 5 of 1999. For the implementation of Google Loon in Indonesia, from the results of existing studies, the option that became the first choice is the Status Quo or Loon option is not implemented. Therefore, it is expected that the government should be able to act firmly against foreign products in the information and communication industries that do not comply with the existing regulations in Indonesia."