Hasil Pencarian  ::  Simpan CSV :: Kembali

"Terrorist attacks. Data assaults. Natural catastrophes. Disease outbreaks. Recent years have taught us that not only was 9/11 not just a single, horrible occurrence, but that events of many types can - and statistically will - hit organizations of every size, threatening to disrupt and potentially even destroy those that are not fully prepared. This revised edition, filled with up-to-the-minute thinking and the latest legal and technological updates, provides readers with practical tools and ready-to-use instructions for assessing risk; clearly documenting recovery procedures; assembling a disaster team; testing and debugging every step; protecting material resources; and recovering vital records. In addition to a CD packed with forms and checklists, the book contains case studies, interviews, and all the practical guidance needed to create the kind of thorough disaster recovery plan every responsible organization must have in place."

"Powerful earthquake triggers tsunami in Pacific. Hurricane Isaac makes landfall in the Gulf Coast. Wildfires burn hundreds of houses and businesses in Colorado. Tornado touches down in Missouri. These headlines not only have caught the attention of people around the world, they have had a significant effect on IT professionals as well. The new 2nd edition of Business continuity and disaster recovery for IT professionals gives you the most up-to-date planning and risk management techniques for business continuity and disaster recovery (BCDR). With distributed networks, increasing demands for confidentiality, integrity and availability of data, and the widespread risks to the security of personal, confidential and sensitive data, no organization can afford to ignore the need for disaster planning.Author Susan Snedaker shares her expertise with you, including the most current options for disaster recovery and communication, BCDR for mobile devices, and the latest infrastructure considerations including cloud, virtualization, clustering, and more. Snedaker also provides you with new case studies in several business areas, along with a review of high availability and information security in healthcare IT. Business continuity and disaster recovery for IT professionals, 2nd Edition , is required reading for anyone in the IT field charged with keeping information secure and systems up and running."

"Dikelilingi oleh berbagai resiko bisnis yang mengancam, perusahaan diperhadapkan pada suatu keharusan untuk memiliki suatu rencana agar bisnisnya tersebut tetap terlindungi. Disaster recovery plan merupakan salah satu alat yang dapat diutilisasi sebagai alat perlindungan khususnya untuk melindungi fungsi IT. Tujuan utama dari tesis ini adalah untuk mengidentifikasi risiko kritis IT PT XYZ dan mengajukan rekomendasi atas disaster recovery plan yang saat ini dimiliki PT XYZ. Rekomendasi dibuat berdasarkan analisa berbasis kerangka teori yang diperoleh saat studi literatur. Tesis in menggunakan metode penelitian bersifat kualitatif dan deskriptif. Data - data diperoleh lewat observasi dan wawancara. Tesis ini menghasilkan beberapa rekomendasi seperti update periodik atas disaster recovery plan ketika terjadi perubahan dan menambah kapasitas jaringan network bandwith.

---

Surrounded with various endangering risks, businesses were forced to have a proper plan in place to ensure their businesses are well protected. Disaster recovery plan is one of the tools that can be utilized to protect businesses in particular IT function. The main purpose of this thesis is to identify PT XYZ's critical IT risks and propose recommendation from the existing disaster recovery.

Recommendation is made based on theoretical framework based analysis obtained during study literature. This thesis is qualitative and descriptive research. The data was collected though observation and interview. This thesis suggests that there are several areas that need to be improved by PT XYZ such as regular updates on the plan whenever changes occured and expanding existing network bandwith capacity."

"Universitas Indonesia merupakan Perguruan Tinggi Negeri Berbadan Hukum (PTN BH) yang dapat mengelola asetnya secara mandiri. Dalam menjalankan proses bisnisnya, Universitas Indonesia menggunakan sistem informasi yang dikelola oleh Direktorat Sistem dan Teknologi Informasi (DSTI). Pengelolaan SI/TI pada Universitas Indonesia saat ini belum menjangkau implementasi manajemen risiko yang sesuai dengan tata kelola TI Universitas Indonesia. Hasil identifikasi akar masalah ditemukan akar permasalahan tidak adanya rencana pemulihan SI/TI jika terjadi bencana. Sehubungan dengan hal tersebut, Universitas Indonesia perlu memiliki Disaster Recovery Plan (DRP) yang dapat menjadi panduan dalam implementasi manajemen risiko. Penelitian ini menggunakan metode kualitatif, kombinasi antara metode studi kasus dan penelitian tindakan. Pengumpulan data dilakukan dengan wawancara kepada pimpinan Universitas Indonesia, studi literatur, dokumentasi, dan observasi proses bisnis, aset SI/TI dan pusat data. Dokumen DRP dirancang berdasarkan NIST SP 800-34 Rev.1. Tahapan penelitian ini dimulai dengan analisis proses bisnis, identifikasi aset SI/TI, pembuatan kebijakan rencana pemulihan bencana SI/TI, analisis dampak bisnis, analisis kontrol pencegahan pada pusat data berdasarakan ANSI/TIA 942-A, dan merancang dokumen DRP. Rancangan dokumen DRP divalidasi oleh pimpinan DSTI. Hasl dari penelitian ini adalah rancangan Dokumen DRP yang sesuai dengan kebutuhan Universitas Indonesia.

---

Universitas Indonesia is a Legal Entity State University (PTN BH) that can manage its assets independently. In carrying out its business processes, the University of Indonesia uses an information system managed by the Directorate of Information Systems and Technology (DSTI). The management of IS/IT at the Universitas Indonesia has not yet reached the implementation of risk management in accordance with the Universitas Indonesia IT governance. The results of the identification of the root problems found the root of the problem is the absence of a IS/IT recovery plan if a disaster occurs. In this regard, the University of Indonesia needs to have a Disaster Recovery Plan (DRP) that can be a guide in the implementation of risk management. This study uses qualitative methods, a combination of case study methods and action research. Data collection was carried out by interviews with the management of the Universitas Indonesia, literature study, documentation, and observation of business processes, IS/IT assets and data center. The DRP document was designed based on NIST SP 800-34 Rev.1. The stages of this research began with an analysis of business processes, identification of IS/IT assets, policy making of an IS/IT disaster recovery plan, business impact analysis, prevention control analysis on data center based on ANSI / TIA 942-A, and designing DRP documents. The DRP document design was validated by the management of the DSTI. The result of this research is the DRP document draft that suit the needs of the Universitas Indonesia."

"Ketergantungan perusahaan terhadap TI, membuat sumber daya yang berhubungan dengan TI harus aman dan terjaga dari berbagai ancaman. Bencana seperti banjir, kebakaran, gempa bumi, dan bencana alam atau buatan lainnya merupakan sebuah ancaman bagi perusahaan. Untuk mengurangi risiko kerugian perusahaan jika terjadi bencana, maka dibutuhkan strategi pemulihan bencana. Disaster Recovery Plan (DRP) sebagai proses atau prosedur yang terdokumentasi yang dibuat untuk membantu memulihkan atau melindungi perusahaan dari bencana dan Business Continuity Plan (BCP) sebagai teknik yang digunakan perusahaan untuk pulih baik sebagian atau sepenuhnya dari bencana yang mengganggu proses bisnis dalam jangka waktu yang ditentukan. Walaupun istilah Disaster Recovery Plan (DRP) lebih sering digunakan, tetapi DRP merupakan bagian dari kerangka kerja besar Business Continuity Plan (BCP). DRP cenderung melayani sistem TI, sementara BCP melayani perusahaan secara keseluruhan, walaupun pada sebagian besar kasus, fungsi bisnis penting yang membutuhkan keberlangsungan bisnis biasanya bergantung pada TI. Penelitian ini difokuskan pada kesiapan TI dalam mendukung keberlangsungan bisnis / ICT Readiness of Business Continuity (IRBC) lembaga keuangan non-bank PT JPAS, dimana perlindungan terhadap informasi pelanggan merupakan hal terpenting dalam transaksi bisnis. Penelitian ini melakukan analisis prosedur DRP-BCP yang sudah diterapkan berdasarkan kerangka kerja ISO/IEC 27001:2013 (ISMS) untuk menilai IRBC rencana pemulihan bencana. Penelitian dilakukan dengan metodologi studi kasus kualitatif. Pengumpulan dan pengolahan data dilakukan dengan observasi dan tinjauan dokumen. Hasil penelitian berupa rekomendasi kerangka kerja IRBC dan berdasarkan matrik performansi RTO/RPO dihasilkan rekomendasi infrastruktur untuk solusi less data loss. Berdasarkan penelitian disimpulkan bahwa secara teknologi performansi pemulihan bencana sudah berada di level yang tinggi, tetapi secara pendekatan prosedur Plan-Do-Check-Action masih terdapat inkonsistensi. Hasil dari penelitian direkomendasikan agar menjadi pertimbangan manajemen puncak perusahaan demi keberhasilan dalam pengoperasian rencana keberlangsungan bisnis sesuai dengan kebutuhan bisnis dan persyaratan regulasi.

---

The company's dependence on ICT makes ICT-related resources must be safe and secure from various threats. Disasters such as floods, fires, earthquakes, and other natural or man-made disasters pose a threat to the company. To reduce the risk of loss in the event of a disaster, a disaster recovery strategy is needed. well-known strategies commonly used in disaster recovery are Disaster Recovery Plan (DRP) and Business Continuity Plan (BCP). DRP is a documented process and procedure designed to help restore or protect a company from disasters and BCP is a technique utilized to construct and verify an organization to find a way to recover partially or fully interrupted critical business functions and resume operation during a predetermined timeframe after a disaster. Although DRP is commonly used, DRP is part of Business Continuity Plan (BCP) framework. DRP tends to IT systems, BCP tends the company as a whole, although in most cases, critical business functions that require business continuity usually depend on IT. This study focuses on IT readiness to support business continuity / ICT Readiness Continuity (IRBC) in non-bank financial institution PT JPAS, where the protection of customer information is the most important thing in business transactions. This study analyzes the DRP-BCP procedures that have been implemented based on the ISO/IEC 27001:2013 (ISMS) framework to assess the IRBC of disaster recovery plans. The research was conducted using a qualitative case study methodology. Data collection and processing is done by observing the infrastructure technology implemented and documents review. The results of the research are recommendations for the IRBC framework and based on the RTO/RPO performance matrix, recommendations of infrastructure update to reduce data loss. This study concluded, disaster recovery technology is already at a high level, but there are still inconsistencies found in procedure approach a Plan-Do-Check-Action. The results of the research are recommended to be taken as consideration by the company's top management for its success in implementing business continuity plans."

"This book comprises the refereed proceedings of the International Conferences, ASEA and DRBC 2012, held in conjunction with GST 2012 on Jeju Island, Korea, in November/December 2012. The papers presented were carefully reviewed and selected from numerous submissions and focus on the various aspects of advanced software engineering and its applications, and disaster recovery and business continuity."

"Idealnya suatu perusahaan dapat menjalankan kegiatan operasionalnya dengan lancar, terutama untuk memenuhi Service Level Agreements SLA yang disepakati dengan pelanggan. Seperti halnya divisi DOCS pada PT. Astra Graphia Tbk. yang bergerak di bidang percetakan digital. Pelanggan divisi DOCS yang mayoritas bergerak di bidang perbankan dan asuransi, menuntut terjaminnya pemenuhan SLA dan kualitas hasil cetakan. Penelitian ini menyusun BCP untuk divisi DOCS dengan menggunakan framework NIST SP 800-34. Framework ini mempunyai beberapa tahapan yang harus dilalui hingga menghasilkan BCP bagi organisasi, namun penelitian ini tidak membahas mengenai uji coba rencana dan pemeliharaannya. Penelitian ini menggunakan 2 jenis data yaitu data primer dan sekunder. Data primer didapatkan langsung melalui FGD bersama manajemen divisi DOCS untuk mendapatkan informasi mengenai proses bisnis kritikal, sistem informasi yang mendukung, serta RTO dan RPO. Data sekunder didapatkan dari berbagai dokumen internal organisasi seperti dokumen ISO 9001, Perspektif Bisnis Perusahaan, Company Profile, maupun dokumen internal lainnya yang bersifat dokumentatif. Hasil yang didapat dari penelitian ini adalah beberapa usulan terkait BCP untuk divisi DOCS. Usulan yang diajukan adalah pernyataan kebijakan BCP, prioritas pemulihan sistem informasi terkait dampak terhadap bisnis organisasi, kontrol preventif, strategi BCP, dan dokumen BCP.

---

It is essential for any organizations to proceed their daily operations efficiently, notably in fulfilling the Service Level Agreements SLA that is agreed with the customer. In PT Astra Graphia Tbk. DOCS Division whose main business is digital printing, delivering the SLA and maintaining the quality of printings is very crucial. This research compiles BCP for DOCS division applying the NIST SP 800 34 Framework. In order to obtain the BCP, all the necessary steps needs to be completed however this research is not about the trial and BCP maintenance.

This research utilizes two types of data, which are primary data and secondary data. Primary data is obtained directly through FGD with the management of DOCS division,to gain information regarding critical business process, supporting information system, RTO and RPO. Secondary data is obtained from various internal documents inside the organization, such as ISO 9001, Company Business Perspective, Company Profile, and other internal documents.

The findings of this research suggests that there are some measures need to be taken regarding BCP for DOCS division. The measures are a thorough statement of BCP policy, prioritize the recovery of information system regarding the impacts to organisation rsquo s business, preventive control, BCP strategy, and BCP document."

"PT. X merupakan salah satu perusahaan konstruksi yang rentan untuk mengalami krisis karena dipengaruhi oleh banyak faktor yang sulit untuk dikendalikan. Untuk menjaga PT. X agar tetap dapat mencapai tujuan selama menghadapi krisis, dibutuhkan penerapan konsep Business Continuity Management. Salah satu prinsipnya yaitu: Business Continuity Plan. Penelitian ini adalah studi komparasi pada manajemen krisis di PT. X untuk melihat apa saja yang telah diterapkan pada prinsip Business Continuity Plan. Metode penelitian menggunakan kuisoner terkait krisis signifikan dan wawancara terkait penerapan manajemen krisis PT. X. Hasilnya PT. X telah menerapkan elemen proses tanggap darurat namun masih bersifat reaktif dalam tindakan pendeteksian bencana dan proses pemulihan.

---

PT. X is the construction company that are vulnerable in encountering crisis which are affected by factors that are hard to control. To help sustaining its objectives while facing crisis, they need comprehensive crisis management impelementation which is Business Continuity Management. One of its principle is Business Continuity Plan. This study is a comparasion of crisis management in PT. X with Business Continuity Plan principle. This method use questionnaires about significant crisis in PT. X and in-depth interview about the crisis management implementation. The result show that PT. X has done most of the emergency response process but still acting reactive towards crisis declaration and recovery strategy."

"Dalam rangka memenuhi regulasi mengenai persiapan dalam menghadapi disaster, Bank X telah melakukan antara lain membangun continental hot site disaster recover y center, menyusun disaster recovery plan dan melakukan uji coba pengaktifa n core banking system di disaster recovery center sebanyak 5 kali dalam kurun waktu 5 tahun. Namun Bank X belum dalam mengimplementasikan disaster recovery plan dan mengaktifkan disaster recovery center jika terjadi disaster di data center. Hal ini disebabkan karena belum terpenuhinya kebutuhan bisnis berupa infrastruktur teknologi informasi dan komunikasi di disaster recovery center. Tujuan penelitian ini adalah memberikan konsep penyempurnaan rancangan infrastruktur disaster recovery center menggunakan konsep data center consolidation. Konsep data center consolidation merupakan alternatif untuk menyempurnakan infrastruktur disaster recovery center Bank X dalam mendukung berjalannya disaster recovery plan dengan cara mengkonsolidasikan server, storage dan jaringan komunikasi tanpa mengurangi performansi. Data center consolidation dapat memaksimalkan fungsi perangkat server, storage, dan komunikasi yang telah ada di disaster recovery center sehingga disaster recovery plan dapat berjalan.

---

Fulfilling the regulation about disaster awareness, X Bank build a continental hot site disaster recovery center, make a disaster recovery plan document, and did 5 times test for activating the core banking system in disaster recovery center for 5 years. But until now X Bank still can?t activating disaster recovery center and implementing disaster recovery plan when disaster happen in data center. The main problem is the fulfillment of business requirements for the information dan comunication infrastructure in disaster recovery center was not completed yet. The purpose of the research is giving a new concept using data center consolidation concept. Data center consolidation is an effective and efficient alternatif way for completing the infrastructure of disaster recovery center with consolidating server, storage, and communication without decrease the performance. Data center consolidation can increase usage for the server, storage and network in disaster recovery center for implementing disaster recovery plan."

"Dalam rangka memenuhi regulasi mengenai persiapan dalam menghadapi disaster, Bank X telah melakukan antara lain membangun continental hot site disaster recovery center, menyusun disaster recovery plan dan melakukan uji coba pengaktifan core banking system di disaster recovery center sebanyak 5 kali dalam kurun waktu 5 tahun. Namun Bank X belum dalam mengimplementasikan disaster recovery plan dan mengaktifkan disaster recovery center jika terjadi disaster di data center. Hal ini disebabkan karena belum terpenuhinya kebutuhan bisnis berupa infrastruktur teknologi informasi dan komunikasi di disaster recovery center. Tujuan penelitian ini adalah memberikan konsep penyempurnaan rancangan infrastruktur disaster recovery center menggunakan konsep data center consolidation. Konsep data center consolidation merupakan alternatif untuk menyempurnakan infrastruktur disaster recovery center Bank X dalam mendukung berjalannya disaster recovery plan dengan cara meng- konsolidasi kan server, storage dan jaringan komunikasi tanpa meng- mengurangi performansi. Data center consolidation dapat memaksimal kan fungsi perangkat server, storage, dan komunikasi yang telah ada di disaster recovery center sehingga disaster recovery plan dapat berjalan.

---

Fulfilling the regulation about disaster awareness, X Bank build a continental hot site disaster recovery center, make a disaster recovery plan document, and did 5 times test for activating the core banking system in disaster recovery center for 5 years. But until now X Bank still can?t activating disaster recovery center and implementing disaster recovery plan when disaster happen in data center. The main problem is the fulfillment of business requirements for the information and comunication infrastructure in disaster recovery center was not completed yet. The purpose of the research is giving a new concept using data center consolidation concept. Data center consolidation is an effective and efficient alternatif way for completing the infrastructure of disaster recovery center with consolidating server, storage, and communication without decrease the performance. Data center consolidation can increase usage for the server, storage and network in disaster recovery center for implementing disaster recovery plan."