Information Security Index (ISI) 4.2 for Information Security Evaluation (Case Study: Sleman Regency Communication and Informatics Office)
- DOI
- 10.2991/978-94-6463-366-5_18How to use a DOI?
- Keywords
- Evaluation; Information Security; Information Security Index (KAMI) 4.2; ISO/IEC 27001:2013; ISO/IEC 27002:2013
- Abstract
This research aims to provide an overview of the current conditions related to the readiness (completeness and maturity) of information security and ensure information security is in accordance with applicable standards and can find out what should be improved in information security from various fields that will be made reports to agency leaders. Evaluation of Information Security using the Information Security Index (KAMI) 4.2 with criteria in SNI ISO/IEC 27001: 2013 in six areas namely governance, risk management, framework, asset management, technology and information security, and supplements. The evaluation results of the Sleman Regency Communication and Information Technology Office received a Good status with a final score of 622 and a maturity level of IV. The final results of the evaluation explain that the Sleman Regency Communication and Information Technology Office has a “Managed and Measurable” status and can already carry out Information Security Index (KAMI) certification, especially ISO/IEC 27001: 2013 certification. All aspects have a high score, only a few aspects that only need a little improvement, namely in the Governance Area and the Supplementary Area by using the completeness of the ISO/IEC 27001: 2013 and ISO/IEC 27002: 2013 standards in practice. This research focuses on evaluating the readiness (Completeness and Maturity) of information security by implementing the KAMI index version 4.2, but implemented in different case studies and providing recommendations for improvement based on the ISO/IEC 27001: 2013 information security policy standard and the ISO/IEC 27002 information security practice standard.
- Copyright
- © 2024 The Author(s)
- Open Access
- Open Access This chapter is licensed under the terms of the Creative Commons Attribution-NonCommercial 4.0 International License (http://creativecommons.org/licenses/by-nc/4.0/), which permits any noncommercial use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license and indicate if changes were made.
Cite this article
TY - CONF AU - Herry Sofyan AU - Wilis Kaswidjanti AU - Luqiyyatus Shoubatil Ilmiyah PY - 2024 DA - 2024/02/02 TI - Information Security Index (ISI) 4.2 for Information Security Evaluation (Case Study: Sleman Regency Communication and Informatics Office) BT - Proceedings of the 2023 1st International Conference on Advanced Informatics and Intelligent Information Systems (ICAI3S 2023) PB - Atlantis Press SP - 188 EP - 200 SN - 1951-6851 UR - https://doi.org/10.2991/978-94-6463-366-5_18 DO - 10.2991/978-94-6463-366-5_18 ID - Sofyan2024 ER -