Implementation Octave-S and Iso 27001controls in Risk Management Information Systems

Stephanus Stephanus

doi:10.21512/comtech.v5i2.2225

ComTech (Dec 2014)

Implementation Octave-S and Iso 27001controls in Risk Management Information Systems

Stephanus Stephanus

Affiliations

Stephanus Stephanus: Bina Nusantara University

DOI: https://doi.org/10.21512/comtech.v5i2.2225
Journal volume & issue: Vol. 5, no. 2
pp. 685 – 693

Abstract

Read online

Extensive use of information technology in companies put IT into a position which is of considerable concern, especially in large companies that put IT becomes a strategic part of the company. The importance of IT division, make the companies willing to pay big to get the benefits offered by IT itself, but on the other hand appears disappointment incurred from investments are not comparable with the results obtained. Until the threat appear and disrupt the business of the company. By doing risk management using the OCTAVE-S, particularly in smaller companies, can help companies to be growing, the company can find out the weaknesses and threats that may arise that could disrupt the company's business, helped by the standard controls that are owned by the ISO / EIC 27001 : 2005 helps companies to prepare implement ISO / EIC 27001:2005 later.

risk management, ISO/EIC 27001:2005, OCTAVE-S, risk assesment

Published in ComTech

ISSN: 2087-1244 (Print); 2476-907X (Online)
Publisher: Bina Nusantara University
Country of publisher: Indonesia
LCC subjects: Technology: Engineering (General). Civil engineering (General); Science
Website: https://journal.binus.ac.id/index.php/comtech/index

About the journal

Abstract

Keywords