Journal of Information Systems Engineering and Business Intelligence (Oct 2016)
Penyusunan Panduan Pengelolaan Keamanan Informasi Untuk Firewall Configuration Berdasarkan Kerangka Kerja PCI DSS v.3.1 dan COBIT 5
Abstract
Information security systems must be protected from all attacks and interuptions by an unauthorized user. Firewall is a mechanism that can be applied to improve the security information which done by filtering data packets that enter and exit the network. IT governance is needed to manage good information security. IT governance can use to make the arrangement of guidelines for the management of information security. This research aims to create a reference guide to information security such as an information security management guide for firewall configuration that refers to the framework of PCI DSS v.3.1 and COBIT 5 by taking a case study at the DSIK Universitas Airlangga.Arrangement of guidelines for information security management for firewall configuration will be done in three stages. The first stage was the arrangement of information security management procedures for firewall configuration which consists of mapping analysis stage process, arrangement procedure’s stage and determining roles and job description’s stage. In the second stage was the verification of the information security management guidance using a questionnaire. The third stage was improvement of the information security management guidance. These improvements was done to correct deficiencies that were produced when verification. The verification results show that 42.86% of respondents said that management guidelines are operationally very easy to be implemented.
