ANALISIS TATA KELOLA KEAMANAN SISTEM INFORMASI BERDASARKAN ISO/IEC 27002:2005 (STUDI KASUS : PT. XYZ)

Abstrak

Abstract
Information technology, which has long been considered a driver and supporter of corporate
strategy, is now considered an integrated part of business strategy. The existence of IT Governance
will align so that IT goals and business goals are aligned. Good IT governance, one of which is
emphasizing the need to maintain the integrity of information and protect IT assets that require an
information security management process. Information security management includes monitoring
security, testing and implementing corrective actions on a regular basis to identify system
weaknesses and incidents.
This study provides recommendations for improving PT XYZ's information security. This study uses
the ISO 27002:2005 standard to develop recommendations for improving PT XYZ's information
security. Data collection techniques used to compile this research are questionnaires, interviews
with related personnel at PT XYZ and literature studies. The existing data is then processed to
produce information security management recommendations for PT XYZ