Muhammad, Firdaus (2024) Pengukuran Budaya Keamanan Informasi pada Jasa Pengiriman Barang dan Logistik (Studi Kasus : PT Aisy Sae Bersaudara). Other thesis, Institut Teknologi Sepuluh Nopember.
Text
05211940000036-Undergraduate_Thesis.pdf - Accepted Version Restricted to Repository staff only until 1 July 2026. Download (2MB) | Request a copy |
Abstract
Menilik salah satu kasus kebocoran data terbesar yang terjadi dalam beberapa waktu lalu yaitu sekitar 91 juta akun pengguna dan 7 juta akun penjual pada perusahaan Tokopedia telah dicuri oleh oknum yang tidak bertanggung jawab, yang kemudian data tersebut dijual di dark web dan mendapatkan keuntungan puluhan juta rupiah. Oleh karena itu, dalam upaya untuk melindungi dan menjaga aset informasi organisasi, budaya keamanan informasi (BKI) adalah salah satu faktor terpenting yang menentukan keberhasilan atau kegagalan suatu organisasi dalam menjaga keamanan informasi yang dimiliki atau dikelola suatu organisasi. Alur metodologi pada peelitian ini dimulai dengan identifikasi masalah yang akan diangkat yakni PT Aisy Sae Bersaudara (ASB) yang merupakan salah satu jasa pengiriman barang dan logistik, selain mengirimkan barang PT ASB juga memperoleh data pribadi pelanggan meliputi nama lengkap, alamat pengirim dan penerima, nomor telepon, alamat email, rincian pembayaran seperti nomor kartu kredit/debit, alamat penagihan, dan informasi pembayaran lainnya. Kemudian studi literatur dilakukan dengan tujuan mendapatkan referensi yang relevan dari buku, jurnal, maupun penelitian terdahulu. Untuk pembentukan Indek Budaya Keamanan Informasi, penelitian ini menggunakan indikator knowledge, management, monitoring, security behavior dan attitude. Pengumpulan data pada penelitian ini dibagi menjadi 2 bagian, pertama yaitu wawancara kepada akademisi, praktisi, dan perwakilan dari tempat studi kasus untuk menentukan bobot setiap indikator dengan metode Analytical Hierarchy Process (AHP), kedua yaitu menyebarkan kuesioner kepada pegawai PT ASB untuk mendapatkan skor masing – masing indikator. Setelah nilai bobot dan skor masing – masing indikator didapatkan, langkah selanjutnya yaitu menentukan formula Indeks Budaya Keamanan Informasi (IBKI) dengan metode multiple criteria decision analysis (MCDA). Setelah perhitungan dilakukan, maka didapat hasil indikator dengan skor tertinggi ke terendah adalah management, monitoring, knowledge, security behavior dan attitude. Kemudian untuk bobot indikator dari tertinggi ke terendah adalah knowledge, attitude, security behavior, management dan monitoring. IBKI PT ASB secara keseluruhan berada pada rentang 5,49 ~ 6,87 dari skala 7 atau 78% ~ 98% yang masuk ke dalam kategori “Sedang” ~ “Tinggi”. Untuk meningkatkan budaya keamanan informasi, perusahaan direkomendasikan untuk mengadakan pelatihan kesadaran keamanan informasi dan keterlibatan karyawan, pemantauan dan evaluasi kinerja keamanan, pelatihan penanganan data sensitif, sosialisasi keamanan penggunaan jaringan wifi publik, penggunaan QR-code pada barang yang dikirim dan menerapkan sistem reward and punishment untuk karyawan
===================================================================================================================================
Looking at one of the biggest data leak cases that occurred in some time, around 91 million user accounts and 7 million seller accounts at the Tokopedia company were stolen by irresponsible individuals, who then sold the data on the dark web and made a profit of tens of millions of rupiah. . Therefore, in an effort to protect and safeguard an organization's information assets, information security culture (BKI) is one of the most important factors that determines the success or failure of an organization in maintaining the security of information owned or managed by an organization. The methodological flow of this research begins with identifying the problem that will be raised, namely PT Aisy Sae Bersaudara (ASB), which is a goods delivery and logistics service, apart from sending goods, PT ASB also obtains customer personal data including full name, sender and recipient addresses, number telephone, email address, payment details such as credit/debit card number, billing address, and other payment information. Then a literature study was carried out with the aim of obtaining relevant references from books, journals and previous research. To form the Information Security Culture Index, this research uses indicators of knowledge, management, monitoring, security behavior and attitude. Data collection in this research was divided into 2 parts, first, namely interviews with academics, practitioners, and representatives from the case study site to determine the weight of each indicator using the Analytical Hierarchy Process (AHP) method, second, namely distributing questionnaires to PT ASB employees to get their respective scores. – each indicator. After the weight and score values for each indicator are obtained, the next step is to determine the Information Security Culture Index (IBKI) formula using the multiple criteria decision analysis (MCDA) method. After the calculations were carried out, the indicator results obtained with the highest to lowest scores were management, monitoring, knowledge, security behavior and attitude. Then the indicator weights from highest to lowest are knowledge, attitude, security behavior, management and monitoring. PT ASB's overall IBKI is in the range of 5.49 ~ 6.87 on a scale of 7 or 78% ~ 98% which falls into the "Medium" ~ "High" category. To improve information security culture, companies are recommended to conduct information security awareness training and employee involvement, monitoring and evaluating security performance, training on handling sensitive data, socializing the security of using public WiFi networks, using QR-codes on shipped goods and implementing a reward and punishment system. for employees
Item Type: | Thesis (Other) |
---|---|
Uncontrolled Keywords: | Budaya Keamanan Informasi, MCDA, Jasa Pengiriman Barang dan Logistik, AHP; Information Security Culture, freight forwarding and logistics services. |
Subjects: | T Technology > T Technology (General) > T58.5 Information technology. IT--Auditing |
Divisions: | Faculty of Intelligent Electrical and Informatics Technology (ELECTICS) > Information System > 57201-(S1) Undergraduate Thesis |
Depositing User: | Firdaus Muhammad |
Date Deposited: | 12 Feb 2024 04:01 |
Last Modified: | 12 Feb 2024 04:01 |
URI: | http://repository.its.ac.id/id/eprint/106922 |
Actions (login required)
View Item |