Sujiwana, Rafi Kurnia (2025) Business Impact Analysis Berbasis Kerentanan Sistem Pada Web Koperasi PT. Aneka Jasa Grhadika. Other thesis, Institut Teknologi Sepuluh Nopember.
![[thumbnail of 5026211034-Undergraduate_Thesis.pdf]](http://repository.its.ac.id/style/images/fileicons/text.png) |
Text
5026211034-Undergraduate_Thesis.pdf - Accepted Version Restricted to Repository staff only Download (3MB) | Request a copy |
Abstract
Perkembangan pesat teknologi informasi dan komunikasi (TIK) membuka peluang besar bagi koperasi perusahaan untuk meningkatkan produktivitas. Namun juga menghadirkan tantangan dalam hal keamanan dan keberlanjutan sistem. Koperasi PT. Aneka Jasa Grhadika memiliki rencana jangka pendek untuk mengembangkan website dan sistem informasi manajemen. Oleh karena itu, tugas akhir ini melakukan analisis dampak bisnis berbasis kerentanan sistem terhadap web koperasi PT. Aneka Jasa Grhadika menggunakan pendekatan Business Impact Analysis (BIA) sesuai standar ISO 22317:2021. Analisis mencakup identifikasi kunci proses bisnis utama, identifikasi dan penilaian risiko, serta analisis dampak bisnis, dengan data diperoleh melalui wawancara, observasi, dan dokumentasi. Alat yang digunakan antara lain dokumentasi proses bisnis, OWASP ASVS 4.0.3, ZAP, ZAP Alert Detail Documentation, dan Acunetix 11 trial. Hasil menunjukkan sebagian besar risiko berada pada tingkat sedang hingga tinggi, terutama terkait keamanan web dan proses bisnis. Tiga risiko terpenting menurut manajemen risiko adalah masalah komunikasi dengan kasir, modern web application, backup files. Dari perspektif BIA, risiko tertinggi adalah Vulnerable JS Library, Session Management Response Identified, dan Backup Files. Dari hasil analisis dampak bisnis bahwa koperasi memilih untuk penghindaran risiko (avoidance risk) dan tidak melaksanakan rencana pengembangan sistem informasi manajemen karena estimasi biaya perbaikan lebih besar dari estimasi kehilangan transaksi.
======================================================================================================================================
The rapid development of Information and Communication Technology (ICT) presents significant opportunities for corporate cooperatives to improve productivity. However, it also brings challenges in terms of system security and sustainability. PT. Aneka Jasa Grhadika Cooperative has a short-term plan to develop a website and a management information system. Therefore, this final project conducts a system vulnerability-based business impact analysis on the cooperative’s website using the Business Impact Analysis (BIA) approach in accordance with ISO 22317:2021. The analysis includes the identification of key business processes, risk identification and assessment, and business impact analysis, with data collected through interviews, observation, and documentation. The tools used include business process documentation, OWASP ASVS 4.0.3, ZAP, ZAP Alert Detail Documentation, and the Acunetix 11 trial. The results show that most risks are at medium to high levels, particularly related to web security and business processes. The three most critical risks from a risk management perspective are communication issues with cashiers, modern web application vulnerabilities, and exposed backup files. From the BIA perspective, the highest risks are the Vulnerable JS Library, Session Management Response Identified, and Backup Files. Based on the business impact analysis, the cooperative chose to avoid the risk and decided not to proceed with the management information system development plan, as the estimated cost of mitigation exceeds the estimated loss in transactions.
| Item Type: | Thesis (Other) |
|---|---|
| Uncontrolled Keywords: | Business Impact Analysis, keamanan web, koperasi, manajemen risiko, OWASP, Business Impact Analysis, cooperative, OWASP, risk management, web security. |
| Subjects: | T Technology > T Technology (General) > T174.5 Technology--Risk assessment. |
| Divisions: | Faculty of Intelligent Electrical and Informatics Technology (ELECTICS) > Information System > 57201-(S1) Undergraduate Thesis |
| Depositing User: | Rafi Kurnia Sujiwana |
| Date Deposited: | 26 Jul 2025 08:14 |
| Last Modified: | 26 Jul 2025 08:14 |
| URI: | http://repository.its.ac.id/id/eprint/122178 |
Actions (login required)
 |
View Item |