Implementasi Proses Validasi Hasil Vulnerability Assessment dan Penetration Testing untuk Optimalisasi Keamanan Sistem di PT Pelabuhan Indonesia (Persero) Regional 3

Aritonang, Rouli Elizabeth Geraldine and Satrio, Ayesha Nayla (2025) Implementasi Proses Validasi Hasil Vulnerability Assessment dan Penetration Testing untuk Optimalisasi Keamanan Sistem di PT Pelabuhan Indonesia (Persero) Regional 3. Project Report. [s.n.], [. (Unpublished)

[thumbnail of 5025231021_ 5025231195-Project_Report.pdf] Text
5025231021_ 5025231195-Project_Report.pdf - Accepted Version
Restricted to Repository staff only
Download (7MB) | Request a copy

Abstract

PT Pelabuhan Indonesia (Persero) Regional 3 memiliki peran strategis dalam operasional logistik maritim nasional yang sangat bergantung pada keandalan infrastruktur teknologi informasi, sehingga keamanan sistem menjadi aspek krusial dalam menjaga keberlangsungan layanan. Seiring meningkatnya kompleksitas ancaman siber, penelitian ini berfokus pada proses validasi hasil Vulnerability Assessment dan Penetration Testing (VAPT) yang telah dilakukan sebelumnya, guna memastikan efektivitas implementasi mitigasi celah keamanan. Validasi dilakukan menggunakan pendekatan automated vulnerability scanning dengan alat Nuclei berbasis template terhadap 40 subdomain aplikasi web perusahaan. Analisis temuan mengacu pada standar OWASP Top 10 untuk klasifikasi kerentanan dan Common Vulnerability Scoring System (CVSS) v3.1 untuk penilaian tingkat risiko. Penelitian ini memberikan gambaran kondisi keamanan sistem terkini serta rekomendasi untuk mendukung pengambilan keputusan manajemen dalam memprioritaskan perbaikan dan meningkatkan perlindungan aset informasi perusahaan.
===================================================================================================================================
PT Pelabuhan Indonesia (Persero) Regional 3 plays a strategic role in national maritime logistics operations, which rely heavily on the reliability of information technology infrastructure; thus, system security becomes a crucial aspect in ensuring service continuity. As the complexity of cyber threats increases, this study focuses on validating the results of previously conducted Vulnerability Assessment and Penetration Testing (VAPT) to ensure the effectiveness of security vulnerability mitigation implementation. The validation was conducted using an automated vulnerability scanning approach utilizing the template-based Nuclei tool on 40 corporate web application subdomains. The analysis of findings is based on the OWASP Top 10 standard for vulnerability classification and the Common Vulnerability Scoring System (CVSS) v3.1 for risk level assessment. This study provides an overview of the current system security posture and offers recommendations to support management decision-making in prioritizing remediation and enhancing the protection of corporate information assets.

Item Type: Monograph (Project Report)
Uncontrolled Keywords: Vulnerability Assessment and Penetration Testing (VAPT), Validasi Keamanan, Nuclei, OWASP Top 10, CVSS, Keamanan Siber, Security Validation, Cybersecurity.
Subjects: T Technology > T Technology (General) > T174.5 Technology--Risk assessment.
T Technology > T Technology (General) > T58.5 Information technology. IT--Auditing
Divisions: Faculty of Intelligent Electrical and Informatics Technology (ELECTICS) > Informatics Engineering > 55201-(S1) Undergraduate Thesis
Depositing User: Rouli Elizabeth Geraldine Aritonang
Date Deposited: 09 Jan 2026 07:34
Last Modified: 09 Jan 2026 07:34
URI: http://repository.its.ac.id/id/eprint/129422

Actions (login required)

View Item View Item