Perancangan Contingency Planning Disaster Recovery Unit Teknologi Informasi menggunakan NIST SP800-34
DOI:
https://doi.org/10.33633/tc.v20i1.4114Keywords:
Disaster Recovery Plan, NIST SP 800-34 Rev 1, Business Continuity PlanAbstract
Pembangunan institusi pendidikan selama ini telah bertumbuh pesat sesuai dengan kebutuhan masyarakat dan menjadikan sebuah insitusi yang semakin komplek dengan kebutuhan fungsi operasional sistem layanan informasinya. Untuk menjalankan fungsinya, institusi pendidikan didukung oleh infrastruktur sistem layanan teknologi informasi yang sangat kompleks. Dalam penyelenggaraan fungsi operasional layanan tersebut, perguruan tinggi membutuhkan peran sistem teknologi informasi yang handal dalam keberlangsungan kegiatan kerjanya. Semua komponen teknologi informasi merupakan komponen yang rentan terhadap gangguan baik itu dari internal maupun eksternal, untuk itu dalam penyelenggaraan institusi pendidikan, perguruan tinggi dalam hal ini wajib memiliki rencana untuk menanggulangi segala gangguan maupun bencana. Dalam hal ini penanganan penanggulangan ganguan dan bencana memuat beberapa prosedur dan mekanisme tersendiri dalam pengamanan datanya. Disaster Recovery Plan (DRP) merupakan langkah tepat dalam membangun penanganan gangguan dan bencana terhadap infrastruktur sistem layanan teknologi informasi yang ada di perguruan tinggi. Penerapan untuk membangun penanganan bencana ini mengacu pada NIST SP 800-34 Rev.1 yang didalamnya terdapat beberapa tahapan penilaian resiko, menganalisa dampak bisnis, mengidentifikasi pencegahannya dan pengembangan strategi mitigasi. Hasil akhir dari penelitian ini adalah rancangan dokumen DRP berdasarkan NIST SP 800-34 Rev.1 yang disesuaikan dengan kondisi di perguruan tinggiReferences
C. B. Chapman and D. F. Cooper, “Risk analysis: Testing some prejudices,” Eur. J. Oper. Res., vol. 14, no. 3, pp. 238–247, 1983, doi: 10.1016/0377-2217(83)90260-6.
M. Woods, “Linking risk management to strategic controls: A case study of Tesco plc,” Int. J. Risk Assess. Manag., vol. 7, no. 8, pp. 1074–1088, 2007, doi: 10.1504/IJRAM.2007.015295.
A. Campbell and M. Jones, “Rethinking business risk,” 2007.
H.-P. Berg, “Risk management: procedures, methods and experiences,” Risk Manag., vol. 1, no. 17, pp. 79–95, 2010.
I. Helsloot and W. Jong, “Risk management in higher education and research in the Netherlands,” J. Contingencies Cris. Manag., vol. 14, no. 3, pp. 142–159, 2006, doi: 10.1111/j.1468-5973.2006.00490.x.
Abdul Kadir, “Pengenalan Sistem Informasi Edisi Revisi,” Edisi Revisi. 2014.
S. Snedaker, Business Continuity & Disaster Recovery for IT Professionals. Syngress Publishing, Inc, 2007.
S. Snedaker and C. Rima, Business Continuity and Disaster Recovery Planning for IT Professionals: Second Edition. 2013.
A. R. Ahlan and Y. Arshad, “Information technology risk management: the case of the International Islamic University Malaysia,” J. Inf. Syst. Res. Innov., vol. 1, pp. 58–67, 2012, [Online]. Available: http://irep.iium.edu.my/32107/.
J. B. Barney, Gaining and sustaining competitive advantage, vol. 104. 2002.
M. Lallmahamood, “An Examination of Individual’s Perceived Security and Privacy of the Internet in Malaysia and the Influence of This on Their Intention to Use E-Commerce: Using An Extension of the Technology Acceptance Model,” J. Internet Bank. Commer., vol. 12, pp. 1–26, 2007.
T. Pal, S. Brar, D. Sharma, and S. S. Khurmi, “Disaster Recovery and Business Continuity Planning for Electronic Banking?: A Comparative Study,” vol. 5976, pp. 64–71, 2015.
K.-M. Osei-Bryson, H. Millar, A. Joseph, and A. Mobolurin, “Using formal MS/OR modeling to support disaster recovery planning,” Eur. J. Oper. Res., vol. 141, pp. 679–688, 2002, doi: 10.1016/S0377-2217(01)00275-2.
B. W. Boehm, “Software risk management: Principles and practices,” Softw. Manag. Seventh Ed., pp. 365–374, 2007, doi: 10.1109/9780470049167.ch11.
M. A. Rahman, R. Razali, and D. Singh, “A risk model of requirements change impact analysis,” J. Softw., vol. 9, no. 1, pp. 76–81, 2014, doi: 10.4304/jsw.9.1.76-81.
Downloads
Published
Issue
Section
License
Copyright (c) 2021 Wahyu Adi Prabowo
This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
License Terms
All articles published in Techno.COM Journal are licensed under the Creative Commons Attribution-NonCommercial 4.0 International (CC BY-NC 4.0). This means:
1. Attribution
Readers and users are free to:
-
Share – Copy and redistribute the material in any medium or format.
-
Adapt – Remix, transform, and build upon the material.
As long as proper credit is given to the original work by citing the author(s) and the journal.
2. Non-Commercial Use
-
The material cannot be used for commercial purposes.
-
Commercial use includes selling the content, using it in commercial advertising, or integrating it into products/services for profit.
3. Rights of Authors
-
Authors retain copyright and grant Techno.COM Journal the right to publish the article.
-
Authors can distribute their work (e.g., in institutional repositories or personal websites) with proper acknowledgment of the journal.
4. No Additional Restrictions
-
The journal cannot apply legal terms or technological measures that restrict others from using the material in ways allowed by the license.
5. Disclaimer
-
The journal is not responsible for how the published content is used by third parties.
-
The opinions expressed in the articles are solely those of the authors.
For more details, visit the Creative Commons License Page:
? https://creativecommons.org/licenses/by-nc/4.0/
