TY - GEN
T1 - An analysis of IT assessment security maturity in higher education institution
AU - Suwito, Misni Harjo
AU - Matsumoto, Shinchi
AU - Kawamoto, Junpei
AU - Gollmann, Dieter
AU - Sakurai, Kouichi
N1 - Publisher Copyright:
© Springer Science+Business Media Singapore 2016.
Copyright:
Copyright 2016 Elsevier B.V., All rights reserved.
PY - 2016
Y1 - 2016
N2 - The information technology (IT) has been applied widely in Indonesia Higher Education Institution for various services. Many organizations responsible for managing the IT infrastructure, however, rarely have a framework for assessing the security maturity level of their information management. The implementation of a framework is one of solutions, but has not been yet maximized. Therefore we suggest to combine several frameworks in hope that they can be complementary. The combination of different frameworks will be more effective to monitoring the security maturity level by using an assessment security maturity management. This assessment security maturity management is a combination of framework control objective from IT Governance COBIT® 4.1 (Control Objectives for Information and related Technology) with Management Service in ITIL v3 (Information Technology Infrastructure Library) and ISO/IEC 27001. Since assessment of security maturity management is measured using COBIT® 4.1 assessment framework, and before it was adjusted with the ISO 27001 framework applied maximal. This paper present the results of assessment maturity security management, mapping of combination framework providing an indicator of security maturity level at one of university in Jakarta. A case study conducted shows that combination of some frameworks to support assessment of security maturity management level becomes more effective and efficient.
AB - The information technology (IT) has been applied widely in Indonesia Higher Education Institution for various services. Many organizations responsible for managing the IT infrastructure, however, rarely have a framework for assessing the security maturity level of their information management. The implementation of a framework is one of solutions, but has not been yet maximized. Therefore we suggest to combine several frameworks in hope that they can be complementary. The combination of different frameworks will be more effective to monitoring the security maturity level by using an assessment security maturity management. This assessment security maturity management is a combination of framework control objective from IT Governance COBIT® 4.1 (Control Objectives for Information and related Technology) with Management Service in ITIL v3 (Information Technology Infrastructure Library) and ISO/IEC 27001. Since assessment of security maturity management is measured using COBIT® 4.1 assessment framework, and before it was adjusted with the ISO 27001 framework applied maximal. This paper present the results of assessment maturity security management, mapping of combination framework providing an indicator of security maturity level at one of university in Jakarta. A case study conducted shows that combination of some frameworks to support assessment of security maturity management level becomes more effective and efficient.
UR - http://www.scopus.com/inward/record.url?scp=84959145980&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84959145980&partnerID=8YFLogxK
U2 - 10.1007/978-981-10-0557-2_69
DO - 10.1007/978-981-10-0557-2_69
M3 - Conference contribution
AN - SCOPUS:84959145980
SN - 9789811005565
T3 - Lecture Notes in Electrical Engineering
SP - 701
EP - 713
BT - Information Science and Applications, ICISA 2016
A2 - Kim, Kuinam J.
A2 - Joukov, Nikolai
PB - Springer Verlag
T2 - International Conference on Information Science and Applications, ICISA 2016
Y2 - 15 February 2016 through 18 February 2016
ER -