An analysis of IT assessment security maturity in higher education institution

Misni Harjo Suwito; Shinchi Matsumoto; Junpei Kawamoto; Dieter Gollmann; Kouichi Sakurai

doi:10.1007/978-981-10-0557-2_69

An analysis of IT assessment security maturity in higher education institution

Misni Harjo Suwito, Shinchi Matsumoto, Junpei Kawamoto, Dieter Gollmann, Kouichi Sakurai

Mathematical Informatics

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

4 Citations (Scopus)

Abstract

The information technology (IT) has been applied widely in Indonesia Higher Education Institution for various services. Many organizations responsible for managing the IT infrastructure, however, rarely have a framework for assessing the security maturity level of their information management. The implementation of a framework is one of solutions, but has not been yet maximized. Therefore we suggest to combine several frameworks in hope that they can be complementary. The combination of different frameworks will be more effective to monitoring the security maturity level by using an assessment security maturity management. This assessment security maturity management is a combination of framework control objective from IT Governance COBIT® 4.1 (Control Objectives for Information and related Technology) with Management Service in ITIL v3 (Information Technology Infrastructure Library) and ISO/IEC 27001. Since assessment of security maturity management is measured using COBIT® 4.1 assessment framework, and before it was adjusted with the ISO 27001 framework applied maximal. This paper present the results of assessment maturity security management, mapping of combination framework providing an indicator of security maturity level at one of university in Jakarta. A case study conducted shows that combination of some frameworks to support assessment of security maturity management level becomes more effective and efficient.

Original language	English
Title of host publication	Information Science and Applications, ICISA 2016
Editors	Kuinam J. Kim, Nikolai Joukov
Publisher	Springer Verlag
Pages	701-713
Number of pages	13
ISBN (Print)	9789811005565
DOIs	https://doi.org/10.1007/978-981-10-0557-2_69
Publication status	Published - 2016
Event	International Conference on Information Science and Applications, ICISA 2016 - Minh City, Viet Nam Duration: Feb 15 2016 → Feb 18 2016

Publication series

Name	Lecture Notes in Electrical Engineering
Volume	376
ISSN (Print)	1876-1100
ISSN (Electronic)	1876-1119

Other

Other	International Conference on Information Science and Applications, ICISA 2016
Country	Viet Nam
City	Minh City
Period	2/15/16 → 2/18/16

All Science Journal Classification (ASJC) codes

Industrial and Manufacturing Engineering

Access to Document

10.1007/978-981-10-0557-2_69

Fingerprint Dive into the research topics of 'An analysis of IT assessment security maturity in higher education institution'. Together they form a unique fingerprint.

Cite this

Suwito, M. H., Matsumoto, S., Kawamoto, J., Gollmann, D., & Sakurai, K. (2016). An analysis of IT assessment security maturity in higher education institution. In K. J. Kim, & N. Joukov (Eds.), Information Science and Applications, ICISA 2016 (pp. 701-713). (Lecture Notes in Electrical Engineering; Vol. 376). Springer Verlag. https://doi.org/10.1007/978-981-10-0557-2_69

An analysis of IT assessment security maturity in higher education institution. / Suwito, Misni Harjo; Matsumoto, Shinchi; Kawamoto, Junpei; Gollmann, Dieter; Sakurai, Kouichi.

Information Science and Applications, ICISA 2016. ed. / Kuinam J. Kim; Nikolai Joukov. Springer Verlag, 2016. p. 701-713 (Lecture Notes in Electrical Engineering; Vol. 376).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Suwito, MH, Matsumoto, S, Kawamoto, J, Gollmann, D & Sakurai, K 2016, An analysis of IT assessment security maturity in higher education institution. in KJ Kim & N Joukov (eds), Information Science and Applications, ICISA 2016. Lecture Notes in Electrical Engineering, vol. 376, Springer Verlag, pp. 701-713, International Conference on Information Science and Applications, ICISA 2016, Minh City, Viet Nam, 2/15/16. https://doi.org/10.1007/978-981-10-0557-2_69

@inproceedings{a37dfc8ca334493ab9808ecd3d05430e,

title = "An analysis of IT assessment security maturity in higher education institution",

abstract = "The information technology (IT) has been applied widely in Indonesia Higher Education Institution for various services. Many organizations responsible for managing the IT infrastructure, however, rarely have a framework for assessing the security maturity level of their information management. The implementation of a framework is one of solutions, but has not been yet maximized. Therefore we suggest to combine several frameworks in hope that they can be complementary. The combination of different frameworks will be more effective to monitoring the security maturity level by using an assessment security maturity management. This assessment security maturity management is a combination of framework control objective from IT Governance COBIT{\textregistered} 4.1 (Control Objectives for Information and related Technology) with Management Service in ITIL v3 (Information Technology Infrastructure Library) and ISO/IEC 27001. Since assessment of security maturity management is measured using COBIT{\textregistered} 4.1 assessment framework, and before it was adjusted with the ISO 27001 framework applied maximal. This paper present the results of assessment maturity security management, mapping of combination framework providing an indicator of security maturity level at one of university in Jakarta. A case study conducted shows that combination of some frameworks to support assessment of security maturity management level becomes more effective and efficient.",

author = "Suwito, {Misni Harjo} and Shinchi Matsumoto and Junpei Kawamoto and Dieter Gollmann and Kouichi Sakurai",

year = "2016",

doi = "10.1007/978-981-10-0557-2_69",

language = "English",

isbn = "9789811005565",

series = "Lecture Notes in Electrical Engineering",

publisher = "Springer Verlag",

pages = "701--713",

editor = "Kim, {Kuinam J.} and Nikolai Joukov",

booktitle = "Information Science and Applications, ICISA 2016",

address = "Germany",

note = "International Conference on Information Science and Applications, ICISA 2016 ; Conference date: 15-02-2016 Through 18-02-2016",

}

TY - GEN

T1 - An analysis of IT assessment security maturity in higher education institution

AU - Suwito, Misni Harjo

AU - Matsumoto, Shinchi

AU - Kawamoto, Junpei

AU - Gollmann, Dieter

AU - Sakurai, Kouichi

PY - 2016

Y1 - 2016

N2 - The information technology (IT) has been applied widely in Indonesia Higher Education Institution for various services. Many organizations responsible for managing the IT infrastructure, however, rarely have a framework for assessing the security maturity level of their information management. The implementation of a framework is one of solutions, but has not been yet maximized. Therefore we suggest to combine several frameworks in hope that they can be complementary. The combination of different frameworks will be more effective to monitoring the security maturity level by using an assessment security maturity management. This assessment security maturity management is a combination of framework control objective from IT Governance COBIT® 4.1 (Control Objectives for Information and related Technology) with Management Service in ITIL v3 (Information Technology Infrastructure Library) and ISO/IEC 27001. Since assessment of security maturity management is measured using COBIT® 4.1 assessment framework, and before it was adjusted with the ISO 27001 framework applied maximal. This paper present the results of assessment maturity security management, mapping of combination framework providing an indicator of security maturity level at one of university in Jakarta. A case study conducted shows that combination of some frameworks to support assessment of security maturity management level becomes more effective and efficient.

AB - The information technology (IT) has been applied widely in Indonesia Higher Education Institution for various services. Many organizations responsible for managing the IT infrastructure, however, rarely have a framework for assessing the security maturity level of their information management. The implementation of a framework is one of solutions, but has not been yet maximized. Therefore we suggest to combine several frameworks in hope that they can be complementary. The combination of different frameworks will be more effective to monitoring the security maturity level by using an assessment security maturity management. This assessment security maturity management is a combination of framework control objective from IT Governance COBIT® 4.1 (Control Objectives for Information and related Technology) with Management Service in ITIL v3 (Information Technology Infrastructure Library) and ISO/IEC 27001. Since assessment of security maturity management is measured using COBIT® 4.1 assessment framework, and before it was adjusted with the ISO 27001 framework applied maximal. This paper present the results of assessment maturity security management, mapping of combination framework providing an indicator of security maturity level at one of university in Jakarta. A case study conducted shows that combination of some frameworks to support assessment of security maturity management level becomes more effective and efficient.

UR - http://www.scopus.com/inward/record.url?scp=84959145980&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84959145980&partnerID=8YFLogxK

U2 - 10.1007/978-981-10-0557-2_69

DO - 10.1007/978-981-10-0557-2_69

M3 - Conference contribution

AN - SCOPUS:84959145980

SN - 9789811005565

T3 - Lecture Notes in Electrical Engineering

SP - 701

EP - 713

BT - Information Science and Applications, ICISA 2016

A2 - Kim, Kuinam J.

A2 - Joukov, Nikolai

PB - Springer Verlag

T2 - International Conference on Information Science and Applications, ICISA 2016

Y2 - 15 February 2016 through 18 February 2016

ER -