Institutional Repository UIN Sunan Kalijaga Yogyakarta: No conditions. Results ordered -Date Deposited. 2024-03-28T12:33:53ZEPrintshttp://digilib.uin-suka.ac.id/images/sitelogo.pnghttps://digilib.uin-suka.ac.id/2016-10-06T02:44:35Z2016-10-06T02:44:35Zhttp://digilib.uin-suka.ac.id/id/eprint/22269This item is in the repository with the URL: http://digilib.uin-suka.ac.id/id/eprint/222692016-10-06T02:44:35ZAUDIT SISTEM INFORMASI BARANG SITAAN DI RUMAH
PENYIMPANAN BENDA SITAAN MILIK NEGARA (RUPBASAN) BANTUL
MENGGUNAKAN STANDAR SNI-ISO 27001RUPBASAN or Storage Confiscated Object Belonging to the State is a place where
objects confiscated by the State for the purposes of judicial proceedings. Rupbasan is a place
where objects for the purposes of the examination of evidence in an investigation, prosecution
and examination before the court including looted goods declared by the judge's decision should
be kept. Rupbasan has the purpose of implementation of the management, storage, security and
maintenance Bashan and Baran in accordance with applicable regulations. Rupbasan as a
resource and information center in the management, storage, security and maintenance Basan
and Baran, to prove the security level of the management information system that is applied it is
necessary to audit the process.
This study uses an IT governance framework SNI-ISO 27001 that has been standardized
by the Indonesian government. IT governance framework SNI-ISO 27001 is used as a guideline
and guidance to measure the level of security management of Information Systems applied by a
company or organization. This study uses 6 process clauses of 11 clauses contained in SNI ISO
27001, namely, Clause of Security Policy (A5), Clause of Asset Management (A7), Clause of
Physical and Environment Security (A9), Clause of Operating System Security (A10), Clause of
access control (A11), and Clause of the acquisition of Information Systems Development and
Maintenance. Data analysis in this study refers to the maturity models.
The audit results of Information system security are at the level of security with a
maturity level of 1:53 (Repeatable but Intuitive). This shows that the security management has
been implemented but not yet documented in management procedures. Rupbasan has not held
formal training so there is a lack of understanding on the importance of management, but the
manager has had the initiative to perform maintenance and control of changes that affect the
system.NIM. 12651087 ERI KURNIAWAN