Risk Analysis of Using the ESPK Program PT Konimex Sukoharjo Using the Octave Allegro Method Implementation of Risk Management in ESPK Program Calibration: Quality Improvement in the Pharmaceutical Industry

Article Sidebar

PDF (Bahasa Indonesia)
Published: Dec 30, 2024
DOI: https://doi.org/10.62527/jitsi.5.4.295
Keywords:
risk management, octave allegro, critical information assets, risk analysis

Main Article Content

Yohanes Marcellino Santoso
Universitas Kristen Satya Wacana
Ariya Dwika Cahyono
Universitas Kristen Satya Wacana

Abstract

This study analyzes the risks associated with the ESPK (Electronic Calibration Request) Program at PT Konimex Sukoharjo using the Octave Allegro method. The ESPK program is utilized for calibration processes, and the research aims to determine whether the program poses potential risks to the company. The Octave Allegro method is used to evaluate threats and information security risks, enabling the organization to make decisions based on risks to the confidentiality, integrity, and availability of critical information assets. Data obtained indicate a Relative Risk Score of 28, meaning the risks can be mitigated or postponed. The findings involve users of the ESPK program, such as calibration admins, validation officers, calibration technicians, information system managers, and the owners of calibrated equipment. Key risks identified include data input errors, server downtime or maintenance during working hours, and incomplete program features. All these risks can either be mitigated or postponed. In conclusion, PT Konimex has not previously conducted a risk analysis on the ESPK program, and the Octave Allegro method identifies threats and risks for better protection of information assets.

Article Details

How to Cite
Santoso, Y. M., & Dwika Cahyono, A. (2024). Risk Analysis of Using the ESPK Program PT Konimex Sukoharjo Using the Octave Allegro Method: Implementation of Risk Management in ESPK Program Calibration: Quality Improvement in the Pharmaceutical Industry. JITSI : Jurnal Ilmiah Teknologi Sistem Informasi, 5(4), 153 - 160. https://doi.org/10.62527/jitsi.5.4.295
Issue
Vol. 5 No. 4 (2024)
Section
Articles
Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

References

[1] R. Ramadhintia and R. Bisma2, “Perencanaan Mitigasi Risiko Menggunakan Metode OCTAVE Allegro pada SMA Semen Gresik,” J. Emerg. Inf. Syst. Bus. Intell., vol. 2, no. 2, pp. 17–23, 2021, [Online]. Available: https://ejournal.unesa.ac.id/index.php/JEISBI/article/view/39087%0Ahttps://ejournal.unesa.ac.id
[2] V. P. Mazareanu, “RISK MANAGEMENT AND ANALYSIS: RISK ASSESSMENT (QUALITATIVE AND QUANTITATIVE),” Risk Assess. Anal. Methods Qual. Quant., 2010, [Online]. Available: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=1549186
[3] A. Zulfia, E. L. Ruskan, and P. Putra, “Penilaian Risiko Aset Informasi dengan Metode OCTAVE Allegro: Studi Kasus ICT Fakultas Ilmu Komputer Universitas Sriwijaya,” JOINS (Journal Inf. Syst., vol. 6, no. 1, pp. 40–47, 2021, doi: 10.33633/joins.v6i1.4088.
[4] N. Budarsa, “Analisis Risiko Keamanan Informasi Menggunakan Metode Octave Allegro dan Analytical Hirarchy Process pada Data Center Pemerintah Kabupaten Buleleng,” J. Ilmu Komput. Indones., vol. 7, no. 1, pp. 13–15, 2022.
[5] N. Matondang, I. N. Isnainiyah, and A. Muliawatic, “Analisis Manajemen Risiko Keamanan Data Sistem Informasi (Studi Kasus: RSUD XYZ),” J. RESTI (Rekayasa Sist. dan Teknol. Informasi), vol. 2, no. 1, pp. 282–287, 2018, doi: 10.29207/resti.v2i1.96.
[6] Haeruddin, “Pemetaan Information Asset Profile Dalam Penerapan Manajemen Risiko Sistem Informasi Menggunakan Metode Octave Allegro,” JITE (Journal Informatics Telecommun. Eng., vol. 3, no. 1, pp. 67–75, 2019.
[7] H. Ikhsan and N. Jarti, “Analisis Risiko Keamanan Teknologi Informasi Menggunakan Octave Allegro,” JR J. RESPONSIVE Tek. Inform., vol. 2, no. 1, pp. 31–41, 2018, doi: 10.36352/jr.v2i1.127.
[8] Hidra Amnur, D. Indah Syafira, and Yulherniwati, “Sistem Pendukung Keputusan Penerimaan PKH Menggunakan Metode AHP-ARAS”, jitsi, vol. 4, no. 4, pp. 180 - 188, Dec. 2023.
[9] E. Anggraini and I. Riadi, “Analysis of Risk Assessment on Electronic Services using OCTAVE Allegro Framework,” Int. J. Comput. Appl., vol. 183, no. 5, pp. 26–32, 2021, doi: 10.5120/ijca2021921273.
[10] N. L. Kuntari, Y. H. Chrisnanto, and A. I. Hadiana, “Manajemen Risiko Sistem Informasi di Universitas Jenderal Achmad Yani Menggunakan Metoda Octave Allegro,” Semin. Nas. Teknol. Inf. Univ. Ibn Khaldun Bogor, pp. 552–559, 2018, [Online]. Available: http://prosiding.uika-bogor.ac.id/index.php/semnati/article/view/106
[11] P. Ramjanati, F. K. Wijaya, and M. S. Muarie, “Penilaian Risiko Keamanan Informasi Menggunakan Octave Allegro: Studi Kasus pada Perguruan Tinggi,” JUSIFO (Jurnal Sist. Informasi), vol. 7, no. 1, pp. 10–20, 2021, doi: 10.19109/jusifo.v7i1.5870.
[12] S. Alfarisi and N. Surantha, “Risk assessment in fleet management system using OCTAVE allegro,” Bull. Electr. Eng. Informatics, vol. 11, no. 1, pp. 530–540, 2022, doi: 10.11591/eei.v11i1.3241.
[13] U. Aryanti, M. T. Anwar, and T. Rahmawati, “Information Security Risk Management Using Octave Allegro Method At University,” Int. J. Ethno-Sciences Educ. Res., vol. 3, no. 4, pp. 137–145, 2023, doi: 10.46336/ijeer.v3i4.506