Analisa Manajemen Risiko Pada Perusahaan Real Estate X

Anthony Loana Weol(1*), Adi Wibowo(2), Lily Puspa Dewi(3),

(1) Program Studi Teknik Informatika
(2) Program Studi Teknik Informatika
(3) Program Studi Teknik Informatika
(*) Corresponding Author


Real Estate company X has the IT division that provides support and services to another divisions which became a customer for the IT division. IT division provides services such as procurement of software, hardware assembly, and service divisions helpdesc for the needy. The problems that have occurred on the company network is lost, which caused the saturation point in the cable resulting data is entered into a computer can not be transferred to the server, the server is full, because any existing data within the company will be put into memory on the server, and often memory capacity in the server is no longer enough to accommodate the existing data, and the damage - hardware damage caused by the negligence of the user. That requires a risk analysis of quality management and risk management to cope with risks that exist.

In this thesis, risk assessments of the quality management and risk management in IT services was carried out. The author uses several sources to help understand and assess the factors - existing risk factors, namely COBIT 4.1, ISO 31000, and Risk Rating Metodhology by OWASP. Based on research and interviews conducted, it was found several risk factors such as lack of Quality Management System that is used to guide the IT division, the absence of a structured risk management at the company, and the absence of criteria for determining the likelihood and impact for risks that were found.

Responses should be done by the company is making a Quality Management System that can be used to provide guidance and guidance for IT divisions to carry out the duties and obligations, and implement a risk management used to identify, analyze, and identify ways how to prevent and avoid risks occurs.


IT Risk Analysis, Risk Assessment, COBIT, Qualitative Methods

Full Text:



Bureau of Indian Standard. 2011. IS/ISO 31000(2009): Risk Management. India : Manak Bhavan

Chrisdiyanto, I. 2013. IT Risk Assessment di Perpustakaan Universitas Kristen Petra. Surabaya: Universitas Kristen Petra.

International Organization for Standardization.2008. Quality Management System – Requirements(ISO 9001). USA: ISO.

IT Governance Institute. 2007. COBIT 4.1. USA: ISACA.

National Institute of Standards and Technology. 2002. Computer Security(NIST 800-30). USA: NIST.

The Institute of internal Auditors. 2005. Global Technology Audit Guide. USA : The IIA

The OWASP Risk Rating Methodology. 2012. URI=


  • There are currently no refbacks.

Jurnal telah terindeks oleh :