Risk Management In Sumedang Regional Library Information Systems Using Octave-S Method

Abstract

Information technology is developing more rapidly, it can be seen from individuals who can easily access information without space and time limits. In the process of facilitating library services, the Sumedang Regional Library launched a website-based information system called the Digital Library. Web technology makes it easy to access information quickly and easily provided by websites and digital libraries. In addition to the benefits of speed and ease of access, web technology is vulnerable to risk. The problem that occurs in the Sumedang Regional Library is that the risk assessment has not been held so that no known risk might occur. Based on the existing problems, a study entitled Risk Management Information System of the Sumedang Regional Library Using OCTAVE-S Method. The purpose of this study is to identify risks, information systems management strategies, and risk management policies. The benefits of this study can also help the Sumedang Regional Library in overcoming the risks that may occur and researchers can find out the process of the stages of risk management, especially using the OCTAVE-S method. The final result of the risk management analysis is that the Sumedang Regional Library Information System is at the Green level because 32 questionnaire statements have been declared valid, the results are in the form of recommendations regarding the steps that need to be taken to protect the information system and its assets. So, the conclusion can improve the security of information systems and networks in order to reduce the risks that may occur in the Sumedang Regional Library Information System. Although in its activities there are still things that need to be improved and implemented as well as documenting network management system procedures and policies, authorization and authorization, vulnerability management, as well as encryption and contingency planning / disaster recovery.