PENERAPAN FRAMEWORK ISO 31000 UNTUK PENGELOLAAN RISIKO TEKNOLOGI INFORMASI DI STIKOM UYELINDO KUPANG

Authors

  • Benyamin Valdano Saunopo STIKOM Uyelindo Kupang
  • Menhya Snae Sistem Informasi, STIKOM Uyelindo Kupang

DOI:

https://doi.org/10.55606/jupumi.v5i1.4658

Keywords:

ISO 31000, risk management, information technology risk, risk evaluation, risk governance.

Abstract

This study aims to evaluate the effectiveness of information technology risk management implementation at STIKOM Uyelindo Kupang based on the ISO 31000:2018 framework. The research focuses on four main variables: Risk Identification (X1), Risk Evaluation (X2), Risk Management (X3), and Information Technology Risk Governance (Y). A quantitative approach was applied, using a questionnaire distributed to 50 respondents. Descriptive analysis showed that Risk Identification and Risk Evaluation fall into the good category, while Risk Management was rated as Fair, and IT Risk Governance was categorized as Poor. Pearson correlation analysis revealed very weak and insignificant relationships between variables, indicating the lack of structural integration in the risk management process. These findings suggest that the application of ISO 31000 principles is still suboptimal and requires improvement across six core elements: Leadership and Commitment, Integration, Design, Implementation, Evaluation, and Improvement. A more comprehensive implementation of ISO 31000 is expected to enhance risk management capabilities that are measurable, structured, and sustainable within the institution.

References

Amelia, N. 2021. Evaluasi Manajemen Risiko Teknologi Informasi Menggunakan Framework COBIT 5 dan ISO 31000:2018 pada PT. Solusi Integrasi Teknologi. Jakarta (ID): Universitas Negeri Syarif Hidayatullah Jakarta. Tersedia: https://repository.uinjkt.ac.id/dspace/handle/123456789/8592

Guritno, D. A., & Tanuripri, R. M. 2024. Prinsip Dasar dan Implementasi Manajemen Risiko. [Buku]. Yogyakarta (ID): Gadjah Mada University Press. Tersedia: https://books.google.co.id/books?id=ghesE0AAOBl&pg=PA28&dq=ISO+31000:2018+MANAJEMEN+RISIKO&hl=id&newbks=1&newbks_redir=0&sa=X&ved=2ahUKEwi25CqiOz4AxUGzD9IHY1UM0Q6AF6BAgLEAM

Putra, L. E., & Fronita, A. 2022. Analisis Risiko Website Telkom Emas Data Valuasi Menggunakan ISO 31000. Jurnal Program Studi Teknik Industri, 10(2):175–183. DOI: https://doi.org/10.3337/profits.v10i2.47

Sitanggang, P. A., dan Sitanggang, F. A. 2022. Analisis Implementasi Manajemen Risiko Berdasarkan SNI ISO 31000:2018. Jurnal Ilmiah Ekonomi Dan Bisnis, 13(1):12. DOI: https://doi.org/10.33087/eksis.v13i1.293

Wijaya, V. P. P. dan Manuputty, D. A. 2022. Manajemen Risiko Teknologi Informasi Pada BTSI UKSW Menggunakan ISO 31000:2018. Jurnal Teknik Informatika Dan Sistem Informasi. 9(2):1295–1307. DOI: https://doi.org/10.35957/jatisi.v9i2.2087

Downloads

Published

2026-01-17

How to Cite

Saunopo, B. V., & Snae, M. (2026). PENERAPAN FRAMEWORK ISO 31000 UNTUK PENGELOLAAN RISIKO TEKNOLOGI INFORMASI DI STIKOM UYELINDO KUPANG. Jurnal Publikasi Manajemen Informatika, 5(1), 197–207. https://doi.org/10.55606/jupumi.v5i1.4658

Issue

Vol. 5 No. 1 (2026): JURNAL PUBLIKASI MANAJEMEN INFORMATIKA

Section

Articles

License

Copyright (c) 2026 Jurnal Publikasi Manajemen Informatika

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.