Measuring the implementation of IT risk analysis in commercial bank based on best practice (a case study)

  • Authors:

  • Dewi Puspasari;M. Kasfu;M. Sattar;Rein Nusa

  • Affiliations:

  • IT Governance Laboratory, University of Indonesia, Depok, Jakarta, Indonesia;IT Governance Laboratory, University of Indonesia, Depok, Jakarta, Indonesia;IT Governance Laboratory, University of Indonesia, Depok, Jakarta, Indonesia;IT Governance Laboratory, University of Indonesia, Depok, Jakarta, Indonesia

  • Venue:
  • CIMMACS'11/ISP'11 Proceedings of the 10th WSEAS international conference on Computational Intelligence, Man-Machine Systems and Cybernetics, and proceedings of the 10th WSEAS international conference on Information Security and Privacy
  • Year:
  • 2011

Quantified Score

Hi-index 0.00

Visualization

Abstract

Risks faced by a bank increases with increasing number of users of electronic banking services. The threats not only bank robberies physically, but also the crime through a network of globally connected computer. Therefore, information technology risk management has become imperative for banks in Indonesia with the Regulation from Bank of Indonesia is increasingly tight. It is fully realized by the XYZ Bank that has started implementing IT risk management. However, because of limited time when they arranged an internal regulation of IT risk management, they have not yet do a thorough evaluation of their risk analysis methods compare with the existing best practices, such as IT Risk. In this study we evaluated the IT risk analysis has been done XYZ Bank. Though their time is limited and their personnel in the field of IT Risk is also not a lot, they have met almost all the essential of best practices, which have been tailored to their business needs.