Pokok Topik Kursus

  • Topic 1 - General Information on MRTI

    Manajemen Resiko Teknologi Informasi

    Tujuan :
    Mahasiswa memiliki kemampuan mengelola resiko penggunaan TI

    Manfaat :
    Mahasiswa mampu meminimalisir terjadinya resiko terkait pengelolaan SI/TI dan mengelolanya

    Kompetensi :
    Kemampuan mengantisipasi dan merespon dampak penggunaan TI

    Media Belajar:

    • Software: Windows, Ms. Office
    • Hardware: Personal Computer, LCD Projector

    Jenis Assessment: 

    • Tes: Tertulis
    • Non Tes: diskusi, ujian lisan, tugas akhir

    Pokok Bahasan :

    Buku Acuan:

    Pustaka [Buku dan e-book] :

    1. Blokdijk, G., Engle, C. and Brewster, J., 2008. IT Risk Management Guide.
    2. Hopkin, Paul. Fundamentals of Risk Management: Understanding, evaluating and implementing effective risk management. Kopan Page: 2010.
    3. Kouns, Jake & Minoli; Daniel. Information Technology Risk Management in Enterprise Environments. Wiley: 2010
    4. Wheeler, E., 2011. Security Risk Mangement, Elsevier, Inc.

    Pustaka [Studi Kasus Industri] :

    1. Mikes, A., Rose, C.S, Sesia Jr., A., 2010. J.P. Morgan Private Bank: Risk Management during the Financial Crisis 2008-2009, Harvard Business School, November 12, 2010.
    2. Wah, F.L.P, Wong, G., 2004. Yu’s Tin Sing Enterprises: Proactive Risk and Crisis Management, Asia Case Research Centre, The University of Hongkong.

    Pustaka [Video] :

    1. “IT Governance, Risk and Compliance”, sumber: http://www.youtube.com/watch?v=l22kQquKXME
    2. “Analyst Take: IT Risk Management”, sumber: http://www.youtube.com/watch?v=oq6hfxzl6G0
    3. “IdeasLabs 2010 - Innovating with Risk and Uncertainty - Anil Gaba”, sumber: https://www.youtube.com/watch?v=qme5s3tpdcA

    Pustaka [Jurnal] :

    1. de Bakker, K., Boonstra, A., Wortmann, H., 2010. Does risk management contribute to IT project success? A meta-analysis of empirical evidence, International Journal of Project Management 28, pp. 493-503.
    2. Saleh, M.S., Alfantookh, A., 2011. A new comprehensive framework for enterprise information security risk management, Applied Computing and Informatics 9, pp. 107-118.
    3. Kumar, R.L., 2002. Managing risks in IT projects: an options perspective, Information & Management 40, pp. 63-74.
  • Topic 2 - Konsep Manajemen Resiko Teknologi Informasi

    Learning Objectives :

    • Students comprehend the concept of information technology risk management
    • Students comprehend the differences between risk and uncertainty, and types of risk
    • Students comprehend the example of IT-related risks and business impact

    The outline of this learning object will be divided into two main parts, namely 1) Introduction to IT Risk Management and 2) Risk Management and IT Context.

    Outline for Introduction to IT Risk Management:

    1. What is risk management ?
    2. Why managing risk is important?

    Outline for Risk Management and IT Context:

    1. The differences between risk and uncertainty
    2. Types of risk
    3. The concept of IS/IT 
    4. IT Trends
    5. IT Challenges
    6. Trends in business application
  • Topic 3 - Risk Vs. Uncertainty

    Course objectives:

    • Comprehend the difference between risk and uncertainty

    • Comprehend types of risk

    Course materials: please find in the attachment.

    Assignment 2: WorkGroup2

    For any business processes of IS/IT systems you already described in the 1st assignment, please find out:

    1. any dependency of the systems (e.g. dependency on technology, procedures, people, data, government policy, economic condition, weather, etc.). Mention clearly what the dependency is.
    2. Impacts caused by the failure of the systems. When the systems are failed, what are the impacts for organizations?
    3. Your proposed suggestion to offset the impacts. So, if you are part of developers of similar systems, what are suggestions you would like to recommend so that your systems still remains in good quality?

    Deadline: Thursday, 26 September 2013 at 18.00 WIB.

    # Really urge you to read "The Slides of Assignments" for further information. Download via the link below.

  • Topic 4 - Kaitan antara manajemen resiko dengan SDLC

    Learning Objective :

    • Student comprehend the Integration of risk management into Software Development Life Cycle (SDLC)

    Outline :

    • Phases in SDLC
    • Incorporating risk management in SDLC

    E-Materi :

  • Topic 5 - Kaitan antara Manajemen Resiko dengan Proteksi Informasi dan Manajemen SDM

    Learning Objectives:

    • Student comprehend the Integration of risk management into Information protection and HR management


    • Introduction to Security Risks
    • The Main Security Risks
    • Security Problems
    • Challenges/Problems/Protections
    • The components of risk identification in Information Protection

    E-Materi :

  • Topic 6 - Penilaian Resiko

    Learning Objectives:

    Students are able to perform risk assessment


    • Risk Likelihood
    • Impact
    • Risk Rating
    • Risk Priority
    • Risk Response


  • Mitigasi Resiko

    Learning Objectives:

    Students are able to identify strategies to mitigate IT related risks


    • Ethical decision making: Case 1
    • Applying the code: Case 1
    • Ethical decision making: Case 2
    • Applying the code: Case 2
    • Ethical decision making: Case 3
    • Applying the code: Case 3
    • Ethical decision making: Case 4
    • Applying the code: Case 4
    • Ethical decision making: Case 5
    • Applying the code: Case 5


  • Perencanaan Keberlangsung Bisnis (Business Continuity Plan)

    Learning Objective:

    Students are able to understand the concept of BCP


    • WHAT: BCP description
    • WHY: BCP is important
    • The link between BCP and DRP


  • Disaster Recovery Planning Concept

    Learning Objectives:

    • Students comprehend the concept of Disaster Recovery Planning
    • Students comprehend the application of Disaster Recovery Planning


    • Descriptions of Disaster Recover Planning
    • BCP VS DRP
    • Outline of DRP template