APPLICATION OF INFORMATION SYSTEMS RISK MANAGEMENT IN PTX

Nowadays, information systems have become a difficult part to separate in almost every business process in an institution or organization. Information becomes an important part of information systems that have to kept safe from harm because of threats leading to alteration, wrongful disclosure, non-availability, and loss. One of the companies that faced the challenge was PTX. PTX is a company engaged in the power plants sector which have the duty to provide electricity for the community. The aim of the research is to identify and analyze the possibility of security violations, realize the causes that make the system vulnerable and formulate mitigation strategies to control and minimize the risks. This research performs practical approach in real organization environment using eight steps activities from the OCTAVE Allegro framework. Using the OCTAVE Allegro method to carry out information system risk management at PTX, is resulting 10 (ten) critical information assets. Furthermore, Customer service are continued to be assessed. The study represents an information system risk management chronological approach for identifying the possibility of security violations and formulating mitigation strategies.