Catatan Harian Muh Sirojul Munir: Ilmu Prakom

Training IT Audit

Training IT Masterplan
Training CISA
Training CISSP
Training CISM
Training CGEIT
Training CRISC
Training Penetration Testing
Training Cobit 5
Training CISCO
Training IT Disaster Recovery
Training BCM Awareness
Training TOGAF

https://itgid.org/it-audit/

Standarisasi, Kerangka Kerja

TOGAF

COBIT 5

ITIL v3 (2011?)

COSO ERM

Rist ITTM (2009)

Management of Risk (M_o_R)

OCTAVE

ISO 15504 Software Process Improvement and Capability Determination (SPICE)

ISO 20000:2011 Information technology — Service management

ISO/IEC 27000:2009 – ISMS (information security management system) Overview and Vocabulary

ISO/IEC 27001:2005 – ISMS Requirements

ISO/IEC 27002:2005 – Code of Practice for ISMS

ISO/IEC 27003:2010 – ISMS Implementation Guidance

ISO/IEC 27004:2009 – ISMS Measurements

ISO/IEC 27005:2008 – Information Security Risk Management

ISO/IEC 27006:2007 – ISMS Certification Body Requirements

ISO/IEC 27007 – Guidelines for ISMS Auditing

ISO 31000:2009 Risk Management

ISO/IEC 38500:2008 Corporate Governance of Information Technology

Standarisasi terkait IT Enterprise

COBIT 5 (Control Objectives for Information and related Technology)

TOGAF (The Open Group Architecture Framework)

Zachman

CEAF (Collaborative Enterprise Architecture Framework)

FEA (Federal Enterprise Architecture) Framework

ISO/IEC 38500:2008 Corporate Governance of Information Technology

Standarisasi terkait Manajemen Layanan TI

COBIT 5 (Control Objectives for Information and related Technology)

ITIL v3 2011? (Information Technology Infrastructure Library)

ISO 20000:2011 Information technology — Service management

Software Maintenance Maturity Model

PRM-IT IBM's Process Reference Model for IT

Application Services Library (ASL)

Business Information Services Library (BISL)

Microsoft Operations Framework (MOF)

eSourcing Capability Model for Service Providers (eSCM-SP)

Standarisasi terkait Audit IT

ISO/IEC 27000:2009 – ISMS (information security management system) Overview and Vocabulary

ISO/IEC 27001:2005 – ISMS Requirements

ISO/IEC 27002:2005 – Code of Practice for ISMS

ISO/IEC 27003:2010 – ISMS Implementation Guidance

ISO/IEC 27004:2009 – ISMS Measurements

ISO/IEC 27005:2008 – Information Security Risk Management

ISO/IEC 27006:2007 – ISMS Certification Body Requirements

ISO/IEC 27007 – Guidelines for ISMS Auditing

Standarisasi terkait Manajemen Risiko IT

COSO ERM

Rist ITTM (2009)

Management of Risk (M_o_R)

OCTAVE

ISO 31000:2009 Risk Management

Peraturan :

Permen BUMN No. 02 Tahun 2013 tentang Panduan Penyusunan Pengelolaan Teknologi Informasi Badan Usaha Milik Negara

Permen Kominfo No.41 Tahun 2007 tentang Panduan Umum Tata Kelola Teknologi Informasi dan Komunikasi Nasional

Surat Edaran Kominfo No.05/SE/M.Kominfo/07/2011 tentang Penerapan Tata Kelola Keamanan Informasi Bagi Penyelenggara Pelayanan Publik

Permen Kominfo No. 4 Tahun 2016 Tentang Sistem Manajemen Pengamanan Informasi

Peraturan BSSN No. 4 Tahun 2021 tentang Pedoman Manajemen Keamanan Informasi Sistem Pemerintahan Berbasis Elektronik dan Standar Teknis dan Prosedur Keamanan Sistem Pemerintahan Berbasis Elektronik

Buku:

MLTI 1- Tata Kelola TI vs Manajemen Layanan TI

https://youtu.be/ufu_u-FdIZM

MLTI 2 - Sekilas ITIL

https://youtu.be/h615-3A8UQk

MLTI 3 - Konsep Dasar Manajemen Layanan TI (Part 1)

https://youtu.be/sLh2tI_jAps

MLTI 4 - Konsep Dasar Manajemen Layanan TI (Part 2):

https://youtu.be/I7Er_0jgP8o

MLTI 5 - Konsep Dasar Manajemen Layanan TI (Part 3):

https://youtu.be/ZnEJ-ZgzwGU

Rahmat Trialih, UB (r trialih)