Abstract
One of control domain of Cobit describes information security lies in Deliver and Support (DS) on DS5 Ensure Systems Security. This domain describes what things should be done by an organization to preserve and maintain the integrity of the information assets of IT where this all requires a security management process. One of the process is to perform security monitoring by conducting periodic vulnerability assessment to identify weaknesses. Because Cobit is not explained technically so it needs a method to utilizes data that has been standardized. One of the standardized database for vulnerability is CVE (Common Vulnerabilites and Exposures).This study aims to assess current condition of Data Center on Department of Transportation, Communication and Information Technology at Sleman Regency and assess the maturity level of security as well as providing solutions in particular on IT security. Next goal is to perform vulnerability assessment to find out which are the parts of the data center that may be vulnerable. Knowing weaknesses can help evaluate and provide solutions for better future. Result from this research is to create tool for vulnerability assessment and tool to calculate maturity model.
Highlights
Remote security hole take place in the server where management authority not from Departemen of Transportation, Communication and Information Technology but the server itself lies on Data Center at Sleman Regency
This paper describes how to assessing the data center using two methods
The results of the model calculation of maturity levels reached by the Department of Transportation, Communication and Information Technology is a level 2 or Repeatable for current conditions
Summary
Department of Transportation, Communication and Information Technology at Sleman Regency is one of the agencies that have the function of providing construction administration, development and management of communications network infrastructure. The agency has responsibility for managing the communications network infrastructure. In the development the infrastructure there are several incidents that have occurred. Several subdomain have been defaced by cracker. Distributed Denial Of Service (DDOS) attacking VoIP server. Remote security hole take place in the server where management authority not from Departemen of Transportation, Communication and Information Technology but the server itself lies on Data Center at Sleman Regency.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
