4. Service providers and vendors – breaks in the IT value chain
Today service providers and vendors play
significant roles in
the
delivery of
IT
projects and day-to-day running.
5. Applications
–
flaky systems
This
risk
class
deals
with
failures in
the
It
applications.
Aplicaions
are
typically
system
that
users
interact
with
and
in
most
organization
will
be
a
combinantion
of
package
software
and
costumized
software
that
will
to some
extent
be
integrated
together.
6. Infrastructure – shaky foundation
This risk class deals
with failure in the IT infrastructure.
Infrastructure
is the generic
name
for
the
various centralized and
distributed computer and
networkresources
upon which applications are hosted and run.
7. Strategic and emergent – disabled by IT
This risk class deals with the IT capability
letting down execution
of bussines
strategy.
Impact
are
not
immediate
but
will
be
significant
in the
bussines
planning
horizon and beyond.
2.5 Pengukuran
Risiko Teknologi Informasi
Berdasarkan
penelitian
yang
penulis
lakukan,
maka
ditemukan
beberapa
metode
pengukuran
risiko
teknologi
informasi
diantaranya,
yaitu:
metode
NIST ,
OCTAVE, FRAP, COSO dan CoBIT yang digunakan untuk perbandingan.
 |