INFORMATION SECURITY AWARENESS LEVEL MEASUREMENT USING MULTIPLE CRITERIA DECISION ANALYSIS (MCDA)
Abstract
This study discusses about information security awareness measurement of civil cervant. Assessment of information security awareness determined using Multi Criteria Decision Analysis (MCDA). MCDA method calculate the total value of some alternatives based on value and weight some criteria. The results showed that information security awareness’s level of civil servant in Government of Makassar is “avarage”. It means action probability required.
Keywords: Information Security Awareness (ISA), Multiple Criteria Desicion Analysis (MCDA), Governemnt staff
References
APCICT. (2009). Keamanan Jaringan dan Keamanan Informasi dan Privasi. Dalam APCICT, Akadei Esensi Teknologi Informasi dan Komunikasi untuk Pimpinan Pemerintah. Incheon: Scandinavian Publishing Co., Ltd.
Belton, V., & Stewart, T. J. (2002). Multiple Criteria Decision Analysis: An Integrated Approach. Kluwer Academic Publishers.
Chan, H., & Mubarak, S. (2011). Information Security Awareness Level of TAFE South Australia Employees.
Direktorat Jenderal Aptika. (2012). Indeks KAMI Versi 2.2. Kementerian Komunikasi dan Informatika.
Europe, I. (2010). Information Security Breaches Survey 2010 (ISBS-2010): Technical Report. PriceWaterHouseCoopers.
Global, S. (2008). Security Awareness: Measuring Attitudes, Knowledge and Behaviour. SAI Global.
Jumiati, Indarjani, S., & Destrya, D. (2011). Pembinaan Kesadaran Keamanan Informasi di Lingkungan Sekolah Tinggi Sandi Negara Berdasarkan Standar National Institute of Standard and Telecommunication (NIST SP 800-100). e-Indonesia Initiative, 394-402.
Kruger, H. A., Flowerday, S., Drevin, L., & Steyn, T. (2011). An Assessment of the role of cultural factors in information security awareness. ISSA.
Kruger, H., & Kerney, W. (2005). Dipetik Februari 2013, dari icsa.cs.up.ac.za: icsa.cs.up.ac.za/issa/2005/Proceedings/Full/018_A rticle.pdf
Krugger, H. A., & Kearney, W. D. (2006). A Prototype for assesing information security awareness. Computer & Securitiy, 289 - 296.
Mitnick, K. D., & Simon, W. L. (2002). The Art of Deception. Wiley Publishing, Inc.
Papagiannakis, K., Pijl, G. v., & Visser, A. d. (2011). An Overview of the current level of Security Awareness in Greek Companies. Erasmus University of Rottersam.
Priyandoyo, A. (2006). Vulnerability Assesment untuk Meningkatkan Kesadaran Pentingnya Keamanan Informasi. Jurnal Sistem Informasi.
Saaty, T. L. (2008). Decision Making with the analytic hierarchy process. Int. J. Services Sciences, I(1), 83 - 95.
Schlienger, T., & Teufel, S. (2003). Information Security Culture - From Analysis to Change. South African Computer Journal, 638-646.
Warlina, L., Rusdiyanto, E., Sumartono, & Sawir, I. (2011, September). Dipetik 10 25, 2013, dari http://www.pustaka.ut.ac.id/: http://www.pustaka.ut.ac.id/dev25/pdfprosiding2 /fmipa201109.pdf
Wolf, M., Haworth, D., & Pietron, L. (2011). Measuring An Information Security Awareness Program. Review of Business Information Systems, 9 – 22.
