PERANCANGAN BUSINESS CONTINUITY PLAN BERBASIS RISIKO PADA RSUD ARIFIN ACHMAD PEKANBARU
Abstract
This study aims to provide guidance on the preparation of a Business Continuity Plan (BCP) document framework, which is tailored specifically to the needs and conditions of the company regarding business sustainability. The preparation of the framework is the result of the formulation between the needs and conditions of the company and the best practice framework of ISO 22301: 2012, as well as other related research. This will provide the results of a framework that is appropriate and specific to the conditions and needs of the company.The case study in this study was Arifin Achmad Hospital (Regional General Hospital), Pekanbaru. To improve customer service, this company uses information technology as a supporting resource for its daily operations. So that BCP will be a solution to help companies overcome disruptions and threats that can disrupt the performance of the company's information technology.This research was conducted with ISO 27001:2012 risk analysis method and FMEA method with ISO 31000: 2009 risk management stages combined with an analysis of the risk impacts of ISO 22317: 2015 and the ISO 22301: 2012 BCMS Framework. The results of the framework willbe verified and validated through confirmation and validation on the company. This research shows that BCP in each company is unique and different
Downloads
References
A.Killdow, B. 2011. Business Continuity Basic. Washington: American Management Association.
Angela Devlen. 2009. How to build a comprehensive business continuity programme for ahealthcare organisation Journal of business continuity & emergency planning. Vol.4. No 1. Hal. 47-61.
Giovanny. 2015. Kerangka Kerja Business Continuity Plan (BCP) untuk Teknologi Informasi Perusahaan Studi Kasus: PDAM Kota Surabaya.
International Organization for Standardization. 2009. ISO 31000: 2018: Risk Management. ISO.
International Organization for Standardization. 2012. ISO 22301: 2012: Societal SecurityBusinessContinuity Management Systems-Requirements. ISO.
International Organization for Standardization. 2012. ISO 22317: 2012: Societal Security- Business Conutinuity Management Systems-Guidelines for Business Impact Analysis. ISO.
International Organization for Standardization. 2012. ISO 27001: 2013: Information Technology- Security Techniques- Information Security Management Systems- Requirements. ISO.
International Organization for Standardization. 2012. ISO 31010: 2009: Risk Management – Risk Assessment Techniques. ISO.
Jacques Botha dan Rossouw Von Solms. 2004. A cyclic approach to business continuity planning. Information Management & Computer Security, Vol 12 No.4. Hal. 328-337.
Jesada G. 2011.Disaster in Company. ISACA.
Jesada Gruman. 2011. Disaster in company. ISACA.
Lingeswara,R. 2012. Key Issues, Challenge and Resolution in Implementing Business Continuity Projects. ISACA.
Rhianon. 2013. Business Continuity Plan : Why Water and Wastewater Utilities Should Prepare. International Houirnal of Disaster Recovery and Business Continuity.
SA Torabi, H Rezaei Sou , dan Navid Sahebjamnia. 2014. A new framework for business impact analysis in business continuity management (with a case study) Safety Science, Hal. 309-323.
Susan Snedaker. 2013. Business continuity and disaster recovery planning for IT professionals. Newnes.
Uher. 2010. How to Risk Management .USA.Elisther.
William,H. 2011. A Study of Corporate Risk.
Xu. 2011. Improve Risk Management Systems. ISACA
Copyright Notice
An author who publishes in the Journal of Software Engineering and Information System (SEIS) agrees to the following terms:
- Author retains the copyright and grants the journal the right of first publication of the work simultaneously licensed under the Creative Commons Attribution-ShareAlike 4.0 License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal
- Author is able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book) with the acknowledgement of its initial publication in this journal.
- Author is permitted and encouraged to post his/her work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of the published work (See The Effect of Open Access).
Read more about the Creative Commons Attribution-ShareAlike 4.0 Licence here: https://creativecommons.org/licenses/by-sa/4.0/.