Hasil Pencarian  ::  Simpan CSV :: Kembali

Abstrak :
Serangan siber yang meningkat dan bervariasi membutuhkan sebuah model yang mampu meningkatkan ketahanan dan kesadaran akan ancaman serangan bencana siber. Penelitian ini mengembangkan model cyberdisaster situation awareness yang mampu menggambarkan dua tahap proses yaitu penilaian tingkat risiko ancaman bencana siber dan kerangka pengujian kerentanan keamanan siber melalui metode audit, tabletop exercise dan penetration testing. Penelitian ini menggunakan metode risiko formal fuzzy FMEA dan temporal risk. Hasil penelitian pertama menunjukan bahwa model cyberdisaster situation awareness mampu meningkatkan ketahanan keamanan siber. Model ini menggambarkan bahwa dengan metode fuzzy FMEA didapatkan nilai tingkat risiko bencana tertinggi yaitu ancaman serangan ransomware dan gempa bumi. Dari dua nilai risiko yang tertinggi tersebut dilakukan validasi faktor-faktor yang mempengaruhi tingkat kesadaran dalam menghadapi ancaman ransomware dan gempa bumi melalui survey 152 responden. Hasil survey menunjukan bahwa keputusan respon bencana siber dipengaruhi oleh faktor kapabilitas sistem (p < 0,05), faktor pengetahuan (p < 0,05), dan faktor kesadaran akan situasi bencana (p < 0,05). Pada penelitian kedua menunjukan bahwa kerangka pengujian kerentanan keamanan siber dengan pendekatan temporal risk dapat membantu meningkatkan ketahanan dan keamanan siber. Metode pengujian audit, tabletop exercise dan penetration testing akan menghasilkan dua klasifikasi risiko yaitu risiko yang dapat diterima (tolerable risk) dan risiko yang tidak dapat diterima (intolerable risk). Penelitian ini juga menggunakan aplikasi untuk membantu mengukur tingkat risiko keamanan siber berdasarkan Annex ISO 27001:2013. Hasil pengujian penilaian risiko dengan metode audit berdasarkan annex ISO 27001:2013 ditemukan bahwa tingkat risiko yang dapat diterima adalah akuisisi, pengembangan dan pemeliharaan sistem, dengan nilai indeks kinerja pengamanan sebesar 38.29%. Untuk hasil pengujian metode tabletop exercise dihasilkan bahwa tidak ditemukan tingkat risiko tinggi atau yang tidak dapat diterima, dengan nilai indeks kinerja pengamanan sebesar 75%. Hasil pengujian dengan metode penetration testing menunjukan bahwa risiko yang tidak dapat diterima adalah pengendalian akses dan pengamanan komunikasi, dengan nilai indeks pengendalian pengamanan sebesar 16.66%. Dari temuan kerentanan ini dilakukan tindakan perbaikan melalui aplikasi untuk meningkatkan ketahanan dan keamanan siber. Tindakan perbaikan ini menghasilkan kinerja pengamanan 100% memenuhi annex ISO 2700:2013. Kebaruan dari penelitian ini adalah konsep model kerangka cybersituation awareness yang mampu menilai risiko ancaman keamanan siber dan pengujian kerentanan pengendalian keamanan siber. ......Cyber attacks that are increasing and varied require a model that is able to increase resilience and awareness of the threat of cyber-disaster attacks. This study develops a cyberdisaster situation awareness model that is able to describe two stages of the process, namely the assessment of the level of cyber disaster threat risk and a cybersecurity vulnerability testing framework through audit methods, tabletop exercise and penetration testing. This study uses a formal risk method fuzzy FMEA and temporal risk. The results of the first study showed that the cyberdisaster situation awareness model was able to increase cyber security resilience. This model illustrates that with the fuzzy FMEA method, the highest level score of disaster risk is the threat of ransomware attacks and earthquakes. From the two highest risk values, validation of the factors that affect the level of awareness in dealing with the threat of ransomware and earthquakes was carried out through a survey of 152 respondents. The survey results show that cyber disaster response decisions are influenced by factors such as system capability (p < 0.05), knowledge factor (p < 0.05), and awareness of disaster situations (p < 0.05). The second research shows that a cybersecurity vulnerability testing framework with a temporal risk approach can help improve cyber resilience and security. The audit testing method, tabletop exercise and penetration testing will produce two risk classifications, namely tolerable risk and intolerable risk. This study also uses an application to help measure the level of cybersecurity risk based on Annex ISO 27001: 2013. The results of risk assessment with testing the audit method based on annex ISO 27001:2013 found that the acceptable level of risk is the acquisition, development and maintenance of the system, with a security performance index value of 38.29%. For the results of the tabletop exercise test method, it was found that there was no high or unacceptable risk level, with a security performance index value of 75%. And for the test results using the penetration testing method, it shows that the unacceptable risk is access control and communication security, with a security control index value of 16.66%. From the findings of these vulnerabilities, corrective actions are taken through applications to increase cyber resilience and security. These corrective actions result in 100% security performance meeting the annex ISO 27001:2013. The novelty of this research is the concept of a cybersituation awareness framework model that is able to assess cybersecurity threat risks and test cybersecurity control vulnerabilities.

Abstrak :
Marketing plays an important role in determining an enterprise’s success. Inappropriate marketing strategy can lead to various risks, especially for SMEs that have not prepared their risk management. This research aims to identify and specify marketing strategy priorities in the production of potato chips, and to decide anticipationary action in determining risk mitigation. The research is a case study of XYZ company. The method used for risk analysis was Fuzzy FMEA, and that used to specify the strategic priorities was ANP. The results indicate that the most potential risks in potato chip marketing are promotion risk, which is caused by inappropriate steps with regard to promotion targets, and the absence of a brand image. The primary strategy in market risk mitigation is to improve sub-strategy promotion, which increases the effectiveness of promotion facilities and infrastructure, complies with the development of information and communication media, and maintains service quality in the sub-criteria of building and maintaining good relations with customers.

Abstrak :
Lean merupakan metode untuk mengurangi aktivitas yang berupa pemborosan (waste) untuk meningkatkan efisiensi di lini manufaktur atau produksi. Namun metode lean tidak tertutup kemungkinan untuk diimplementasikan pada layanan kesehatan. Rumah Sakit Sentra Medika Cisalak merupakan Rumah Sakit Swasta tipe B yang berada di daerah depok, penelitian ini menganalisis alur pelayanan resep di Instalasi Farmasi Rawat Jalan BPJS sebagai data untuk perbaikan. Hasil penelitian memperlihatkan untuk obat racikan memiliki kegiatan non value added sebesar 22%, kegiatan value added sebesar 74%, kegiatan necessary non value added sebesar 4%, dan process cycle efficiency sebesar 74%. Sedangkan untuk obat non racikan kegiatan non value added sekitar 39% , value added sebesar 61% dan process cycle efficiency sebesar 61%. Data tersebut menunjukan terdapat proses non value added dan necessary non value added yang menyebabkan farmasi rawat jalan rumah sakit Sentra Medika Cisalak masih belum lean. Selanjutnya menggunakan fishbone analysis untuk mengetahui penyebab permasalahan dan membangun perbaikan berdasarkan hasil FMEA. Dari hasil penelitian diperoleh waste yang sering terjadi adalah waiting yang terjadi pada bagian pengambilan obat. Berdasarkan hasil FRPN pada Fuzzy FMEA yang tertinggi memiliki nilai 392 yaitu terdapat antrian untuk pengambilan dan peracikan obat maka prioritas perbaikan berdasarkan risiko tersebut. Perbaikan yang direkomendasikan adalah penambahan sumber daya manusia pada bagian pengambilan dan peracikan obat selain itu perbaikan juga dapat dilakukan dengan mengklasifikasikan dan mengalokasikan jenis obat berdasarkan alur kecepatan obat serta pelaksanaan 5S pada farmasi rawat jalan BPJS. Rekomendasi perbaikkan tersebut dapat meningkatkan process cycle efficieny untuk obat racikan sebesar 87% dan obat non racikan 82%.

---

Lean is a method to reduce activities that consist of waste to increase efficiency on the production line. Lean methods are not limited to being implemented in health services. Cisalak Sentra Medika Hospital is a type B Hospital located in the Depok; this study analyzes the flow in BPJS Outpatient Pharmacy Installation as data for improvement. For concoction medicine the results of the study involving non-value-added activities is 22%, value added activities is 74%, activities required added value added by 4%, and process cycle efficiency by 74%. As for non-concoction drugs, non-value-added activities are around 39%, value added is 61% and process cycle efficiency is 61%. The data shows that there is a value-added process and needs added value which causes the outpatient pharmacy of Medika Cisalak hospital is still not lean. Next use bone analysis to find out the cause and build improvements based on FMEA results. From the research results obtained waste that often occurs is waiting for what happens in the part of taking drugs. Based on the results of FRPN on Fuzzy FMEA which has the highest value of 392, namely the queue to take and compounding the drug, the priority of improvement is based on those needs. The recommended improvements are human resources in the collection and compounding of drugs, classifying and allocating types of drugs based on drug flow and implementation of 5S in BPJS outpatient pharmacy. The recommended improvement cycle can increase the process cycle for compound drugs by 87% and non-compound drugs by 82%.