MANAJEMEN RISIKO SISTEM INFORMASI MENGGUNAKAN METODE OCTAVE-S DI RUMAH SAKIT WISHNU HUSADA BANYUMAS

Information systems have risks, risks that arise will result in financial and non-financial losses to the hospital. This study aims to conduct a risk evaluation using the OCTAVE-S method at Wishnu Husada Banyumas Hospital. From the results of the evaluation will produce recommendations for a security protection strategy for the assets of Wishnu Husada Banyumas Hospital so that hospital management can improve its ability to carry out a strategy of protection of information assets. This research is a qualitative research using a case study approach. Data collection methods in this research are literature study and field study. The results of this study note that of the 15 security practices of the OCTAVE-S method there are 2 good-value security practices, 7 moderate-value security practices, while 6 security practices have little or less value. Risks that have occurred to critical assets such as application errors, network failures, virus infections, hardware that is damaged due to ignorance of the process of use and maintenance. With the findings obtained, it is hoped that the Wishnu Husada Banyumas Hospital can find out how much the impact of internal and external risks and threats both intentional and unintentional to information assets.