ANALISIS MANAJEMEN RISIKO SISTEM INFORMASI PADA DINAS KOMUNIKASI DAN INFORMATIKA KABUPATENPURBALINGGA MENGGUNAKAN METODE ISO 31000

In many situations, risk can result in loss to the organization. Therefore, it is very important to pay attention and manage risk, one of which is using risk management. Given that risk management can be used to minimize existing risks, researchers use the standards used for guidance in implementing information system risk management, namely using ISO 31000 which will be applied at DINKOMINFO Purbalingga Regency. The ISO 31000 method has several processes in its implementation such as communication and consultation, setting context, risk assessment (risk identification, risk analysis, risk evaluation), risk treatment, monitoring and review, and conclusions and suggestions. From the results of the study, there are 26 possible risks, that there are 6 possible risks with a very high level (A1, A2, A8, A12, A14, A20), 2 possible risks with a high level (A5, A9), 9 possible risks with a high level medium (A3, A4, A6, A10, A16, A21, A23, A24, A25), and 9 possible low levels of risk (A7, A11, A13, A15, A17, A18, A19, A22, A26).