AUDIT KEAMANAN SISTEM INFORMASI PADA HOTEL JAVA HERITAGE PURWOKERTO MENGGUNAKAN FRAMEWORK ISO/IEC 27001 : 2013

At the Java Heritage Purwokerto hotel, there is an information system, namely pyxsis, in the use of the system there are cases such as computer misuse, access to unauthorized information. While in terms of technical constraints encountered frequent electrical disturbances and human errors such as: employees leaving the computer turned on, sharing passwords to other employees, errors entering data. This study aims to measure the level of security of the Java Heritange Purwokerto hotel information system using the ISO / IEC 27001: 2013 standard and produce recommendations or proposals based on the findings of the evaluation document. This audit process uses data collection methods, namely: observation, interviews, questionnaires and literature. Furthermore, the calculation of maturity level using Cabability Security Model Integration (CMMI). This study focuses on the bishop's room clause 5 concerning Information security policy, clause 6 concerning Information Security Organization, clause 7 concerning Human Resource Security, clause 9 concerning Access Control, clause 16 concerning Management of Information Security Incidents and clause 18 concerning Compliance. The result of the calculation of the overall clause is 3.27 ie defined. This shows that most information security processes already have rules and are routinely implemented. In this maturity level calculation, the highest score is in the compliance clause with a value of 3.42 and the lowest value is in the information security organization clause with a value of 3. This research also produces findings and recommendations used to improve the information system process owned by Java Heritage Hotels Purwokerto.