Disaster Recovery Plan Analysis Based on the NIST SP 800-34 Framework (Case Study: PT Wijaya Karya (Persero) Tbk.)
DOI:
https://doi.org/10.59141/jiss.v4i09.879Keywords:
Disaster Recovery Plan, BIA, NIST SP 800-34Abstract
PT Wijaya Karya (Persero) Tbk. (WIKA) is a state-owned company engaged in the construction sector and EPC is currently developing its business in the mining and investment sectors both at home and abroad. Information Technology is one of the supports to achieve its goals. The use of Information Technology is urgently needed by WIKA in order to increase the effectiveness and efficiency of the company's operational activities. In this regard, it is necessary to develop procedures for managing information technology resources to support WIKA's business continuity, which includes services for internal or external users. In the use of information technology, the Disaster Recovery Plan (DRP) is an important part of IT services in efforts to prevent Data Center Fail-Over caused by disasters. With the DRP procedure, it is expected that the Information Systems Bureau as the manager of WIKA's information technology can immediately anticipate if a Disturbance or Disaster occurs that has the potential to disrupt a large number (the majority) of processes or activities that are very critical for business continuity. This Disaster Recovery Plan is guided by the NIST SP 800-34 framework which begins with identifying and assessing risk, Business Impact Analysis (BIA), identification of preventive controls and preparation of contingency strategies.
References
Alifian, Muhammad Hilal, & Priharsari, Diah. (2021). Penyusunan Disaster Recovery Plan (DRP) menggunakan framework NIST SP 800-34 (Studi Kasus pada Perusahaan IT Nasional). Jurnal Pengembangan Teknologi Informasi Dan Ilmu Komputer, 5(10), 4673–4679.
Barker, Elaine, & Barker, William. (2018). Recommendation for key management, part 2: best practices for key management organization. National Institute of Standards and Technology.
Hassel, Henrik, & Cedergren, Alexander. (2021). Integrating risk assessment and business impact assessment in the public crisis management sector. International Journal of Disaster Risk Reduction, 56, 102136.
Omar, Adnan, Alijani, David, & Mason, Roosevelt. (2011). Information technology disaster recovery plan: Case study. Academy of Strategic Management Journal, 10(2), 127.
Paré, Guy, & Kitsiou, Spyros. (2017). Methods for literature reviews. In Handbook of eHealth evaluation: An evidence-based approach [Internet]. University of Victoria.
Păunescu, Carmen, Popescu, Mihaela Cornelia, & Blid, Laura. (2018). Business impact analysis for business continuity: Evidence from Romanian enterprises on critical functions. Management & Marketing. Challenges for the Knowledge Society, 13(3), 1035–1050.
Pereira, Renato Marques Sanches, Wanderley, Henderson Silva, & Delgado, Rafael Coll. (2021). Homogeneous regions for rainfall distribution in the city of Rio de Janeiro associated with the risk of natural disasters. Natural Hazards, 1–19.
Sahebjamnia, Navid, Torabi, S. Ali, & Mansouri, S. Afshin. (2015). Integrated business continuity and disaster recovery planning: Towards organizational resilience. European Journal of Operational Research, 242(1), 261–273.
Suhartono, Fatmawati, Sri, & Suranto. (2020). Non-Natural Disaster Mitigation Covid-19 Pandemic and its Urgency in the Education Curriculum. Proceedings of the 4th International Conference on Learning Innovation and Quality Education, 1–5.
Supriyanto, Adi, Aknuranda, Ismiarta, & Putra, Widhy Hayuhardhika Nugraha. (2019). Penyusunan Disaster Recovery Plan (DRP) berdasarkan Framework NIST SP 800-34 (Studi Kasus: Departemen Teknologi Informasi PT Pupuk Kalimantan Timur). Jurnal Pengembangan Teknologi Informasi Dan Ilmu Komputer, 3(8), 8212–8219.
Sydnor, Sandra, Niehm, Linda, Lee, Yoon, Marshall, Maria, & Schrank, Holly. (2017). Analysis of post-disaster damage and disruptive impacts on the operating status of small businesses after Hurricane Katrina. Natural Hazards, 85, 1637–1663.
BNPB. 2023. “Definisi Bencana - BNPB.” Https://Bnpb.Go.Id/Definisi-Bencana. Retrieved July 15, 2023 (https://bnpb.go.id/definisi-bencana).
EC-Council. 2017. Disaster Recovery and Business Continuity.
Swanson, M., P. Bowen, A. W. Phillips, D. Gallup, and D. Lynes. 2010. Contingency Planning Guide for Federal Information Systems. Gaithersburg, MD. doi: 10.6028/NIST.SP.800-34r1.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2023 Eric Dwi Pamungkas, Nenden Siti Fatonah, Gerry Firmansyah, Habibullah Akbar
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution-ShareAlike 4.0 International. that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work.
