Article: (MA) MEASURING INFORMATION SECURITY AND CYBERSECURITY ON PRIVATE CLOUD COMPUTING by WENDY, WANG GUNAWAN.

http://www.jatit.org/

ABSTRACT Information security is an essential topic that contributes the success of business operation nowadays. The urgency of applying effective information security can be seen in all business and non-profit entities. The article takes the case of university XYZ that uses private cloud computing as essential tools to support its business processes. The article examines the effective way of measuring the level of information security and CyberSecurity performance that focuses on private cloud use with its recommendations. The article applies the ISO 27001:2013 framework by involving all clauses in Annex A ISO 27001:2013 and COBIT5 for CyberSecurity, section Applying to CyberSecurity. Annex A ISO 27001:2013 and COBIT5 for CyberSecurity is used to measure the information security and CyberSecurity performance, respectively. The article uses a survey method to the employees in the IT division at University XYZ. The article examines the maturity level gap between current and expected results and provides necessary recommendation to improve current situation. The outcome of the article is expected to provide as a reference for information security application in higher education institutions. Keywords: Information Security, CyberSecurity, Private Cloud Computing, ISO 27001, COBIT 5.

© 2005 – ongoing JATIT & LLS