期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2019
卷号:97
期号:15
页码:4159-4174
出版社:Journal of Theoretical and Applied
摘要:Cloud computing is evolving technology that provides many benefits for the company. Along with its growth, there are increasing threats to cloud computing because hackers are always exploiting vulnerabilities in the cloud computing infrastructure. XYZ Corporation is an IT system integrator company in Indonesia that has a private cloud infrastructure at the company's data center. Based on the interview, currently there is no cybersecurity in the private cloud and there have been several problems regarding the cybersecurity incident which has caused company financial, operational and reputation losses. The purpose of this study is to analyze current cybersecurity, find out the shortcomings and establish cybersecurity recommendations in the private cloud. This case study research refers to the NIST Cybersecurity Framework and uses observation and interviews methods to gather information about current cybersecurity in the private cloud. The results are action plans, recommendations for human resources and cybersecurity technologies integration that are expected to increase the tier of security for information systems in the private cloud so threats and attacks can be detected and handled effectively and efficiently, therefore, confidentiality, integrity and availability of information systems in the private cloud is achieved. This study results also can be adopted in companies that have private cloud which want to start improving information system security using the NIST Cybersecurity Framework.
关键词:Cybersecurity; Information Security; Private cloud; NIST CSF; System Integrator Company
