The Implementation of Policy for the Establishment of a Cyber Incident Response Team to Support Information Security in the Government Sector

Authors

  • Prabaswari Universitas Pertahanan
  • Muhamad Alfikri Badan Siber dan Sandi Negara (BSSN)
  • Irdam Ahmad Universitas Pertahanan

DOI:

https://doi.org/10.21787/mp.6.1.2022.1-14

Keywords:

CSIRT, policy implementation, BSSN

Abstract

Since the COVID-19 pandemic hit the world, all daily activities have transformed. People’s online activities for work, study, transactions, and socializing have increased significantly. This phenomenon increases cybercrime, targeting but not limited to government-owned systems. The National Cyber and Crypto Agency (BSSN) issued Regulation No. 10 of 2020, the Cyber Security Incident Response Team (CSIRT), to address this issue.. Of course, establishing a solid and competent CSIRT in every government agency is required to realize cybersecurity resilience, particularly in the government sector. This research aims to explain the BSSN policy regarding the CSIRT team and  explore its implementation strategy. With descriptive-explanatory research methods, the theory used is public policy and implementation strategy. According to the findings of this study, agencies that already have a CSIRT experience fewer cyber incidents and recover more quickly from a cyber-attack.

Author Biography

Irdam Ahmad, Universitas Pertahanan

Orang Minang kelahiran Bukittinggi, Sumatera Barat, 6 Juni l956  ini adalah PNS pensiunan Biro Pusat Statistik (BPS) yang saat ini menjadi Guru Besar Universitas Uhamka  dan Guru Besar Universitas Pertahanan. Kepakarannya di bidang ilmu statistik diperoleh setelah menamatkan Bachelor of Statistics di Akademi Ilmu Statistik, Jakarta, tahun l970. Selanjutnya meraih Master of Statistics  dari University of the Philippines, Filipina, tahun l991. Sedangkan gelar doktor diperoleh dari Universitas Negeri Jakarta (UNJ) tahun 2011 di bidang pendidikan Kependudukan dan Lingkungan Hidup. Sejak tahun 1979 sampai 2005 bekerja di BPS. Kini selain peneliti juga  menjadi dosen di banyak perguruan tinggi swasta untuk mata kuliah Statistika, Matematika, Metodologi Penelitian, Kependudukan, dan Lingkungan Hidup. Selain pernah menjadi anggota Dewan Riset Daerah Provinsi DKI Jakarta, juga menulis karya ilmiah, antara lain buku Statistik Deskriptif, Teori dan Aplikasi terbitan SIA-LAN (2000) dan buku Kajian Implementasi Kebijakan Trilogi Pembangunan di Indonesia, terbitan STEKPI, Jakarta, (2006).

References

BSSN. (2018). Gov CSIRT Indonesia. BSSN. https://bssn.go.id/gov-csirt-indonesia/

Catota & Frankie E. (2018). Cybersecurity incident response capabilities in the Ecuadorian financial sector. Journal of Cybersecurity (Oxford), 4(1), 2057–2085. https://doi.org/https://doi.org/10.1093/cybsec/tyy002

Enisa. (2020). HOW TO SETUP UP CSIRT AND SOC GOOD PRACTICE GUIDE HOW TO SETUP UP CSIRT AND SOC ABOUT ENISA. https://doi.org/10.2824/056764

Fatimah, S. (2021). kompilasi-kasus-kebocoran-data-yang-heboh-terjadi-di-indonesia. Detikfinance. https://finance.detik.com/berita-ekonomi-bisnis/d-5659373/kompilasi-kasus-kebocoran-data-yang-heboh-terjadi-di-indonesia

Grindle, M. S. (1980). Public Choices and Policy Change: The Political Economy Of Reform In Developing Countries. s. The Johns Hopkins University Press.

Hertianto, M. R. (2021). Tinjauan Yuridis Terhadap Perlindungan Anak Dalam Ruang Siber Di Indonesia. Jurnal Hukum & Pembangunan, 51(3), 555–573. https://doi.org/10.21143/jhp.vol51.no3.3123

Ka Chung Ng, Xiaojun Zhang, J. Y. L. T. & K. Y. T. (2021). Protecting Against Threats to Information Security: An Attitudinal Ambivalence Perspective, Journal of Management Information Systems. Journal of Management Information Systems, 38:3, 732–764. https://doi.org/10.1080/07421222.2021.1962601

Kepala Badan Siber dan Sandi Negara. (2020). Peraturan Badan Siber dan Sandi Negara Nomor 10 Tahun 2020 tentang Tim Tanggap Insiden Siber.

Karnay, S. (2020). Penerapan Electronic Government Pada Dinas Komunikasi Informatika Statistik Dan Persandian Provinsi Sulawesi Selatan (Doctoral Dissertation, Universitas Hasanuddin) http://repository.unhas.ac.id/id/eprint/1519

Khoironi, S. C. (2020). Pengaruh Analisis Kebutuhan Pelatihan Budaya Keamanan Siber Sebagai Upaya Pengembangan Kompetensi bagi Aparatur Sipil Negara di Era Digital. Jurnal Studi Komunikasi Dan Media, 24(1), 37. https://doi.org/10.31445/jskm.2020.2945

Kurniawan, E., Ratna Kusuma, A., & Idris, A. (2015). Implementasi Kebijakan Program Pemberdayaan Komunitas Adat Terpencil (KAT) Dalam Menanggulangi Kemiskinan Di Lokasi Sekulit Desa Munggu Kecamatan Longkali Kabupaten Paser. Jurnal Administrative Reform, 3(3), 374–385. https://doi.org/ 10.52239/jar.v3i3.577

M. Haidar, Y. G. Sucahyo, T. S. and A. G. (2021). “Analysis of Csirt Services in Facing Cyber Security Challenges in Indonesia.” 2021 4th International Conference on Information and Communications Technology (ICOIACT), 154–159. https://doi.org/10.1109/ICOIACT53268.2021.9563925

Mubarok, S., Zauhar, S., Setyowati, E., & Suryadi, S. (2020). Policy Implementation Analysis: Exploration of George Edward III, Marilee S Grindle, and Mazmanian and Sabatier Theories in the Policy Analysis Triangle Framework. Journal of Public Administration Studies, 005(01), 33–38. https://doi.org/10.21776/ub.jpas.2020.005.01.7

Pemerintah Republik Indonesia. (2020). Peraturan Presiden Nomor 18 Tahun 2020 tentang Rencana Pembangunan Jangka Menengah Nasional Tahun 2020-2024. Rencana Pembangunan Jangka Menengah Nasional 2020-2024, 313.

Proses, S. (2022). 2L Lr 2Olr Dan. 096209. https://www.bappenas.go.id/files/RKP/RKP No - 85 Tahun 2021_Perpres_851.pdf

Pusopkamsinas BSSN. (2021). Laporan Bulanan Monitoring Keamanan Siber Oktober 2021.

Rahmadanita, A., Santoso, E. B., & Wasistiono, S. (2019). Implementasi Kebijakan Smart Government Dalam Rangka Mewujudkan Smart City Di Kota Bandung. Jurnal Ilmu Pemerintahan Widya Praja, 44(2), 81–106. https://doi.org/10.33701/jipwp.v44i2.279

Rohendi, A. (2020). Perlindungan Hukum Big Data. Jurnal Sain Manajemen, 2(2), 1–5. https://ejurnal.ars.ac.id/index.php/jsm/article/view/300/208 Setiawan, A. B. (2014). Perencanaan Strategis Pembentukan Pusat Respon Insiden Keamanan Informasi Pemerintah. JURNAL IPTEKKOM : Jurnal Ilmu Pengetahuan & Teknologi Informasi, 16(1), 27. https://doi.org/10.33164/iptekkom.15.1.2013.27-46

Romuald H., Jarosław N., Tomasz P., J. S. (2020). Measurement Models of Information Security Based on the Principles and Practices for Risk-Based Approach. Procedia Manufacturing, 44, 647–654. https://doi.org/10.1016/j.promfg.2020.02.244

Yunas, N. S. (2020). Implementasi e-Government dalam Meminimalisasi Praktik Rent Seeking Behaviour pada Birokrasi Pemerintah Kota Surabaya. Matra Pembaruan, 4(1), 13–23. https://doi.org/10.21787/mp.4.1.2020.13-23

Published

2022-05-31

How to Cite

Prabaswari, Alfikri, M., & Ahmad, I. (2022). The Implementation of Policy for the Establishment of a Cyber Incident Response Team to Support Information Security in the Government Sector. Matra Pembaruan: Jurnal Inovasi Kebijakan, 6(1), 1-14. https://doi.org/10.21787/mp.6.1.2022.1-14

Issue

Section

Articles