Evaluasi Tingkat Keamanan Teknologi Informasi Menggunakan Indeks KAMI Pada Pondok Pesantren di Kabupaten Situbondo

Authors

  • M. Syaifullah Universitas Islam Negeri Sunan Kalijaga Yogyakarta
  • Muhammad Taufiq Nuruzzaman Universitas Islam Negeri Sunan Kalijaga Yogyakarta
  • Agung Fatwanto Universitas Islam Negeri Sunan Kalijaga Yogyakarta
  • Sumarsono Universitas Islam Negeri Sunan Kalijaga Yogyakarta

DOI:

https://doi.org/10.14421/csecurity.2025.8.2.5494

Abstract

Dalam era digital yang semakin berkembang, tata kelola teknologi informasi (TI) memiliki peran krusial dalam mendukung efektivitas operasional dan strategis suatu organisasi, termasuk lembaga pendidikan Islam seperti pondok pesantren. Penelitian ini bertujuan untuk mengevaluasi tingkat kematangan keamanan teknologi informasi di 21 pondok pesantren di Kabupaten Situbondo dengan menggunakan Indeks KAMI versi 5.0 yang berbasis pada standar SNI ISO/IEC 27001:2022. Metode penelitian yang digunakan adalah kualitatif. Data dikumpulkan melalui penyebaran kuesioner serta verifikasi kuesioner yang mencakup tujuh area utama indeks keamanan informasi (KAMI) dan satu area suplemen. Hasil penelitian menunjukkan bahwa sebagian besar pondok pesantren berada pada tingkat kematangan I dan I+, yang menandakan bahwa pengelolaan keamanan teknologi informasi masih dilakukan secara informal dan belum terdokumentasi dengan baik. Beberapa aspek penting, seperti manajemen risiko, perlindungan data pribadi, serta pengelolaan aset informasi, belum diimplementasikan secara optimal. Selain itu, keterlibatan pihak ketiga dalam mendukung pengelolaan sistem informasi masih sangat terbatas. Dengan demikian, dapat disimpulkan bahwa tingkat kesiapan keamanan teknologi informasi di pondok pesantren Kabupaten Situbondo masih rendah sehingga diperlukan intervensi strategis melalui kebijakan, peningkatan kapasitas sumber daya manusia, serta kerja sama eksternal untuk mencapai minimal tingkat kematangan Level III+.

Kata kunci: Tata Kelola Teknologi Informasi, Indeks KAMI, Pondok Pesantren, SNI ISO/IEC 27001:2022

--------------------------------------------------------------------------------------------------

Evaluation of Information Technology Security Level Using the KAMI Index at Islamic Boarding Schools in Situbondo Regency

In the rapidly evolving digital era, information technology (IT) governance plays a crucial role in supporting both operational and strategic effectiveness within organizations, including Islamic educational institutions such as Islamic boarding schools (pondok pesantren). This study aims to evaluate the maturity level of information technology security in 21 Islamic boarding schools in Situbondo Regency using the KAMI Index version 5.0, which is based on the SNI ISO/IEC 27001:2022 standard. A qualitative research method was employed, with data collected through questionnaires and their verification, covering seven main areas of the KAMI information security index and one supplementary area. The findings reveal that most Islamic boarding schools are at maturity levels I and I+, indicating that information technology security management is still carried out informally and has not been properly documented. Key aspects such as risk management, personal data protection, and information asset management have not yet been optimally implemented. Furthermore, third-party involvement in supporting information system management remains very limited. Therefore, it can be concluded that the readiness level of information technology security in Situbondo’s Islamic boarding schools is still low, requiring strategic interventions through policy development, capacity building of human resources, and external collaboration to achieve at least maturity level III+.

Keywords: Information Technology Governance, KAMI Index, Islamic Boarding Schools, SNI ISO/IEC 27001:2022

Downloads

Published

07-12-2025

How to Cite

[1]
M. Syaifullah, M. T. . Nuruzzaman, A. . Fatwanto, and Sumarsono, “Evaluasi Tingkat Keamanan Teknologi Informasi Menggunakan Indeks KAMI Pada Pondok Pesantren di Kabupaten Situbondo”, csecurity, vol. 8, no. 2, pp. 150–159, Dec. 2025.

Issue

Vol. 8 No. 2 (2025): Edisi November 2025

Section

Articles

License

Copyright (c) 2025 M. Syaifullah

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

Attribution-ShareAlike 4.0 International (CC BY-SA 4.0)

You are free to:

  • Share — copy and redistribute the material in any medium or format
  • Adapt — remix, transform, and build upon the material for any purpose, even commercially.

Under the following terms:

  • Attribution — You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
  • ShareAlike — If you remix, transform, or build upon the material, you must distribute your contributions under the same license as the original.
  • No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.