Jabatan Perkhidmatan Awam

Laporan Tahunan 2017 Annual Report

61

SISTEM PENGURUSAN KESELAMATAN MAKLUMAT

(ISMS) ISO/IEC 27001:2013, JPA

INFORMATION SECURITY MANAGEMENT SYSTEM

(ISMS) ISO / IEC 27001: 2013, JPA

Sistem Pengurusan Keselamatan Maklumat (ISMS)

ISO/IEC 27001:2013 di JPA dilaksanakan dengan

objektif untuk mengurus dan meminimumkan risiko

keselamatan maklumat selaras dengan keperluan

dan ekspektasi pemegang taruh. Ia menekankan

kepada konsep atau prinsip keselamatan maklumat

iaitu pemeliharaan kerahsiaan, integriti dan

kebolehsediaan. Skop yang dipersijilkan di Bahagian

Pembangunan Dan Pengurusan Maklumat Strategik

(BPMS) dan INTAN adalah :

a) SISTEM

PENGURUSAN

KESELAMATAN

MAKLUMAT

(ISMS)

MERANGKUMI

PENGURUSAN PERKHIDMATAN

HUMAN

RESOURCES MANAGEMENT SYSTEM

(HRMIS)

DAN PERKHIDMATANMEJA BANTUAN HRMIS

TAHAP SATU DI JABATAN PERKHIDMATAN

AWAM (JPA) MALAYSIA.

b) SISTEM

PENGURUSAN

KESELAMATAN

MAKLUMAT (ISMS) BAGI PENGURUSAN

PERKHIDMATAN SISTEM E-PEMBELAJARAN

SEKTOR AWAM (EPSA) , INTAN.

The Information Security Management System

(ISMS) ISO / IEC 27001: 2013 at the JPA was

implemented with the objective of managing

and minimising information security risks in line

with the needs and expectations of stakeholders.

It emphasises on the concepts or principles of

information security which are the preservation

of confidentiality, integrity and having a state of

readiness. The scopes that was certified in BPMS

and INTAN were:

a) INFORMATION SECURITY MANAGEMENT

SYSTEM (ISMS) ENCOMPASSING THE

MANAGEMENT OF THE HUMAN RESOURCE

MANAGEMENT

INFORMATION

SYSTEM

(HRMIS) SERVICE AND A LEVEL ONE HRMIS

ASSISTANCE SERVICE COUNTER AT THE PUBLIC

SERVICE DEPARTMENT (JPA) MALAYSIA.

b) INFORMATION SECURITY MANAGEMENT

SYSTEM (ISMS) FOR PUBLIC-SECTOR

E-LEARNING (EPSA) SYSTEM SERVICES’

MANAGEMENT, INTAN.