Input Assessment Infrastruktur IT
Kategori / Area
Pilih Area
[11] Jaringan - Firewall
[12] Jaringan - Segregasi Jaringan
[13] Jaringan - DMZ
[14] Jaringan - IDS/IPS
[15] Jaringan - Switch Management
[16] Jaringan - Wireless Security
[17] Jaringan - Remote Access
[18] Jaringan - Monitoring Traffic
[19] Jaringan - NAT/PAT
[20] Jaringan - Syslog
[21] Server & Virtualisasi - Hypervisor
[22] Server & Virtualisasi - VM Inventory
[23] Server & Virtualisasi - Resource Allocation
[24] Server & Virtualisasi - Backup VM
[25] Server & Virtualisasi - Redundansi
[26] Server & Virtualisasi - Monitoring
[27] Server & Virtualisasi - Patch OS
[28] Server & Virtualisasi - Role Separation
[29] Server & Virtualisasi - Time Sync
[30] Server & Virtualisasi - Antivirus
[31] Server & Virtualisasi - Logging
[32] Server & Virtualisasi - Admin Access
[33] Server & Virtualisasi - SSH
[34] Server & Virtualisasi - RDP
[35] Server & Virtualisasi - Storage
[36] Server & Virtualisasi - Disk Encryption
[37] Server & Virtualisasi - Local Account
[38] Server & Virtualisasi - Service Account
[39] Server & Virtualisasi - Auto Update
[40] Server & Virtualisasi - Password Policy
[41] Endpoint - Antivirus
[42] Endpoint - Firewall
[43] Endpoint - Auto-lock
[44] Endpoint - Device Control
[45] Endpoint - Patch Management
[46] Endpoint - Software Inventory
[47] Endpoint - Admin Rights
[48] Endpoint - Disk Encryption
[49] Endpoint - MDM
[50] Endpoint - Auto Update
[51] Access Control - Active Directory
[52] Access Control - Role Based Access
[53] Access Control - Account Review
[54] Access Control - Termination
[55] Access Control - Guest Account
[56] Access Control - MFA
[57] Access Control - SSO
[58] Access Control - Shared Account
[59] Access Control - Password Rotation
[60] Access Control - Lockout Policy
[61] Backup & Recovery - Backup Policy
[62] Backup & Recovery - Frequency
[63] Backup & Recovery - Offsite Copy
[64] Backup & Recovery - Backup Encryption
[65] Backup & Recovery - Restore Test
[66] Backup & Recovery - Backup Integrity
[67] Backup & Recovery - Backup Scope
[68] Backup & Recovery - Immutable Backup
[69] Backup & Recovery - Air Gap Backup
[70] Backup & Recovery - Endpoint Backup
[71] Monitoring - Log Centralization
[72] Monitoring - Log Retention
[73] Monitoring - Log Integrity
[74] Monitoring - Alerting
[75] Monitoring - Dashboard
[76] Monitoring - SLA Alert
[77] Monitoring - Email Alert
[78] Monitoring - Tamper-proof Log
[79] Monitoring - Access Log
[80] Monitoring - Internet Monitoring
[81] Cloud - Cloud Policy
[82] Cloud - Provider Risk
[83] Cloud - Cloud Access
[84] Cloud - Data Encryption
[85] Cloud - Data Location
[86] Cloud - Logging
[87] Cloud - Backup Cloud
[88] Cloud - IAM Review
[89] Cloud - Tenant Isolation
[90] Cloud - Shadow IT
[91] Data Protection - Data Classification
[92] Data Protection - Data Retention
[93] Data Protection - Data Disposal
[94] Data Protection - Sensitive Data
[95] Data Protection - Data Transfer
[96] Data Protection - DLP
[97] Data Protection - Endpoint Protection
[98] Data Protection - External Storage
[99] Data Protection - Email Encryption
[100] Data Protection - Personal Data
[101] Business Continuity - BCP Policy
[102] Business Continuity - DR Plan
[103] Business Continuity - DR Simulation
[104] Business Continuity - Critical Asset List
[105] Business Continuity - RTO/RPO
[106] Business Continuity - Communication Plan
[107] Business Continuity - Alt. Site
[108] Business Continuity - Contact List
[109] Business Continuity - Testing Result
[110] Business Continuity - SLA DR
[111] Vendor Management - Vendor Inventory
[112] Vendor Management - Due Diligence
[113] Vendor Management - NDA
[114] Vendor Management - SLA Review
[115] Vendor Management - Access Limitation
[116] Vendor Management - VPN Vendor
[117] Vendor Management - Contract Termination
[118] Vendor Management - Cloud Vendor Compliance
[119] Vendor Management - Change Management Vendor
[120] Vendor Management - Performance Metric
[121] Asset Management - IT Inventory
[122] Asset Management - Ownership
[123] Asset Management - Labeling
[124] Asset Management - Lifecycle Tracking
[125] Asset Management - Disposal Procedure
[126] Asset Management - License Compliance
[127] Asset Management - Unauthorized Devices
[128] Asset Management - Mobile Asset Tracking
[129] Asset Management - IoT Inventory
[130] Asset Management - SaaS Inventory
[131] IT Operations - Job Scheduling
[132] IT Operations - Change Management
[133] IT Operations - Incident Response
[134] IT Operations - System Maintenance
[135] IT Operations - Log Book
[136] IT Operations - Escalation Matrix
[137] IT Operations - SLA Internal
[138] IT Operations - Daily Check
[139] IT Operations - Performance Review
[140] IT Operations - Resource Utilization
[141] Logging & Audit - Application Log
[142] Logging & Audit - Tamper Detection
[143] Logging & Audit - Time Sync
[144] Logging & Audit - Admin Log Review
[145] Logging & Audit - Alert on Anomaly
[146] Logging & Audit - Log Format Standard
[147] Logging & Audit - Access Audit
[148] Logging & Audit - Audit Trail App
[149] Logging & Audit - Long-term Archive
[150] Logging & Audit - Log Export
[151] Email & Collaboration - Email Protection
[152] Email & Collaboration - DKIM/SPF/DMARC
[153] Email & Collaboration - Attachment Control
[154] Email & Collaboration - URL Filtering
[155] Email & Collaboration - Phishing Simulation
[156] Email & Collaboration - Outbound DLP
[157] Email & Collaboration - Encryption on Demand
[158] Email & Collaboration - Shared Mailbox Control
[159] Email & Collaboration - Auto-forward Blocking
[160] Email & Collaboration - Signature Policy
[161] Web & Internet - Proxy Server
[162] Web & Internet - URL Filtering
[163] Web & Internet - Bandwidth Monitoring
[164] Web & Internet - SSL Inspection
[165] Web & Internet - Block VPN Apps
[166] Web & Internet - Internet Usage Policy
[167] Web & Internet - Malware Blocking
[168] Web & Internet - Anonymizer Detection
[169] Web & Internet - Custom Whitelist
[170] Web & Internet - DNS Filtering
[171] Development - Dev Environment Isolation
[172] Development - Source Control
[173] Development - Access Review
[174] Development - DevOps Pipeline Security
[175] Development - Code Signing
[176] Development - Secure Coding Training
[177] Development - Static Code Analysis
[178] Development - Audit Trail Changes
[179] Development - Test Data Masking
[180] Development - Vulnerability Fix SLA
[181] Vulnerability Management - Vulnerability Scan
[182] Vulnerability Management - Scan Result Review
[183] Vulnerability Management - CVSS Prioritization
[184] Vulnerability Management - Patch Deployment
[185] Vulnerability Management - Zero-Day Response
[186] Vulnerability Management - Third-party Libraries
[187] Vulnerability Management - Penetration Test
[188] Vulnerability Management - Red Team Exercise
[189] Vulnerability Management - Bug Bounty
[190] Vulnerability Management - Patch Verification
[191] Compliance & Audit - Regulatory Mapping
[192] Compliance & Audit - Internal Audit
[193] Compliance & Audit - External Audit
[194] Compliance & Audit - Audit Trail
[195] Compliance & Audit - Data Privacy Review
[196] Compliance & Audit - Legal Hold
[197] Compliance & Audit - Audit Finding Tracking
[198] Compliance & Audit - Non-disclosure Enforcement
[199] Compliance & Audit - User Awareness Survey
[200] Compliance & Audit - IT Risk Register
[201] Organization & HR - IT Org Structure
[202] Organization & HR - Job Description
[203] Organization & HR - Segregation of Duty
[204] Organization & HR - Security Training
[205] Organization & HR - Background Check
[206] Organization & HR - Termination Process
[207] Organization & HR - Awareness Campaign
[208] Organization & HR - KPI IT Security
[209] Organization & HR - Security Champion
[210] Organization & HR - Insider Threat Monitoring
[221] OT Security - OT & ICS Segregation
[222] Threat Intelligence - External Threat Feed
[223] AI/ML Risk - AI Usage Register
[224] Supply Chain Risk - Supply Chain Visibility
[225] Data Sovereignty - Sovereignty Mapping
[226] Insider Risk - Behavior Analytics
[227] Infrastructure as Code - IaC Scan
[228] Dark Web Monitoring - Credential Leak Check
[229] Mobile Device Management - MDM Active
[230] API Security - API Gateway
[231] Ransomware Readiness - Kill Chain Detection
[232] Wireless Security - Rogue AP Detection
[233] SIEM Tuning - Alert Noise Reduction
[234] Cryptographic Governance - Crypto Inventory
[235] Sustainability - IT Green Policy
[236] Threat Hunting - Proactive Threat Hunting
[237] Configuration Management - CIS Benchmark
[238] Certificate Management - Auto Renewal
[239] Cloud Cost Control - Cloud Budget Alert
[240] App Whitelisting - Software Control
[241] DNS Security - DoH/DoT Filtering
[242] Container Security - Image Scan
[243] SIEM Coverage - 100% Log Source Coverage
[244] Time-based Access - Just-in-time Access
[245] Secure Decommission - Data Sanitization
[246] Digital Forensics - Forensic Toolkit Ready
[247] Business Impact Analysis - BIA Terstruktur
[248] Privacy Impact Assessment - PIA Dilakukan
[249] User Behavior Logging - Session Recording
[250] Security Budgeting - Dedicated Security Budget
[251] Infrastruktur Data Center - Kelistrikan
[252] Infrastruktur Data Center - HVAC
[253] Infrastruktur Data Center - Bangunan
[254] Infrastruktur Data Center - Fire
[255] Infrastruktur Data Center - Monitoring
[256] Infrastruktur Data Center - Raised Floor
[257] Infrastruktur Data Center - Layout
[258] Infrastruktur Data Center - Keamanan Fisik
[259] Infrastruktur Data Center - CCTV
[260] Infrastruktur Data Center - Kejadian & Recovery
[261] Infrastruktur Data Center - Perangkat & Media
[262] Infrastruktur Data Center - Kontrol Tambahan
Pilih