@thesis{thesis, author={Celesta Ivana}, title ={Manajemen Risiko Penerapan IS/IT Menggunakan Standar ISO 31000:2018 (Studi Kasus: PT. XYZ)}, year={2022}, url={http://eprints.ukmc.ac.id/8648/}, abstract={PT. XYZ is one of the largest trading companies in Palembang City. PT. XYZ utilizes IS/IT to its business processes, using computers, LANs, servers, Ms. Office, and applications made by the IT team. PT. XYZ experienced problems such as Wi-Fi errors, application errors, applications not updating, and human errors. PT. XYZ is worried about the problems that have occurred and the possibility of risks that might burden. The research objective is to analyze the risk of implementing IS/IT using the ISO 31000:2018 standard. All risk management steps for implementation IS/IT with the ISO 31000:2018 standard have been implemented at PT. XYZ. There are 21 possible risks, 48% very high risk, 10% high risk, 10% medium risk, 29% low risk, and 5% very low risk. Risk treatment plan, 10% risk is acceptable, 57% risk can be mitigated, 29% risk must be avoided, and 5% risk will be divided for risk treatment.} }