Login Register

About This Journal

Journal Innovations Computer Science is a peer-reviewed academic journal dedicated to publishing cutting-edge research and developments in the rapidly evolving field of computer science....

Learn More

Quick Links

Browse

Recent Issues

Contact Info

  • Banda Aceh, Indonesia
  • +6285277777449
  • journal@kawanad.com
  • Week Days: 09.00 to 17.00
    Sunday: Closed

Article

Cover JICS Volume 4 Nomor 2 2025

Analysis of Tokopedia Digital Security Strategy Against Cyber Threats Using the Risk Assessment Framework Approach

  • Authors

  • Affiliations

  • Published

  • Section Article

  • DOI https://doi.org/10.56347/jics.v4i2.301

  • Issue
Views icon

370

Views

Downloads icon

134

Downloads

Altmetrics icon

Altmetrics

Abstract

The rapid digitalization of commerce in Indonesia has positioned Tokopedia as a central marketplace that facilitates large-scale transactions while managing vast amounts of sensitive user data. This reliance on digital infrastructures, however, exposes the platform to escalating cyber threats that jeopardize both operational continuity and consumer trust. This study evaluates Tokopedia’s cybersecurity strategies by applying the Risk Assessment Framework derived from ISO 27001 and ISO 31000. Using a qualitative descriptive design, the research draws exclusively on secondary sources such as peer-reviewed journals, industry reports, and case studies published between 2015 and 2025. The analysis identifies five dominant risks: large-scale data breaches, phishing and identity theft, ransomware attacks, insider threats, and system misconfigurations. Risk assessment results indicate that data breaches pose the most critical threat, with phishing and ransomware classified as medium but persistent risks. Tokopedia has implemented several protective measures, including encryption, multi-factor authentication, e-KYC verification, and privacy policies. Nevertheless, gaps remain in governance, routine audits, and employee awareness, leaving the platform vulnerable to recurring incidents. A comparative analysis with global platforms highlights the importance of proactive governance, systematic risk documentation, and continuous training, areas where Tokopedia is still underdeveloped. The findings underscore that cybersecurity should be recognized not merely as a technical safeguard or financial burden but as a strategic investment essential for resilience, consumer confidence, and sustainable growth in Indonesia’s competitive digital economy.

Keywords

Cybersecurity; Risk Assessment; ISO 27001; E-Commerce; Tokopedia

References

  1. Ayu, S. S., & Nasution, M. I. P. (2023). Analisis kebocoran data privacy pada e-commerce Tokopedia. JUEB: Jurnal Ekonomi dan Bisnis, 2(3), 21–24. https://doi.org/10.57218/jueb.v2i3.716
  2. Bestari, Q., Putri, D. A., & Kurnia, K. A. (2024). Analisa kasus kebocoran data pengguna Tokopedia. Jurnal Hukum Progresif, 7(1), 45–60. https://law.ojs.co.id/index.php/jhp/article/view/130
  3. Derliana, & Yulhendri. (2024). Analisis manajemen risiko berbasis ISO 27001 pada aspek keamanan sistem informasi pada perusahaan Tokopedia. Scientica: Jurnal Ilmiah Sains dan Teknologi, 2(2), 139–151.
  4. Fadillah, F., Adelya, H. N. K., & Shahira, R. (2022). Dampak Cyber Attack bagi ekonomi perdagangan elektronik: Studi pada bocornya data di platform Tokopedia. Jurnal Hukum Statuta, 1(2), 122–136.
  5. Kehista, A. P., Fauzi, A., Tamara, A., Putri, I., Fauziah, N. A., Klarissa, S., & Damayanti, V. B. (2023). Analisis keamanan data pribadi pada pengguna e-commerce: Ancaman, risiko, strategi keamanan (literature review). Jurnal Ilmu Manajemen Terapan, 4(5).
  6. Kholifah, S. N., & Yulhendri. (2024). Analisis manajemen risiko teknologi informasi pada PT Jakarta Notebook menggunakan framework ISO 31000. Scientica: Jurnal Ilmiah Sains dan Teknologi, 2(2), 126–138.
  7. Laksana, T. G., & Mulyani, S. (2024). Pengetahuan dasar identifikasi dini deteksi serangan kejahatan siber untuk mencegah pembobolan data perusahaan. Jurnal Ilmiah Multidisiplin, 3(1), 109–122. https://doi.org/10.56127/jukim.v3i01.1143
  8. Lisnawati, T., Hussaen, S., Nuridah, S., Pramanik, N. D., Warella, S. Y., & Bahtiar, M. Y. (2023). Manajemen risiko dalam bisnis e-commerce: Mengidentifikasi, mengukur, dan mengelola risiko-risiko yang terkait. Jurnal Pendidikan Tambusai, 7(2), 8252–8529. https://doi.org/10.31004/jptam.v7i2.7534
  9. Padang, F. K. N., Anggara, A., Gimnastiar, N. A., Simanjuntak, N. F., Charesyah, A. L., & Arsyadona. (2025). Strategi manajemen risiko siber dalam perusahaan e-commerce di Indonesia: Tinjauan sistematis dan perbandingan dengan praktik global. Kohesi: Jurnal Sains dan Teknologi, 6(7), 11–20.
  10. Putra, D. B., Hakim, M. A. M., & Nurdewanto, B. (2023). Implementasi electronic-know your customer pada aplikasi fintech untuk meningkatkan keamanan akun user. Journal of Information System and Application Development, 1(2), 114–123. https://doi.org/10.26905/jisad.v1i2.11112
  11. Putri, N. C. R., Fauzi, A., Ali, M. K., Ramadhan, N. A., Salsabilla, P. J., Cahya, L. J., & Ernawati, F. A. (2024). Strategi peningkatan keamanan data pelanggan dalam penjualan online di Tokopedia. Jurnal Siber Multi Disiplin, 2(1), 54–67. https://doi.org/10.38035/jsmd.v2i1.136
  12. Soesanto, E., Lande, A., Sanjaya, H. T., & Hermawan, M. R. (2023). Analisis sistem manajemen keamanan di perusahaan Tokopedia dalam meningkatkan proteksi data dan privasi pengguna. Jurnal Mahasiswa Kreatif, 1(3), 21–29.
  13. Sukarni, Y., & Muslikh, A. R. (2024, December). Evaluasi efektivitas implementasi platform e-learning di FTI Universitas Merdeka Malang menggunakan metode decision tree. In Seminar Nasional Sistem Informasi (SENASIF) (Vol. 8, pp. 4621–4631).
  14. Susanto, E., Antira, L., Kevin, K., Stanzah, E., & Majid, A. A. (2023). Manajemen keamanan cyber di era digital. Journal of Business and Entrepreneurship, 11(1), 23–33. https://doi.org/10.46273/jobe.v11i1.365
  15. Wijanarko, R., Audina, I., Saputri, D. E., Rabbanii, N. N., & Suryanto, T. M. (2023). Implementation of the COBIT 2019 framework to improve information technology performance in Tokopedia. International Journal of Electrical Engineering and Information Technology, 6(2), 51–62.
  16. Wulan, W., Hadita, H., Fauzi, A., Putri, A. M., Fitriyani, F., Astriyani, R., & Cahyani, Y. I. (2024). Tinjauan ancaman dan risiko pada sistem keamanan internet of things berbasis cloud computing dalam penggunaan e-commerce dan rencana strategis. Jurnal Kewirausahaan dan Multi Talenta, 2(2), 126–137.

Author Biographies

How to Cite

Mirza Raziq Akbar, M. ., Yudhistiro, K., & Rofiqul Muslikh, A. (2025). Analysis of Tokopedia Digital Security Strategy Against Cyber Threats Using the Risk Assessment Framework Approach. Journal Innovations Computer Science, 4(2), 94-102. https://doi.org/10.56347/jics.v4i2.301
ACM ACS APA ABNT Chicago Harvard IEEE MLA Turabian Vancouver AMA
Endnote/Zotero/Mendeley (RIS) BibTeX

Article Details

  • Volume: 4
  • Issue: 2
  • Pages: 94-102
  • Published:
  • Section: Article
  • Copyright: 2025
  • ISSN: 2961-970X

Scholarly Connection Platforms

License

Articles in this journal are published under the Creative Commons Attribution Licence (CC-BY 4.0). This means that users may share and adapt the articles published on this website in a reasonable manner, but they must give appropriate credit to the creator and indicate the changes they have made. Users must not apply additional restrictions, but must publish the work under the same license (CC-BY 4.0).

Similar Articles

Similar Articles

Discover other articles with topics similar to what you're currently reading. Find more references and expand your knowledge base.

Related Articles You May Be Interested In

start an advanced similarity search

More Similar Articles

Support Vector Machine-Based Sentiment Analysis of...

Lucas Namora Hutauruk, Sri Lestari, Raisah Fajri Aula

Vol. 4 No. 2 (2025): November
Sistem Pendukung Keputusan Penerimaan Beasiswa di SMK 6...

Maria Susanti Jamung, Sepriono Leosae, Arjen Yohanes Babis, Gerry Mone, Yampi R Kaesmetan

Vol. 3 No. 1 (2024): May 2024
Sistem Penjualan Makanan Khas Aceh Berbasis Web di Toko...

Mawardinur

Vol. 3 No. 2 (2024): November
Perancangan Sistem Informasi Penjualan Sepeda Motor pada...

Taufiq Iqbal, Alfina

Vol. 1 No. 1 (2022): May 2022
Most read articles by the same author(s)

Related Articles

About Us

Yayasan Kawanad is committed to promoting open-access scholarly communication and supporting academic excellence through peer-reviewed journals across disciplines.

Navigation

For Authors

Journal Info

Recent Issues

© 2026 Open Journal Systems. All rights reserved. Designed by MSTI-Indonesia.