This study aims to apply ISO 31000:2018 for risk management activities in the Libsys Interests of Students application. CV XYZ, an information technology consultant in Yogyakarta, developed this application. This application detects students' academic interests, so teachers can easily direct students according to their interests. So far, the company has never carried out risk management activities in the system development process, even though this activity plays a role in managing and mitigating risks so that the application can achieve its goals. Risk management activities start from the stages of communication and consultation, establishing context, risk assessment and treatment, and monitoring and review by ISO 31000:2018 standard. The study's results found the effectiveness of the ISO 31000:2018 standard for managing risk in information systems consulting companies. The risk management activity found 17 risk opportunities from the Student Interests Libsys application, with four high-level, eight medium-risk, and five low-level risk opportunities. This study also provides suggestions for handling risks in the Libsys Interests Students application and documents them to help management manage the risks in this application.

M. Danuri, “Perkembangan dan Transformasi Teknologi Digital,” INFOKAM, vol. II, pp. 116–123, 2019.

K. Hadiono, R. Candra, and N. Santi, “Menyongsong Transformasi Digital,” Proceeding SENDIU , pp. 81–84, 2020.

A. B. Setiawan, “Revolusi Bisnis Berbasis Platform sebagai Penggerak Ekonomi Digital di Indonesia,” Jurnal Masyrakat Telematika dan Informasi, vol. 9, no. 1, pp. 61–76, 2018.

R. M. Candra, Y. N. Sari, I. Iskandar, and F. Yanto, “Sistem Manajamen Risiko Keamanan Aset Teknologi Informasi Menggunakan ISO 31000:2018,” Jurnal CoreIT, vol. 5, no. 1, pp. 19–28, 2019.

K. Mey, L. Lole, and E. Maria, “Analisis Manajemen Risiko Pada Aplikasi Pegadaian Digital Service Menu Tabungan Emas Menggunakan ISO 31000:2018,” Jurnal Sistem Komputer dan Informatika (JSON) , vol. 3, no. 3, pp. 319–324, 2022, doi: 10.30865/json.v3i3.3891.

W. Harefa and K. D. Hartomo, “Analisis Manajemen Risiko Dengan Menggunakan Framework ISO 31000:2018 Pada Sistem Informasi Gudang,” Jurnal Teknik Informatika dan Sistem Informasi, vol. 9, no. 1, pp. 407–420, 2022, [Online]. Available: http://jurnal.mdp.ac.id

M. I. Fachrezi, A. Dwika Cahyono, and P. F. Tanaem, “Manajemen Risiko Keamanan Aset Teknologi Informasi Menggunakan ISO 31000:2018 Diskominfo Kota Salatiga,” Jurnal Teknik Informatika dan Sistem Informasi , vol. 8, no. 2, pp. 764–773, 2021.

H. Citra Christian and M. N. N. Sitokdana, “Analisis Risiko Teknologi Informasi pada BANK ABC Menggunakan Framework ISO 31000,” Jurnal Teknik Informatika dan Sistem Informasi, vol. 9, no. 1, pp. 735–748, 2022, [Online]. Available: http://jurnal.mdp.ac.id

J. Ecleas and A. D. Manuputty, “Analisis Manajemen Risiko Teknologi Informasi Software PEGA Menggunakan ISO 31000,” Jurnal Teknik Informatika dan Sistem Informasi, vol. 8, no. 1, pp. 209–224, 2021, [Online]. Available: http://jurnal.mdp.ac.id

S. P. Zagoto and M. N. N. Sitokdana, “Analisis Risiko Teknologi Informasi di Organisasi XYZ Cabang Salatiga Menggunakan ISO 31000,” Jurnal MNEMONIC, vol. 4, no. 1, pp. 1–9, 2021.

D. A, “Proses Manajemen Risiko,” Academia.edu. https://www.academia.edu/30712130/Proses_Manajemen_Risiko (accessed Oct. 15, 2022).

D. Junianti and C. Fibriani, “Analisis Resiko Aplikasi Sistem Informasi Pengelolaan Data Umat Menggunakan ISO 31000 (Studi Kasus: Gereja Katolik Santo Paulus Miki Salatiga),” Journal of Computer and Information Systems Ampera, vol. 2, no. 2, pp. 2775–2496, 2021, [Online]. Available: https://journal-computing.org/index.php/journal-cisa/index

M. Sari et al., Metodologi Penelitian. 2022. Accessed: Oct. 20, 2022. [Online]. Available: https://books.google.co.id/books?hl=id&lr=&id=SpZnEAAAQBAJ&oi=fnd&pg=PR1&dq=variabel+penelitian&ots=wx-86f06Ly&sig=DtQVfl8eoEHvsNTpUJkOLu8szEw&redir_esc=y#v=onepage&q=variabel%20penelitian&f=false

S. A. Atmojo and A. D. Manuputty, “Analisis Manajemen Risiko Teknologi Informasi Menggunakan ISO 31000 Pada Aplikasi AHO Office,” Jurnal Teknik Informatika dan Sistem Informasi, vol. 7, no. 3, pp. 546–558, 2020, [Online]. Available: http://jurnal.mdp.ac.id

B. S. Nasional, Standar Nasional Indonesia Manajemen risiko-Teknik penilaian risiko Risk management-Risk assessment techniques.

H. Talitha Iddo Driantami and A. Reza Perdanakusuma, “Analisis Risiko Teknologi Informasi Menggunakan ISO 31000 (Studi kasus: Sistem Penjualan PT Matahari Department Store Cabang Malang Town Square),” Jurnal Pengembangan Teknologi Informasi dan Ilmu Komputer, vol. 2, no. 11, pp. 4991–4998, 2018, [Online]. Available: http://j-ptiik.ub.ac.id