Information security systems must be protected from all attacks and interuptions by an unauthorized\ud user. Firewall is a mechanism that can be applied to improve the security information which done by filtering data\ud packets that enter and exit the network. IT governance is needed to manage good information security. IT\ud governance can use to make the arrangement of guidelines for the management of information security. This\ud research aims to create a reference guide to information security such as an information security management\ud guide for firewall configuration that refers to the framework of PCI DSS v.3.1 and COBIT 5 by taking a case\ud study at the DSIK Universitas Airlangga.Arrangement of guidelines for information securit...