1. BALANCING INNOVATION & RISK
THROUGH IT GOVERNANCE IN DIGITAL BANKING ERA
WEBINAR SEPTEMBER 2019
Presented by Aboeryzal Ahmed Koesyairy
IT GOVERNANCE IN BANKING SECTOR (CASE STUDY BNI)
Departemen Sistem Informasi
Fakultas Teknologi Informasi & Komunikasi
Institut Teknologi Sepuluh Nopember
2. ADAPTIVE IT GOVERNANCE
IN DIGITAL BANKING ERA
Case Study BNI
Balancing Innovation & Risk Through IT Governance in Digital Banking Era
8
3. IT GOVERNANCE COMPONENT
Balancing Innovation & Risk Through IT Governance in Digital Banking Era 9
In Banking Sector (BNI)
STRUCTURE
BNI Memiliki Satu Area Direktur
Teknologi Informasi (CIO)
Divisi IT Solution
Divisi IT Operation
Unit Information Security
Divisi Data Management
PROCESS
Dirangkum dalam Kebijakan,
Prosedur, Standar yang mengacu
pada POJK 38/POJK.03/2017 dan
PERMEN BUMN PER02/MBU/2013
Memiliki IT Strategic Plan
Standar/Framework/Best Practice
yang digunakan:
TOGAF, COBIT, ITIL V3, ISO 27001,
ISO 9001, ISO 20000
Memastikan Kepatuhan terhadap
Regulasi OJK, BI, BUMN, dll
Source: IT Governance, Weill and Ross, Chapter 4 , Set of IT Governane Mechanism
COMMUNICATION
Delegasi/Disposisi melalui otomasi e-
office.
Pengambilan keputusan strategic
melalui Komite/Forum
Risk management awareness
Executive Information Dashboard
4. IT DECISION MAKING
Balancing Innovation & Risk Through IT Governance in Digital Banking Era 10
IT PRINCIPLE DECISIONS
IT ARCHITECTURE
DECISIONS
IT INFRASTRUCTURE
DECISIONS
BUSINESS APPLICATION
NEEDS
IT INVESTMENT &
PRIORITIZATION
DECISIONS
Dari Satuan Kerja TI dengan Masukan dari Bisnis Unit
Dari Satuan Kerja TI
Dari Satuan Kerja TI
Dari Bisnis Unit dengan
Masukan dari Satuan Kerja TI
Melalui Forum/Komite
berasam Bisnis Unit,
Penganggaran, dan
Satuan Kerja TI
Source: P. Weill and J. Ross, IT Governance: How Top Performers Manage IT Decision Rights for Superior Results, Harvard Business School Press, 2004
In Banking Sector (BNI)
5. New School Governance is
Focused on Strategy Execution and
Risk Balancing
(Adaptive)
Balancing Innovation & Risk Through IT Governance in Digital Banking Era 11
Old School Governance is
Focused on Compliance
and Minimizing Risk
Research Gartner – Adaptive IT Governance
6. daptive Governance
Balancing Innovation & Risk Through IT Governance in Digital Banking Era 12
“The organizational capability that
determines the governance styles
and mechanisms that will deliver
required business outcomes in a
given context."
Adaptive IT Governance – Gartner Research
A
7. Adaptive IT Governance Style
Balancing Innovation & Risk Through IT Governance in Digital Banking Era 13
Autonomous
Agility
Outcomes
Control
IT Policy, Prosedur,
Standard, AM
Based on Regulatory
(POJK, PBI)
Customer Focus,
Business collab,
DevSecOps
Scrum, agile dev, cloud
Adaptive IT Governance – Gartner Research
Control-Based Style
According to rules, policies, standards, directives and compliance
requirements from regulators dominates this command-and-control
style of governance.
Outcome-Based Style
Achieving business outcomes while balancing risk, return and
performance on investments within the enterprise guardrails.
Agility-Based Style
Empowering roles and teams with the authority to make distributed
and/or mandated decisions that create value for the business; relying
more on people’s competencies, principles, attitudes and ways of
working, rather than authority and/or rules.
Autonomous-Based Style
Driving value and managing risk from decisions made in real time by
people and things.
8. Adaptive IT Governance Model
Balancing Innovation & Risk Through IT Governance in Digital Banking Era 14
9. Balancing Innovation & Risk Through IT Governance in Digital Banking Era 15
"IF EVERYTHING SEEMS UNDER
CONTROL, YOU'RE NOT GOING
FAST ENOUGH."
Mario Andretti