INTERNAL ROLE TITLE: SUPERVISOR TITLE:

Senior Risk Management Analyst Manager Technology Risk 1/2

INCUMBENT NAME: SUPERVISOR NAME:

- Denny M. Sadikin / Sumirat Hadi Saputro

DEPARTMENT: POSITION GRADE:

Finance 5

Role Purpose
Responsible for overall risk management implementation for commercial directorate (consumer
business stream)

Reporting Relationship
Direct report to
Manager
commercial risk 3 Direct report: -

Indirect report: -

A. Operating Network
Internal Internal
External
(within function) (outside of function)

- All functions or units at External Auditor

Technology Directorate
and any relevant units External advisor/consultant/outsource for all
including internal audit approved project within Risk Management
for coordination Group

B. Minimum Requirements
General Qualification:
- Bachelor degree
- Able to work under pressure and tight deadline
- Must have good leadership; conceptual and analytical thinking.
- Good problem solving skills with the ability to make decision based on accurate and timely
analyses
- Good interpersonal skill and positive attitude.

Specific Qualification :
- Minimum bachelor degree in IT, Information System, Risk Management, or Audit.
- Understand or have experience in Business Continuity Management.
- Understand Telco system and network infrastructure.

1
- Information security concept (i.e. ISO 27000 series)
- Operating System such as SunOS, HPUX, Linux etc,
- Database administration, ORACLE, DB2, MS-SQL
- Programming language (any)
- SAP operation/administration knowledge (preferable)

Experience:
- Minimum 1 year experiences in Risk Management/Audit/Assurance or IT/Network Operations with
compliance knowledge and 1 year experience as Senior Staff

Behavioural Competencies (from Indosat framework):

- Learning agility
- Effective collaboration

C. Scope
Area of Responsibilities Key Activities
1. External Relation - Liaise as a company representative for external parties according to
(only for Sales Area its related function.
or Functions with
accountable for
territory
management)

2. Internal Control - Support manager for the delivery of internal control

Design and compliance process for Technology directorate: scoping, risk
Evaluation assessment, control design and walkthrough.
- Support manager to maintain internal control effectiveness in
conformity with the requirements of regulatory, auditing standards and
practices, internal control and business perspectives.
- Understand the overall and thorough business process of the
stream area to provide feedback on more efficient and effective control
designs.
- Support manager in development of RCSA in the area of
Revenue.
- Establish strong relationship with the related Business
Process Owners for the purpose of efficiency and effectiveness of the
Internal Control procedures.
- Coordinate with Business Process Owners on remediation of
identified deficiencies.

3 Risk Management - Manage overall implementation of risk management based on ISO

31000: risk assessment (identification, analysis and evaluation), risk
treatment and monitoring
- Continues improvement of risk management implementation to
achieve higher RM maturity level.
- Assist in development of RM Database and monitoring
- Assist in the education of employees in the application of risk
management tools and techniques to enable implementation of risk
management
- Support in the development of risk report for management to highlight
the most significant risks.
- Provide support, education and training to staff to build risk
awareness within the organization.
- Perform all departmental administrative activities, including monthly

2
 status reporting, documentation, and other activities, as assigned, in
a timely manner.

4. Business Continuity - Manage overall implementation of BCM based on ISO 22301: risk
Management assessment (identification, analysis and evaluation), business impact
analysis, BC Strategy, BC plan, and testing.
- Promote BCM policy and procedures all Indosat employees.
- Implement and operationalize standard Risk Assessment, Business
Impact Analysis, and other Business Continuity tools and capabilities.
- Assist business unit in enhancing, formalizing, and standardizing the
business planning process and tracking mechanisms.
- Participate in appropriate business unit and development planning
meetings and activities. Facilitate timely identification, escalation,
resolution, and follow-up for all outstanding issues.
- Perform all departmental administrative activities, including monthly
status reporting, documentation, and other activities, as assigned, in
a timely manner.

Required
No Hard Competencies
(1-5*)
1 Risk Management 2
2 COSO Internal control framework and ICOFR 2
3 Audit techniques 2
4 Business Continuity 2
5 Telco Infrastructure Knowledge 3
6 IT Operations 3
*Proficiency Level: 1. Introductory; 2. Basic; 3. Intermediate; 4. Advanced; 5. Expert