Professional Documents
Culture Documents
ABSTRACT
Container Terminal Operations is one of the core business of PT Tanjung Priok Port. The
purpose of this study is to identify operational risks container service activities in Tanjung
Priok and formulate mitigation efforts in order to ensure the sustainability of its business.
Enterprise Risk Management (ERM) has a relationship that is important in the practice
of Business Continuity Management (BCM). Risk identification and treatment in general
have been mapped in the ERM practices are organized in order to support the achievement
of corporate goals. ERM identify, analyze, and manage enterprise risks in general, where
it is a first step in making the concept of BCM.The method used is a qualitative and
quantitative analysis through the process of Risk Control Self Assessment and Business
Impact Analysis. The respondent were General Manager and all staff in PT Tanjung Priok
Port. The result showed that there are two significant risks in container terminal is a risk
that is not a reliable IT systems and labor strikes. Mitigation conducted on each risk is
procuring generators and UPS to anticipate IT system down and the preparation of a
Business Continuity Plan to anticipate a labor strike.
Keywords : business continuity management; business continuity plan; container
terminal; enterprise risk management
237
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
David Pandapotan Sirait, Maria Besiou ISSN 2355-4721
238
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
ISSN 2355-4721 Risk Management at Tanjung Priok Port Container Terminal
of traditional but fragmented approaches and treatment in general have been mapped
to risk management. This has led to an in the ERM practices are organized in order
integrated approach to measuring and to support the achievement of corporate
managing risks known as enterprise risk goals. ERM identify, analyze, and manage
management (ERM) (Quon, Zeghal, & enterprise risks in general, where it is a first
Maingot, 2012). To provide the general step in making the concept of BCM.
framework of business continuity Business Impact Analysis (BIA) is an
management (BCM) and to discuss its important process that probes into business
main parts and their mutual relationships processes to determine and list critical
(Svata, 2013). processes that are vital to keep the business
The novelty of the use of risk going. It is necessary to understand
management methods in research in business environments, gather data and
container terminals is to identify and information, identify critical processes
manage very high risk which will impede needed to carry out vital business operations
continuing business by implementing and finally prepare a BIA report enlisting
Business Continuity Management. your findings to be submitted to the top
Various definitions can be given management. Efforts toward consideration
about the risks, but simply means always of internal and external environments
related to the possibility of adverse effects and risks that impact financial position as
or adverse effects. There is no any method well as the goodwill of the organization
that can guarantee one hundred percent that must be considered. Effectiveness of the
due to bad that every time can be avoided, business impact analysis is reflected by the
unless the activities that involve risks not management’s commitment of people and
done (Darmawi, 2000).There are several technological resources to mitigate risks
definitions of risk as follows; 1) Risk is the of business continuity projected by your
chance of loss, these risks to means usually findings (Sikdar, 2011).
used to indicate a situation where there is Business Continuity Management
a chance against loss or a possibility of a Plan (BCMP) Business continuity planning
loss; 2) Risk is the possibility of loss; and identifies an organization’s exposure to
3) Risk is uncertainty (Vaughan, 1978). internal and external threats and synthesizes
Based on the above definitions of risk hard and soft assets to provide effective
can be concluded that the risk associated prevention and recovery for the organization,
with the possibility of adverse effects while maintaining competitive advantage
(loss) of unwanted or unexpected, in other and value system integrity. Elliot et al.
words the possibility of uncertainty due 2007A business continuity plan is a plan to
to the uncertainty which it is a condition continue operations if a place of business
that causes the growth of the risks is affected by different levels of disaster
stemming from a variety of activities.Risk that can be localized short-term disasters,
management is the process of measurement to days long building wide problems, to a
or assessment of risk and the development permanent loss of a building. Such a plan
of management strategies. The strategy typically explains how the business would
ranging from identifying risk, measure recover its operations or move operations
and determine the amount of risk, and then to another location after damage by events
find a way how to deal with these risks like natural disasters, theft, or flooding. For
(Darmawi, 2000). example, if a fire destroys an office building
Enterprise Risk Management or data centre, the people and business or
(ERM) has a relationship that is important data centre operations would relocate to a
in the practice of Business Continuity recovery site.
Management (BCM). Risk identification Driver of Change for Transportation
239
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
David Pandapotan Sirait, Maria Besiou ISSN 2355-4721
240
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
ISSN 2355-4721 Risk Management at Tanjung Priok Port Container Terminal
241
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
David Pandapotan Sirait, Maria Besiou ISSN 2355-4721
242
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
ISSN 2355-4721 Risk Management at Tanjung Priok Port Container Terminal
243
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
David Pandapotan Sirait, Maria Besiou ISSN 2355-4721
244
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
ISSN 2355-4721 Risk Management at Tanjung Priok Port Container Terminal
that is deemed insignificant or has low operational requirement; (4) To reduce risk
significance to the company of Equipment and its Operator being not
Transfer the risk, Pass / shift risk sufficient, Operations Manager will monitor
through to an independent financially equipment partner availability performance
capable third party (e.g. Insurer) at a regularly; (5) To reduce risk of SOP
reasonable economic cost under a legally implemented inconsistently, management
enforceable arrangement. will develop, review and communicate
(1) Avoid the risk, Avoid exposure to future current SOP accordingly; (6) To reduce
possible risk events. (for example: stop risk of Communication with stakeholder
engaging in the activity which creates the risk). is not smooth, General manager will open
This option can be chosen for risk with an formal and informal communication with
overall risk level that can’t be tolerated nor stakeholder; (7) To reduce risk of restricted
accepted by the company; (2) Reduce the area not sterile, General Manager will
risk, The strategy to take action to decrease coordinate with PFSO manager; (8) To
risk to an acceptable level by focusing on reduce risk of project implementation
diminishing likelihood and impact (for is not On time, On performance and On
example: reduce current risks by applying budget, General Manager will Coordinate
additional controls or improve existing with project manager; (9) To reduce risk of
controls and/ or process) business model not ideal, General Manager
From discussion with management will coordinate with Change Management
Container Terminal Operation of Port of Manager.
TanjungPriok, the risk treatment is shown
in table 9. H. Monitoring and Review
After the workshop adjourned, the
G. Risk Mitigation Plan next activity is to monitor and review all
Mitigating risk is the risk that the agreed management action, which stated
treatment aims to reduce the risk. The on above tables. This activity must conduct
treatment can be a reduction in the likelihood regularly to control the progress of those
of risk, reduction of losses caused when the programs and also to acknowledge any
risk occurs, and the diversification of risk. difficulties that might faced by senior
Diversification is a strategy that is more management.Senior management agreed to
commonly referred to as “do not put all conduct this activity by quarterly basis or
your eggs in one basket”. One example of even sooner in case of there are significant
diversification to reduce risk is investing in changes on internal or external parameters.
a wide range of portfolios to reduce risk. Any changes in parameters require a re-
Management Container Terminal evaluation of predetermined parameters.
Operation of Port of TanjungPriok actions
plan regarding treatment decision are reduce I. Business Continuity Management
the risk by as follow (1) To reduce risk of As per risk assessment result
ICT system being not reliable, ICT manager described in chapter 4, there are 2 (two)
will procure and buy UPS or back up power very high risks identified at CTO PTP
as well as Gen Set; (2) To reduce risk of namely ICT system being not reliable and
Labor strike, General Manager promises labor strike. This chapter will focus on
to develop and communicate Emergency mitigating labor strike risk by developing
Response Plan, Business Continuity Plan Business Continuity Management (BCM).
and Crisis Management Plan; (3) To reduce The objective of the implemented BCM in
risk of Lack of human resources to operate in CTO PTP is to set up internallabor strikes
minimum level, HR Manager will develop handling procedures in order to minimize
job description and job spec, which relate to the impact of business and operational
245
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
David Pandapotan Sirait, Maria Besiou ISSN 2355-4721
246
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
ISSN 2355-4721 Risk Management at Tanjung Priok Port Container Terminal
provides the data from which appropriate function, focusing on the outputs created
continuity strategies (or recovery and delivered to other job functions ; (3)
strategies) can be determined and ; (2) Clarify the value created by each job
Identifies the urgency of each business function using value chain analysis tools ;
activity undertaken by the organization (4) Construct a list of the processes below
by assessing the impact over time of an the job functions, noting overlaps and
interruption to this activity on the delivery dependencies ; (4) Obtain any supporting
of products and services. (BCM, 2013). data to describe the process, outputs,
To identify the critical business processes dependencies, facilities, people and
(activities) and their dependencies at systems required to conduct each process
CTO Port of TanjungPriok, the following ; (5) Illustrate the relationships between
activities were followed: (1) Reviewed primary job functions, key business
IPC documentation ; (2) Conducted processes and dependencies ; (6) Based
interviews to understand TanjungPriok and on documentation reviews and interviews,
the TanjungPriok operating environment; the high-level CTO Port of TanjungPriok
and ; (3) And conducted interviews to Value Chain below was created to illustrate
confirm and agree the objectives, scope and the key business processes conducted at the
outcomes. container terminal and their corresponding
The BIA methodology utilized at supporting processes. This value chain
CTO Port of TanjungPriok was based on groups the main functions at CTO Port of
the ISO 22313 approach and the Good TanjungPriok and aligns to the financial
Practice Guidelines, 2013. The approach reporting at the site.
was a rapid implementation of a BIA, Workshops were conducted with key
which means that over a 2-week period the stakeholders from each of the 4 Business
analysis of business processes was high Process areas of the Value Chain, which are
level and broad. described in figure 4 to identify supporting
The methodology includes the processes.The following information
following key steps: (1) Identify the main was then gathered for each supporting
job function at the site ; (2) Identify the process identified ; (1) Process Owner ;
main processes conducted within each job (2) Dependencies (e.g., IT systems and
247
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
David Pandapotan Sirait, Maria Besiou ISSN 2355-4721
applications, people, key third parties); (3) services must be delivered within 2 hours
Critical Time periods ; (4) Risk assessment from service interruption. In order to fulfill
referring to IPC impact and probability the Recovery Point Objective above, senior
criteria and an overall risk rating ; (5) management will require several supporting
Maximum Allowable Outage (MAO) - items as mention below.
the maximum timeframe that the business Operation Capability: Handling
process could be suspended in the event of 2 ships each terminal (OG &Intersuler)
a disaster ; (6) Recovery Time Objective Equipment Support :
(RTO) - the period of time required to fully 1. QCC : 4 units(each terminal)
re-establish adequate resource requirements 2. RTG : 12 units
to carry out the process 3. Truck + chassis : 20 units
4. Gate : 4 units
1. Business Threat and Impact Scenario 5. RS & SL : 2 units
In conjunction with senior Labor Support : approx. 144 persons / shift.
management objective, to handle internal approx. 574 persons to run 3 shifts (4
labor strike, this workshop agreed to set the groups)
scenario as follows:
3. Critical Business Process
Threat Since the scenario has been agreed
Service Interruption : caused by Internal by senior management, the BIA process
Labor Strike. could identify which business process(es)
Period of Strike : 3 days is considered as critical process and needs
Assumption : 99% of TO3 Total Employee to be prioritized. Critical business processes
(permanent and outsourcing). are determined from the capability to
Impact : Stoppage of All Operation recover within certain period of time. If
Activities the business process can be recover below
maximum allowable outage (MAO) time
2. Recovery Point Objective (RTO 2) and its risk rating below 5 (five) means it’s
Resumption 50% of critical terminal not critical.
248
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
ISSN 2355-4721 Risk Management at Tanjung Priok Port Container Terminal
249
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017
David Pandapotan Sirait, Maria Besiou ISSN 2355-4721
250
Jurnal Manajemen Transportasi & Logistik - Vol. 04 No. 03, November 2017