Академический Документы
Профессиональный Документы
Культура Документы
BUMPER
8 Pilar Solusi PT MII
Sertifikasi PT MII
ISO/IEC 27001:2013
ISO 9001:2008
Solusi
Portfolio
Portfolio
Konsultan
Management Area: Technical Area (Security):
• CISA (Certified Information System Auditor) • Offensive Security Certified Professional
• CISM (Certified Information Security Manager) • GIAC Continuous Monitoring Certification
• CCISO (Chief Information Security Officer) • GIAC Incident Handler
• Lead Auditor ISO 27001 • Global Industrial Cyber Security Professional
• Lead Auditor ISO 20000 (GICSP)
• Lead Auditor ISO 22301 • CAST 612 (Advanced Mobile Hacking & Forensics)
• Risk Management Level 1 • Certified Ethical Hacker
• COBIT v5 • Certified Security Analyst
• ITIL 3 Intermediate Level Certified • Certified EC-Council Instructor
• ITIL 3 Foundation Certified • Certified Network Defender
• ITIL 4 Foundation Certified • eMAPT
• TOGAF v9 Certified
Stakeholder Needs
DRIVE
SCIENCE ART
The IT Life Cycle
The IT Life Cycle
Proses Dekomposisi
Struktur Kebijakan
Dokumen berisi garis-garis haluan tata Kelola apa yang harus, boleh dan tidak
boleh di lakukan.
Policy Contoh : Perusahaan harus memiliki Master Plan Tl dan dijadikan sebagai
acuan di setiap perencanaan dan pengembangan Tl Perusahaan.
Tata Kelola TI
Permen BUMN No. 2
Tahun 2013
Manajemen TI
Infrastruktur
SDM
Struktur Kebijakan
1. Kebijakan strategis:
1.1. Penetapan peran TI BUMN.
1.2. Perencanaan TI.
1.3. Kerangka kerja proses dan organisasi TI.
1.4. Pengelolaan Investasi TI.
1.5. Pengelolaan Sumber Daya TI. 2. Kebijakan Operasional
1.6. Pengelolaan Risiko TI. 2.1. Pengelolaan layanan TI.
1.7. Pengelolaan Proyek (Project Management). 2.2. Pengelolan sekuriti TI.
1.8. Penanganan Kebutuhan dan Identifikasi Solusi 2.3. Pengelolaan layanan pihak ketiga.
(Identify Automated Solution). 2.4. Pengelolaan operasional.
2.5. Pengelolaan mutu.
2.6. Transfer Knowledge.
2.7. Pengelolaan Data Monitor & Evaluasi Kinerja TI.
2.8. Monitor & Evaluasi Pengendalian Internal.
2.9. Pengelolaan compliance external regulation.
Organisasi TI
IT Head
C O B I T
ME1 Monitor and evaluate IT FRAMEWORK
PO1 Define a strategic IT plan.
performance. INFORMATION
PO2 Define the information
ME2 Monitor and evaluate
architecture.
internal control.
Efficiency Integrity PO3 Determine technological
ME3 Ensure compliance with
Effectiveness Availability direction.
external requirements.
Compliance PO4 Define the IT processes,
ME4 Provide IT governance. Confidentiality
organisation and
Reliability relationships.
MONITOR PLAN PO5 Manage the IT investment.
AND AND PO6 Communicate management
EVALUATE ORGANISE aims and direction.
IT PO7 Manage IT human resources.
DS1 Define and manage service RESOURCES PO8 Manage quality.
levels.
PO9 Assess and manage IT risks.
DS2 Manage third-party services.
PO10 Manage projects.
DS3 Manage performance and
capacity.
DS4 Ensure continuous service. Applications
Information
DS5 Ensure systems security. AI1 Identify automated solutions.
Infrastructure
DS6 Identify and allocate costs. People AI2 Acquire and maintain
DS7 Educate and train users. application software.
DELIVER ACQUIRE
DS8 Manage service desk and AND AI3 Acquire and maintain
AND
incidents. SUPPORT IMPLEMENT technology infrastructure.
DS9 Manage the configuration. AI4 Enable operation and use.
DS10 Manage problems. AI5 Procure IT resources.
DS11 Manage data. AI6 Manage changes.
DS12 Manage the physical AI7 Install and accredit solutions
environment. and changes.
DS13 Manage operations.
Metode Pengukuran
Metode Pengukuran
Awareness &
Merupakan kesadaran dan komunikasi terhadap proses-proses TI
Communication
Responsibilities &
Tugas dan tanggung jawab proses TI pada COBIT tercantum dalam Jobdesk TI
Accountability
Goal Setting Terdapat pengukuran berupa KPI ataupun indicator keberhasilan pekerjaan
Measurement terhadap proses TI
Nilai Kematangan Proses Tata Kelola TI
Nilai Kematangan Proses Tata Kelola TI
Analisis Pada setiap Domain
Analysis Pada Setiap Proses
Awareness & Communication
• Perushaan telah memiliki inisiasi akan penting nya perencanaan strategis IT, hal ini dibuktikan dengan
Awareness & Communication adanya kegiatan penyusunan IT Master Plan di tahun 2020.
• Perushaan telah memiliki roadmap IT namun belum terdapat business alignment antara IT dengan
bisnis.
Goal Setting Polices Plan &
Measurement Procedures Policies Plan & Procedures
1 • Sudah terdapat Kebijakan dan Prosedur Rencana Strategis TI, namun pada actual nya prosedur dan
kebijakan tersebut belum berjalan karena tidak adanya dokumen IT Master Plan.
Awareness & Communication Policies, Plan & Procedures Responsibility & Accountability
Tools & Automation Skill & Expertise Goal Setting & Measurement
High Level Implementation Roadmap
IT Governance Workshop
Peserta Workshop
IT Managements
Leaders
IT Staff
IT Governance PIC
Metodologi Workshop & Durasi
needs
• Illustrative, interactive and is
extensive practical experience
• Case Study Material
• Place and accommodation will be
subject to be discussed
Metodologi Workshop & Durasi
needs
• Illustrative, interactive and is
extensive practical experience
• Case Study Material
• Place and accommodation will be
subject to be discussed
Metodologi Workshop & Durasi
PURCHACE Result
Report
Training
Syllabus
Discussion
Development
Job History
Certification
• Technical Consultant at PT Mitra Integrasi Informatika
• Lead Auditor ISO 27001
Sept 2019 – present
• ITIL® Foundation Certificate
• Information System & Audit Development Head at PT.
• Certified Ethical Hacker (CEH) Bank Panin Dubai Syariah
Muhi Budi Noor
• Risk Management – 2nd Level August 2016 – August 2019
Position: Senior Consultant
• Web Application Developers (BNSP) • IT Auditor Dept. Head at PT. Bank Muamalat Indonesia
Experience : 18 Years
Feb 2013 – august 2016
• IT Service Desk Coordinator, Programmer & IT
Operations at PT Bank Bukopin TBK
Feb 2002 – January 2013
Wisnu Aji
EDUCATION: JOB HISTORY:
STMIK Sinar Nusantara (Bachelor’s • ITSM Consultant at PT. Mitra Integrasi
Degree) Informatika (Metrodata Group)