b. Internal Audit Training ISO 37001: 2016 and ISO 27001: 2022 c. Certified Anti-Fraud Manager (CAFM) d. Certified Qualified Internal Auditor (QIA) e. Certified Ethical Hacker (CEH) f. Certified Hacking Forensic Investigator (CHFI) g. BSMR Certification h. Certified in Risk Governance Professional (CRGP) i. Adjunct Life Insurance Expert (AAAIJ) j. Certified Forensic Auditor (CfrA) k. Securities Brokerage Representative (WPPE), Investment Manager Representative (WMI), Securities Underwriting Representative (WPEE) l. Secondment Quality Assurance Program, MR Review and Anti-Fraud Strategy followed by The Internal Audit Business Unit Financial Conglomerate Members (Internal Audit Business Unit of BRI Life, Internal Audit Business Unit of BRI Insurance, Internal Audit Business Unit of BRI Investment Management, SPI Pegadaian, SPI PNM and Internal Audit Business Unit of BRI Finance). m. Secondment Program for preparing Annual Audit Planning (PAT) which was participated by Internal Audit Business Unit of Members of the Financial Conglomeration (Internal Audit Business Unit of BRI Ventures, Internal Audit Business Unit of BRI Finance, Internal Audit Business Unit of BRI Life, Internal Audit Business Unit of BRI Insurance, Internal Audit Business Unit of Bank Raya, SPI PNM, SPI Pegadaian, Internal Audit Business Unit of BRI Investment Management, Internal Audit Business Unit of BRI Danareksa Securities). 10. Implementation of a Workshop on the preparation of Integrated Internal Audit Management Guidelines for the BRI Financial Conglomerate. 11. Preparation of Integrated Internal Audit Business Unit Reports carried out every semester. 12. Implementation of Internal Audit Business Unit benchmarks for Financial Conglomerate Members (Internal Audit Business Unit of Bank Raya and SPI PNM) to Integrated Internal Audit Business Unit (Main Entity). 13. Assessment of the Internal Audit Business Unit maturity level of BRI Financial Conglomerate Members in 2023. 14. Review of Policy, carrying out a review of internal audit policies and procedures for members of the BRI financial conglomerate in accordance with the integrated internal audit charter and the latest regulations. 15. Integrated Governance Self Assessment is carried out every semester. 16. Development of Integrated Governance Applications. 17. Monitoring follow-up actions to improve findings from external audits of members of the BRI financial conglomerate. 18. In order to accelerate the knowledge transfer process from the Integrated Internal Audit Business Unit (Main Entity) to the Internal Audit Business Unit Members of the Financial Conglomerate, BRI Auditors have been placed in the Internal Audit Business Unit Members of the Financial Conglomerate as follows: a. Internal Audit Business Unit of Bank Raya: Head of Group Auditor (1 employee), Auditor (2 employees) b. Internal Audit Business Unit of BRILife: Head of Department (1 employee), Auditor (2 employees) c. Internal Audit Business Unit of BRI Finance: Head of The Internal Audit Business Unit (1 employee), Group Head (2 employees) d. Internal Audit Business Unit of BRI Insurance: Group Head (2 Employees) e. Internal Audit Business Unit of BRI Venture: Head of Internal Audit Business Unit (1 employee) 5. Implementation of Duties and Responsibilities of the Integrated Risk Management Business Unit During 2023, details of the implementation of the duties and responsibilities of the Integrated Risk Management Business Unit are as follows: a. Implementation of the Integrated Risk Management Committee (RMCT) forum 2 (two) times during 2023, namely on February 27 2023 and August 16 2023. b. Determination of the Integrated Risk Appetite Statement (RAS) for Subsidiaries which has been adjusted to the parenting style of each Subsidiary Entity. c. Carry out a self-assessment on the Integrated Risk Maturity Index (RMI) and Subsidiary Companies and then request a decision at the RMCT Forum. d. Submission of Integrated (semesterly) and Consolidated (quarterly) Risk Profile Reports to the Financial Services Authority. e. Monitoring the Maximum Limit for Lending and Provision of Financial Conglomeration Funds periodically. f. Conduct analysis and prepare an Integrated capital adequacy report (semesterly) which is submitted at the RMCT forum and then reported to the Financial Services Authority. g. Carrying out integrated stress test simulations (semesterly) which are then presented at the RMCT forum. h. Coordinating with SKMRT regarding integrated risk management in the following matters: • Modeling loan scoring of Subsidiary Companies • Allowance for Impairment Losses modeling • Subsidiary and Integrated Company Digital Risk Project (Revamp and Scale up Adaptive Digital Risk Management Framework) • Risk culture of Subsidiary and Integrated Companies (Risk Culture Maturity Assessment) i. Implementation of BRI Group In House Training related to the implementation of risk management (digital risk, stress testing, cyber risk) in direct coordination with BRI Corporate University. j. Monitoring improvements to Integrated Risk Management and Subsidiaries in accordance with the Integrated Governance roadmap from PwC Consultants. PT Bank Rakyat Indonesia (Persero) Tbk. Annual Report 2023 787 Corporate Governance
RkJQdWJsaXNoZXIy NTM2MDQ5