IT Business Continuity ManagementPHE sebagai Subholding Upstream merupakan entitas bisnis yang sangat erat dengan regulasi dan berisiko tinggi, seperti bencana alam, keselamatan kerja, fluktuasi harga minyak dunia, ataupun serangan siber. Penerapan ISO 22301:2019 Business Continuity Management System (BCMS) merupakan salah satu Langkah meminimalkan risiko tersebut dengan fokus utama untuk memastikan proses bisnis penting dapat terus berlangsung saat terjadi kondisi darurat. Fungsi IT memiliki peran penting dalam menjaga keberlangsungan bisnis, termasuk dalam hal mengidentifikasi dan mengelola risiko yang tekait dengan teknologi, seperti risiko siber, ancaman malware, atau kegagalan perangkat keras, yang dapat mengancam bisnis Perusahaan. Oleh karena itu, Fungsi IT merancang dan mengimplementasikan sistem pemulihan bencana (Disaster Recovery Plan) yang memungkinkan infrastruktur TI dan bisnis impact analysis yang telah dikaji oleh setiap fungsi bisnis saat terjadi kondisi disaster. Fungsi IT membangun IT Business Continuity Management dengan:1. Pembentukan tim IT Readiness for Business Continuity(ITR4BC) Team sebagai tim keberlangsungan layanan Teknologi Informasi, yang ditandatangani oleh VP IT pada 5 Desember 2023.2. Pembentukan Tim Implementasi dan Pengelolaan Business Continuity Management System (BCMS) Fungsi IT, yang ditandatangani oleh VP IT pada tanggal 13 Februari 2024.3. Dokumen Sistem Manajemen Keberlangsungan Bisnis (SMKB) Fungsi IT, yang terdiri dari:%u2022 RA (Risk Assessment %u2013 terkait Proses Bisnis Penting dan Genting).%u2022 BIA (Business Impact Analysis).%u2022 DRA (Disruptive Risk Assessment).%u2022 BCS (Business Continuity Strategy) yang terdiri dari opsi-opsi strategi IT. 4. Sistem Tata Kerja (STK) berupa TKO (Tata Kelola Organisasi) berkaitan dengan Pengelolaan Aktivasi dan Simulasi Disaster Recovery Plan (DRP).5. Dokumen Konsolidasi Business Impact Analysis fungsi bisnis PHE.6. Dokumen DRP Roadmap.7. Kegiatan Simulasi IT DRP yang dilakukan sebanyak 4 (empat) kali sepanjang tahun 2024, berupa:a. Simulasi Disaster Recovery Plan (DRP) pada bulan Maret 2024 dan Desember 2024.b. Simulasi Call Tree pada 5 September 2024.c. Simulasi Table Top pada 1 Oktober 2024. Pencapaian hasil untuk Business Continuity Management System adalah keberhasilan PHE dalam memperoleh sertifikat ISO 22301:2019 dari Badan Sertifikasi BSI pada tanggal 30 Oktober 2024. IT Business Continuity ManagementPHE as an Upstream Subholding is a business entity that is very closely related to regulations and is at high risk, such as natural disasters, work safety, fluctuations in world oil prices, or cyber attacks. The implementation of ISO 22301:2019 Business Continuity Management System (BCMS) is one of the steps to minimize these risks with the main focus on ensuring that important business processes can continue during an emergency. The IT function has an important role in maintaining business continuity, including in identifying and managing risks related to technology, such as cyber risks, malware threats, or hardware failures, which can threaten the Company's business. Therefore, the IT function designs and implements a disaster recovery system (Disaster Recovery Plan) that allows IT infrastructure and business impact analysis that has been reviewed by each business function when a disaster occurs.The IT function builds IT Business Continuity Management by:1. Formation of the IT Readiness for Business Continuity (ITR4BC) Team as an Information Technology service continuity team, signed by the VP IT on December 5, 2023.2. Establishment of the IT Function Business Continuity Management System (BCMS) Implementation and Management Team, signed by the VP IT on February 13, 2024.3. IT Function Business Continuity Management System (BCM) Document, which consists of:%u2022 RA (Risk Assessment %u2013 related to Critical and Critical Business Processes).%u2022 BIA (Business Impact Analysis).%u2022 DRA (Disruptive Risk Assessment).%u2022 BCS (Business Continuity Strategy) which consists of IT strategy options.4. The Work Procedure System (STK) in the form of TKO (Organizational Governance) is related to the Management of Disaster Recovery Plan (DRP) Activation and Simulation.5. Consolidated Document of Business Impact Analysis of PHE business functions.6. DRP Roadmap Document.7. IT DRP Simulation activities will be conducted 4 (four) times throughout 2024, in the form of:a. Disaster Recovery Plan (DRP) simulation in March 2024 and December 2024.b. Call Tree Simulation on September 5, 2024.c. Table Top Simulation on October 1, 2024.The achievement of the results for the Business Continuity Management System is PHE's success in obtaining the ISO 22301:2019 certificate from the BSI Certification Body on October 30, 2024.0102030405 Good Corporate Governance Tata kelola Perusahaan0607 PT Pertamina Hulu Energi 623