Strengthening Risk Management in Digital Financial Institutions (A Case Study of PT ABC)
DOI:
https://doi.org/10.24843/EJA.2025.v35.i07.p12Keywords:
COSO ERM, Digital payment, Risk Management, Three Lines ModelAbstract
PT ABC, as a digital financial institution and part of the digital transformation ecosystem in the payment system, is required to implement effective risk management. This study aims to evaluate and provide recommendations for the enhancement of PT ABC’s risk management, utilizing the COSO ERM framework and the Three Lines Model. A case study approach was employed, utilizing data from employee questionnaires and internal company documents. The evaluation indicates that PT ABC’s risk management implementation covers most of the COSO ERM components but remains suboptimal, particularly in process standardization, integration of risk into strategy, and risk communication and reporting. Recommendations for strengthening PT ABC’s risk management include enhancing risk governance, defining a more specific risk appetite, developing human resource competencies, optimizing the use of measurable data, and setting risk indicators to support enterprise-wide risk management.
References
Al-Qudah, A. A., Al-Okaily, M., Alqudah, G., & Ghazlat, A. (2022). Mobile payment adoption in the time of the COVID-19 pandemic. Electronic Commerce Research, 24, 427-451. https://doi.org/ 10.1007/s10660-022-09577-1.
Aulia, R, S. (2024). Evaluation Of Graha Nusantara’s Operational Risk Management Process Using ISO 31000:2018. EKOMBIS REVIEW: Jurnal Ilmiah Ekonomi Dan Bisnis, 12(4). doi:https://doi.org/10.37676/ekombis.v12i4
Aziz, S. and M. Dowling (2019). “Machine Learning and AI for Risk Management”, in T. Lynn, G. Mooney, P. Rosati, and M. Cummins (eds.), Disrupting Finance: FinTech and Strategy in the 21st Century, Palgrave, pp 33-50.
Bank Indonesia. (2024). Blueprint Sistem Pembayaran Indonesia 2030 – Bank Indonesia: Mengakselerasi Ekonomi Digital Nasional untuk Generasi Mendatang. Jakarta: Bank Indonesia.
Bank Indonesia. (2024). Sekilas Sistem Pembayaran di Indonesia. https://www.bi.go.id/id/fungsi-utama/sistem-pembayaran/default.aspx
Bank Indonesia (2021). Peraturan Bank Indonesia Nomor 23/6/PBI/2021 Tahun 2021 tentang Penyedia Jasa Pembayaran.
Bland, E., Changchit, C., Changchit, C., Cutshall, R., & Long, P. (2024). Investigating the components of perceived risk factors affecting mobile payment adoption. Journal of Risk and Financial Management, 17(6), 216. doi:https://doi.org/10.3390/jrfm17060216
BSI. (2018). ISO 31000:2018 – Risk Management Guidelines. UK: BSI Standards Limited
Christian, H. C., & Sitokdana, M. N. N. (2022). Analisis Risiko Teknologi Informasi pada BANK ABC Menggunakan Framework ISO 31000. Jurnal Teknik Informatika dan Sistem Informasi. 9 (1), 735-748.
COSO. (2017). Enterprise Risk Management Integrating with Strategy and Performance. USA: COSO.
COSO. (2015). Leveraging COSO Across the Three Lines of Defense. USA: COSO.
COSO. (2012). Risk Assessment in Practice. USA: COSO.
Dase, B. M. (2020). Exploring the use of risk management by leaders in an arizona credit union (Order No. 27735867). Available from ProQuest Dissertations & Theses Global. (2385683256). Retrieved from https://www.proquest.com/dissertations-theses/exploring-use-risk-management-leaders-arizona/docview/2385683256/se-2
Ellet, W. (2018). The case study handbook: How to read, discuss, and write persuasively about cases. Boston: Harvard Business Press.
Fajri, A. M. & Violita, E. S. (2023). Analisis Manajemen Risiko Bank Syariah Dalam Melakukan Transformasi Digital (Studi Kasus Pada Bank AS). Owner: Riset Dan Jurnal Akuntansi, 7(2), 1249-1258. https://doi.org/10.33395/owner.v7i2.1373
Francis, G. (2024). Relationship of Enterprise Risk Management to the Success of Micro-, Small-, and Medium-Sized Enterprises. Walden Dissertations and Doctoral Studies. 16029. https://scholarworks.waldenu.edu/dissertations/16029
Fraser, J., Quail, R., & Simkins, B. (2024). What’s Wrong with Enterprise Risk Management?. Journal of Risk and Financial Management, 17, 274. https://doi.org/10.3390/jrfm17070274
Giudici, P. & Raffinetti, E. (2021). Explainable AI Methods in Cyber Risk Management. Qual ReliabEng Int., 1–9. https://doi.org/10.1002/qre.2939
IIA. (2020). Model Tiga Lini IIA 2020. Global: The Institute of Internal Auditors.
Khando, K, Islam, M.S., & Gao, S. (2023). The Emerging Technologies of Digital Payments and Associated Challenge: A Systematic Literature Review. Future Internet, 15 (1), 21.
Lam, J. (2017). Implementing Enterprise Risk Management: From Methods to Applications. USA: Wiley.
Mishchenko, V., Naumenkova, S., Grytsenko, A. & Mishchenko, S. (2022). Operational risk management of using electronic and mobile money. Banks and Bank Systems, 17(3), 142-157. doi:10.21511/bbs.17(3).2022.12
Otoritas Jasa Keuangan. (2022). Peraturan Otoritas Jasa Keuangan Nomor 11/POJK.03/2022 tentang Penyelenggaraan Teknologi Informasi oleh Bank Umum.
Otoritas Jasa Keuangan. (2018). Peraturan Otoritas Jasa Keuangan Nomor 13/POJK.02/2018 tentang Inovasi Keuangan Digital di Sektor Jasa Keuangan.
Saunders, M., Lewis, P., & Thornhill, A. (2009). Research Methods for Business Students 5th Edition. Pearson Education.
Sekaran, U. & Bougie, R. (2016). Research Methods for Business: A Skill-Building Approach 7th Edition. Wiley.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2025 E-Jurnal Akuntansi
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
