IT Governance

Manage your IT Risk and IT Efficiency.

IT Governance enables organisations to drive IT performance improvement and to achieve business and IT strategic alignment, and provides frameworks for value-based decision making for the effective delivery of strategic objectives as well as compliance with relevant industry standards.

How we can help

IT Governance Assessment and Maturity Review

Conduct maturity/ capability level assessment, gap analysis, recommendation, remediation roadmap, and assistance in implementation of IT governance based on best practice standards such as COBIT, ITIL, and other industry standards

Review on the effectiveness & efficiency of internal IT controls

Perform gap analysis and provide recommendation, remediation roadmap, and assistance in updating/ implementing internal IT controls for specific purpose (pre-audit, SoX compliance, ISAE3402, stakeholders’ concerns, etc.) 


IT Due Diligence (ITDD)

Assess IT-related deal risks and opportunities during pre-bid or pre-close stages of an M&A transaction (pre-deal services)

IT Policy and Procedure Review and Update

Perform gap analysis and provide recommendation, remediation roadmap, and assistance in updating/ developing IT policies and procedures

Internal IT Audit outsourcing/co-sourcing

Co-sourcing by providing support to client’s IA in conducting IT internal audit (coaching on the job) and outsourcing by providing dedicated professionals as secondment in client’s IA team

COBIT 2019 Public Course

Provide public courses of COBIT 2019 delivered by the author of COBIT series


IT Regulatory Compliance

Conduct regulatory compliance on IT processes based on regulations, such as: 


  • Government Regulation PP 71/2019: the Implementation of System and Electronic Transaction
  • Minister of SOEs Regulation No. PER-03/MBU/02/2018: Information Technology Management
  • Bank Indonesia Regulation No. 20/6/PBI/2018: Electronic Money

  • Bank Indonesia Regulation No. 18/40/PBI/2016: The Implementation of Payment Transaction Processing

  • OJK Regulation No. 38/POJK.03/2016: The Application of Risk Management in The Use of Information Technology by Commercial Banks, and other regulatory standards
  • OJK Regulation No. 12/POJK.03/2018: Administration of Digital Banking Services by Commercial Banks


Value and benefit to clients

  • Ensure alignment between IT and business strategy
  • Ensure compliance with the regulatory requirements
  • Identification of IT risks, including significant ones to prioritise action plans and mitigation efforts
  • Insights on the latest IT trends, challenges and risks
  • Enhanced IT performance through the implementation of effective IT Risk Management, efficient IT process and maintaining availability of IT services
  • Increase the awareness to safeguard valuable IT assets throughout the organisation
  • Increase stakeholder confidence regarding IT Risk Management
  • Optimise business value through improvement of effectiveness and efficiency of IT management


Contact us



Broader Assurance Services Leader, PwC Indonesia

Tel: +62 21 509 92901

Melissa Gunarto

Melissa Gunarto

Director, PwC Indonesia

Tel: +62 21 509 92901

Follow PwC Indonesia