Article Per Year (5 Year)
p-Index From 2020 - 2025
0.23
P-Index
This Author published in this journals
All Journal Jurnal Penelitian Pendidikan IPA (JPPIPA)
Suarjan
Unknown Affiliation
Agriculture, Biological Sciences & Forestry Biochemistry, Genetics & Molecular Biology Chemical Engineering, Chemistry & Bioengineering Chemistry Education Materials Science & Nanotechnology Physics

Published : 1 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 1 Documents
Search

 1 
Bank Indonesia's It Audit Guidelines For Payment Service Providers In The SME Category: an Integrated ISO 27001:2022 Annex A, and Cloud-Based Solution Architecture Design Suarjan; Soetomo, Moh. A. Amin; Ipung, Heru Purnomo
Jurnal Penelitian Pendidikan IPA Vol 11 No 10 (2025): October: In Progress
Publisher : Postgraduate, University of Mataram

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.29303/jppipa.v11i10.12899

Abstract

Small and Medium Enterprises (SMEs) in Indonesia face significant challenges in complying with Bank Indonesia's (BI) stringent Payment Service Provider (PJPP) licensing requirements, including cybersecurity mandates (BI 23/6/PBI/2021). This study addresses these challenges by designing a cost-effective, cloud-based solution architecture aligned with ISO 27001:2022 Annex A, simplifying compliance for resource-constrained SMEs. This framework helps SMEs prepare for IT audits with guidelines aligned with Bank Indonesia requirements and the ISO 27001:2022 Annex A standard, and replaces complex enterprise architectures with lightweight, cloud-centric models that leverage Indonesian cloud providers while still meeting Bank Indonesia requirements. Validation through a pilot study with SMEs demonstrated lower compliance costs compared to traditional approaches, achieved through open source tools and hybrid cloud deployments. The combination of IT audit guidelines and solution architecture impacted the results of the IT audit, with only a few findings identified by the external auditor and PT XYZ passing the IT audit. This suggests that the conclusions drawn from the results and discussion indicate that this framework has a significant impact on PSPs, particularly at the SME level. The novelty of this research contributes to practical implementation guidelines for SMEs and the design of cloud-based solution architectures that meet Bank Indonesia requirements.
Co-Authors Ipung, Heru Purnomo Soetomo, Moh. A. Amin