Risk Management Policy
Risk Management Policy
Bank Mandiri memiliki Kebijakan Manajemen Bank Mandiri is having Bank Mandiri Risk
Risiko Bank Mandiri (KMRBM) yang dijadikan Management Policy (KMRBM) which is used as
sebagai pedoman utama dalam melaksanakan main guideline in implementing risk management.
manajemen risiko. Untuk area bisnis yang lebih For specific business area, Bank Mandiri has
spesifik, Bank Mandiri memiliki kebijakan dan policies and procedures which more specific, for
prosedur yang lebih khusus, misalnya di bidang example in the fields of credit, treasury, and
perkreditan, treasury, dan operasional. Dalam operational. The policy and procedures set the
kebijakan dan prosedur tersebut, antara lain limits for each activity, both in portfolio level and
diatur mengenai penetapan limit untuk masing- transactional. All policies and procedures
masing aktivitas, baik pada level portofolio implemented by Bank Mandiri is a form of risk
maupun transaksional. Seluruh kebijakan dan management which inherent in every operational
prosedur di Bank Mandiri merupakan bentuk activity of Bank Mandiri and will be evaluated and
pengelolaan risiko yang melekat pada setiap updated at least once a year
aktivitas operasional Bank Mandiri yang
dievaluasi dan di-update minimal sekali dalam
setahun.
Terdapat 4 (empat) komponen utama yang There are four main components that function as
berfungsi sebagai pilar pendukung dalam supporting pillars in the implementation of a two-
penerapan pendekatan two-prong, antara lain: prong approach, among others:
1. Organisasi & Sumber Daya Manusia (SDM) 1. The Organization and Human Resources (“HR”)
Satuan Kerja Manajemen Risiko Bank Mandiri Risk Management Unit of Bank Mandiri is
bertanggung jawab dalam mengelola seluruh responsible for managing all risks faced by Bank
risiko yang dihadapi Bank Mandiri, termasuk Mandiri, including the development of
dalam hal pengembangan tools pendukung supporting tools needed in business processes
yang dibutuhkan dalam proses bisnis dan and risk management. In addition, there is a
pengelolaan risiko. Selain itu, terdapat unit working unit which acts as the counterparty risk
kerja yang bertindak sebagai risk counterpart of every business unit in the process of credit
dari setiap unit bisnis dalam proses four-eye four-eye. Realizing that risk management is the
pemberian kredit. Menyadari bahwa responsibility of entire unit in Bank Mandiri, so
pengelolaan risiko menjadi tanggung jawab the successful of risk management is
seluruh unit kerja di Bank Mandiri, maka determined by risk awareness in all units of the
keberhasilan pengelolaan risiko ditentukan Bank Mandiri which is accompanied by
oleh adanya risk awareness di seluruh unit necessary technical competence. Therefore,
kerja Bank Mandiri yang disertai dengan Bank Mandiri continues to increase the
kemampuan teknis yang memadai. Oleh capabilities and knowledge of all employees,
karena itu, Bank Mandiri senantiasa especially in terms of risk management, by
1
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
meningkatkan kapabilitas dan pengetahuan organizing internal training regularly through
seluruh pegawai terutama dalam hal the Risk Management Academy.
pengelolaan risiko, dengan Moreover, Bank Mandiri regularly at least once
menyelenggarakan pelatihan internal secara a year conduct socialization, discussion forums,
rutin melalui Risk Management Academy. internships, as well as risk management
Selain itu, Bank Mandiri juga secara rutin program in line with the internalization of the
minimal sekali dalam setahun mengadakan corporate culture. Risk Management Unit at
sosialisasi, forum diskusi, magang, maupun Bank Mandiri consists of Retail Risk Directorate
program mengenai manajemen risiko yang which chaired by
sejalan dengan internalisasi budaya SEVP Retail Risk, Risk Directorate chaired by
perusahaan. Unit Risk Management di Bank SEVP Wholesale Wholesale Risk and Risk
Mandiri terdiri dari Direktorat Retail Risk Management Directorate Chaired by the
dipimpin oleh SEVP Retail Risk, Direktorat Director of Risk Management & Compliance.
Wholesale Risk dipimpin oleh SEVP
Wholesale Risk dan Direktorat Risk
Management dipimpin oleh Direktur Risk
Management & Compliance.
2
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
metodologi pengelolaan risiko di Bank as the Internal Control Systems.
Mandiri, serta Sistem Pengendalian
Internal.
Kebijakan Manajemen Risiko ini menjadi This Risk Management Policy became the basis
dasar atas penyusunan prosedur dan for the preparation of procedures and technical
petunjuk teknis terkait dengan pengelolaan guidance related to risk management at Bank
risiko di Bank Mandiri. Mandiri.
3
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
mengimplementasikan ERM system sebagai computation of capital charge (Standardized
sarana untuk memantau pengelolaan risiko Approach and the Advanced Approach), the
secara keseluruhan, terutama dalam implementation of operational risk
menghitung modal untuk mencegah semua management tools, active portfolio
jenis risiko. ERM system memiliki kapabilitas management, stress testing and value-based
untuk melakukan perhitungan capital charge management.
(Standardized Approach dan Advanced
Approach), implementasi operational risk
management tools, active portfolio
management, stress testing dan value-based
management.
4
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
Capital Adequacy Assessment Process (ICAAP).
5
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
strategi dimaksud.
e. Direksi memantau kondisi internal dan e. The BOD monitors the internal and external
perkembangan kondisi eksternal, conditions to ensure the execution of the
memastikan penetapan strategi Bank Bank strategy has taken into account the risk
telah memperhitungkan dampak risiko impacts and ensure that the line units have
dan memastikan Bank memiliki satuan the authority and responsibility that support
kerja yang memiliki kewenangan dan the formulation and monitoring of strategy
tanggung jawab yang mendukung implementation, including the corporate
perumusan dan pemantauan pelaksanaan plan and business plan.
strategi termasuk corporate plan dan
business plan.
f. Direksi menetapkan prosedur kaji ulang f. The BOD establishes the procedure for
yang memadai terhadap akurasi adequate review on the accuracy of risk
metodologi penilaian risiko, kecukupan assessment methodology, risk management
implementasi sistem informasi information system implementation
manajemen risiko, dan kebijakan prosedur adequacy, as well as risk limit and procedure
dan limit risiko. policy
2. Kecukupan Kebijakan, Prosedur dan 2. The Adequacy of Policy, Limit Establishment and
Penetapan Limit Procedure
a. Penerapan Manajemen Risiko di Bank a. Risk Management application at Bank
Mandiri didukung dengan kerangka yang Mandiri is supported by a framework that
mencakup kebijakan dan prosedur covers policies and procedures for Risk
Manajemen Risiko serta limit Risiko yang Management and risk limits which are clearly
ditetapkan secara jelas sejalan dengan defined in line with the vision, mission and
visi, misi, dan strategi bisnis Bank. business strategy of the Bank
b. Bank memiliki kebijakan dan prosedur b. Bank Mandiri has written policies and
tertulis yang memenuhi prinsip procedures that fulfill the principles of
transparansi, peningkatan kualitas transparency, improving service quality
pelayanan nasabah & stakeholders dan towards customers and stakeholders, and
kebijakan tersebut juga harus sejalan the policy must comply with the prevailing
dengan peraturan perundang-undangan legislation.
yang berlaku.
c. Kebijakan manajemen risiko bank disusun c. Bank Mandiri risk management policies are
sesuai dengan misi, strategi bisnis, prepared according to the Bank’s mission,
kecukupan permodalan, kemampuan SDM business strategy, capital adequacy, human
dan risk appetite Bank. resource capacity and risk appetite.
6
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
d. Bank melakukan evaluasi dan pengkinian d. Bank Mandiri conducts evaluation and
kebijakan manajemen risiko dengan updates the risk management policies by
mempertimbangkan perkembangan taking into consideration development in
kondisi internal dan eksternal. internal and external conditions.
e. Penetapan limit risiko telah memadai, e. The establishment of risk limits, which
yang meliputi limit per produk/transaksi, include limits per product/transaction, per
per jenis risiko dan per aktivitas fungsional type of risk and per functional activity, has
dan melakukan limit monitoring secara been sufficient and monitoring limit is
periodik. carried out periodically.
7
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
intern dalam penerapan Manajemen systems into Bank Risk Management
Risiko Bank dengan mengacu pada application in reference to the established
kebijakan dan prosedur yang telah policies and procedures.
ditetapkan.
b. Terdapat penetapan wewenang dan b. There are delegation of authority and
tanggung jawab pemantauan kepatuhan responsibility for monitoring the compliance
kebijakan, prosedur dan limit. with the policies, procedures and limits.
c. Bank menetapkan jalur pelaporan dan c. There are clear reporting line and separation
pemisahan fungsi yang jelas dari satuan of functions between operational line units
kerja operasional kepada satuan kerja and line units assuming control functions.
yang melaksanakan fungsi pengendalian.
d. Bank memiliki prosedur yang cukup untuk d. Bank Mandiri has established sufficient
memastikan kepatuhan bank terhadap procedures for ensuring compliance with the
ketentuan. prevailing laws.
e. Bank melakukan kaji ulang yang efektif, e. The Bank conducts an effective, independent
independen, dan obyektif terhadap and objective review of the policies,
kebijakan, kerangka dan prosedur framework and procedures for Bank
operasional Bank yang dapat ditingkatkan operations of which the frequency/intensity
frekuensi/intensitasnya, berdasarkan of these procedures can be improved based
perkembangan eksposur Risiko Bank, on the risk exposure, market movements,
perubahan pasar, metode pengukuran, measurement methods and risk
dan pengelolaan Risiko. management.
f. Satuan kerja audit intern Bank melakukan f. Internal Audit line unit conducts the audit on
audit secara berkala dengan cakupan yang a regular basis with adequate coverage,
memadai, mendokumentasikan temuan documenting the findings and the
audit dan tanggapan manajemen atas management’s feedbacks on audit results
hasil audit, serta melakukan review and reviewing the follow-up on such
terhadap tindak lanjut temuan audit. findings.
g. Penjelasan yang menyeluruh mengenai g. A comprehensive description of the risk
faktor-faktor risiko serta upaya untuk factors and efforts to manage each risk may
mengelola masing-masing risiko dapat also be consulted in the Overview of
dilihat pada bagian Tinjauan dan Kondisi Business Support Functions, in Risk
Usaha mengenai Risk Management. Management section.
8
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
Pilar sebagai berikut: Pillars Principles as follows:
1. Pengawasan aktif Dewan Komisaris dan 1. Active Control of Board of Directors and Board
Direksi Dewan Komisaris dan Direksi Bank of Commissioner Board of Commissioners and
Mandiri memahami risiko - risiko yang Board of Directors of Bank Mandiri are fully
dihadapi Bank dan memberikan arahan yang aware of risks which are encountered by Bank
jelas, melakukan pengawasan dan mitigasi and they provide a clear direction, performing
secara aktif serta mengembangkan budaya monitoring and mitigation proactively as well
manajemen risiko. Dewan Komisaris as developing the risk management culture.
menjalankan fungsi pengawasan risiko (risk Board of Commissioners runs it risk oversight
oversight) melalui Komite Pemantau Risiko, function through the Risk Monitoring
Komite Tata Kelola Terintegrasi, dan Komite Committee, Integrated Governance
Audit. Dewan Direksi menjalankan fungsi Committee, and Audit Committee. Board of
kebijakan risiko (risk policy) melalui Commissioners runs its risk policy function
Executive Committee terkait Manajemen through Executive Committee related to Risk
Risiko yaitu Risk Management Committee, Management, i.e. Risk Management
Asset & Liability Committee, dan Integrated Committee, Asset and Liability Committee, and
Risk Committee. Integrated Risk Committee.
2. Kecukupan Kebijakan, Prosedur dan 2. Policy Adequacy, Procedure and Determination
Penetapan Limit Penerapan Manajemen of Limitation Implementation of Risk
Risiko di Bank Mandiri didukung dengan Management in Bank Mandiri is espoused with
kerangka yang mencakup kebijakan dan a framework which covers Risk Management
prosedur Manajemen Risiko serta limit risiko policy and procedure as well as the risk limit
yang ditetapkan secara jelas dan sejalan which is clearly determined and in line with the
dengan visi, misi, dan strategi Bisnis Bank vision, mission and Bank’s Business strategies
serta peraturan perundang-undangan yang as well as compliance with the applicable laws
berlaku. Penetapan limit risiko telah and regulations.
memadai, yang meliputi limit per produk/ An adequate limitation of risk has been set up
transaksi, perjenis risiko, dan per aktivitas which encompasses the limitation applied on
fungsional dan melakukan limit monitoring each product/transaction, each type of risk,
secara periodik. and each functional activity and performing a
periodic limit monitoring.
9
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
risiko. Identifikasi risiko bersifat proaktif, carried out proactively, encompassing all
mencakup seluruh aktivitas bisnis Bank dan Bank’s business activities and carried out for
dilakukan dalam rangka menganalisa the purposes of analyzing sources and
sumber dan kemungkinan timbulnya risiko possibility of risk emergence along with
beserta dampaknya terhadap Bank. impacts on Bank.
Bank telah memiliki sistem pemantauan Bank has maintained a proper risk exposure
eksposur risiko yang memadai, meliputi monitoring system covering the availability of
adanya fungsi independen yang melakukan the independent functions which carry out
pemantauan terhadap eksposur risiko monitoring the risk exposure regularly,
secara rutin, adanya sistem informasi yang providing an accurate and punctual
akurat dan tepat waktu, dan adanya information system, and further
feedback beserta tindak lanjut perbaikan/ maintenance/improvement.
penyempurnaan.
4. Sistem Pengendalian Intern Yang 4. Bank implements an internal control system in
Menyeluruh Bank melaksanakan sistem the application of Bank Risk Management by
pengendalian intern dalam penerapan referring to the specified policy and
Manajemen Risiko Bank dengan mengacu procedures. Bank has also arranged authorities
kepada kebijakan dan prosedur yang telah and responsibilities for monitoring compliance,
ditetapkan. Bank memiliki penetapan policy, procedure, and limit. Internal units of
wewenang dan tanggungjawab pemantauan Bank Mandiri carries out the appropriate
kepatuhan, kebijakan, prosedur, dan limit. periodic audits, preparing documentation of
Satuan kerja audit intern Bank melaukan audit findings and management responses on
audit secara berkala dengan cakupan yang audits results as well as arranging interviews
memadai, mendokumentasikan temuan on further action over audits findings.
audit, dan tanggapan manajemen atas hasil
audit, serta melakukan review terhadap
tindak lanjut temuan audit.
MANAJEMEN RISIKO TERINTEGRASI INTEGRATED RISK MANAGEMENT
Bank melakukan Penerapan Manajemen Risiko Implementation of Risk Management is performed
dengan Perusahaan Anak yang dimulai secara by Bank with its Subsidiaries Companies gradually
bertahap sejak tahun 2008 sesuai dengan which was commenced since 2008 compliance
ketentuan Regulator. Penerapan Manajemen with provisions of the Regulatory Body. The
Risiko Terintegrasi dilakukan dengan integrated Risk Management is realized with its
Perusahaan Anak yang beroperasi baik di Subsidiaries Companies operating their business
Indonesia maupun di Luar Wilayah Indonesia either within Indonesia or overseas by keep
dengan tetap memenuhi prinsip-prinsip complying with the Risk Management principles
Manajemen Risiko dan disesuaikan dengan and in accordance to the local authoritative/
10
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
yurisdiksi otoritas/pengawas setempat, serta supervisory jurisdiction as well as taking into
mempertimbangkan karakteristik bisnis masing- account a specific business of the respective
masing Perusahan Anak. Penerapan tersebut subsidiary company. That implementation
merupakan salah satu inisiatif strategik unit constitutes one of the strategic initiatives of the
kerja manajemen risiko di Bank dan secara risk management unit in Bank and it will
berkala dikomunikasikan kepada Regulator. periodically be communicated to the Regulatory
Body.
Secara umum inisiatif-inisiatif mengenai Generally, the initiatives in term of risk
penerapan manajemen risiko di Bank dan management application in Bank and its Subsidiary
Perusahaan Anak dibagi menjadi 2 (dua) bagian Companies consists of two (2) main parts as
besar, yaitu sebagai berikut: follows:
1. First Line, inisiatif-inisiatif yang dilakukan 1. First Line, in this part, the initiatives which are
berkaitan dengan proses konsolidasi yang taken relating to the consolidation process
mencakup antara lain mengenai laporan which covers among others, concerning
keuangan, perhitungan permodalan financial statements, minimum capital
minimum, penilaian kualitas aktiva, calculation, assets quality assessment, Legal
monitoring Batas Minimum Pemberian Lending Limit monitoring, Subsidiary
Kredit (BMPK), pengelolaan Perusahaan Companies management, periodic reports
Anak, laporan berkala yang memuat containing risk profiles and an overall liquidity
mengenai profil risiko, dan penilaian tingkat assessment.
kesehatan secara menyeluruh.
2. Second Line, yang lebih merupakan 2. Second Line, this part is a general internal
pendekatan kebutuhan internal Bank secara needs approach covering tools, awareness,
keseluruhan yang mencakup perangkat governance and management information
(tools), kesadaran risiko (awareness), tata system. This approach is realized by among
kelola perusahaan (governance), dan sistem others synchronization of the monitoring tools
informasi manajemen (system). Pendekatan periodically which encompasses fund
tersebut diwujudkan antara lain dengan investment of subsidiary companies,
penyelarasan perangkat monitoring secara consolidated liquidity growth, simulation of
berkala yang mencakup investasi dana persistence against several risks in dealing with
perusahaan anak, perkembangan likuiditas extreme conditions, credit portfolio growth,
gabungan, simulasi ketahanan beberapa and development of the Integrated Risk
risiko dalam menghadapi kondisi ekstrim, register (IRR) as a single database in the daily
perkembangan portfolio kredit, dan risk management application.
pengembangan Integrated Risk Register
(IRR) sebagai single database dalam
pengelolaan risiko sehari-hari.
11
KEBIJAKAN MANAJEMEN RISIKO RISK MANAGEMENT POLICY
PT Bank Mandiri (Persero) Tbk. PT Bank Mandiri (Persero) Tbk.
Dalam rangka peningkatan pemahaman In making efforts to increase the awareness in
dalam penerapan Manajemen Risiko di Bank implementation of Risk Management in Bank
dan Perusahaan Anak, pada tahun 2015 and Subsidiary Companies, in 2015 has been
telah diselenggarakan forum diskusi setiap held a quarterly discussion forum to discuss
triwulanan yang mencakup pembahasan technical aspects, the Integrated Risk
yang bersifat teknis, Rapat Integrated Risk Committee Meeting (IRC) which was attended
Committee (IRC) yang dihadiri oleh Direktur by Risk Management Director of Bank and
Manajemen Risiko Bank dan Perusahaan Subsidiary Companies, implementation of Risk
Anak, pelaksanaan Risk Awareness Survey Awareness Survey (RAWS) o measure the risk
(RAWS), untuk mengukur tingkat awareness level in Subsidiary Companies, and
pemahaman risiko di Perusahaan Anak, dan training for using Risk Management Tools in
pelatihan penggunaan Risk Management line with the Subsidiary Companies’ needs. For
Tools sesuai dengan kebutuhan Perusahaan the purposes of the daily governance Bank has
Anak. Untuk mengatur mengenai tata kelola arranged the Mandiri Subsidiaries Principal
pelaksanaan sehari-hari, Bank telah Guideline (MSPG) which one of its substances
menyusun Mandiri Subsidiaries Principal is to cover the implementation of the risk
Guideline (MSPG) yang salah satu itemnya management with Subsidiary Company.
mencakup penerapan manajemen risiko
dengan Perusahaan Anak
12