1 / 34

Internet

A. Core Banking System. ON/2. 3 rd Party. Router. 1. Infrastruktur IT BRI: DC. Switch. Proswitching. www.bri.co.id. Mail. DNS. Mainframe. ISP A. Firewall. Switch + balancer. application. IPS. AS400. Switch + balancer. Router. SSL Accelerator. IDS. Switch. Internet.

tammy
Télécharger la présentation

Internet

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. A. Core Banking System ON/2 3rd Party Router 1. Infrastruktur IT BRI: DC Switch Proswitching www.bri.co.id Mail DNS Mainframe ISP A Firewall Switch + balancer application IPS AS400 Switch + balancer Router SSL Accelerator IDS Switch Internet balancer IPS COM+ Firewall Firewall IDS IPS Router Web BRINETS Database Anti DDoS Router Switch + balancer Switch + balancer Firewall PSTN ISP B 3rd Party Unit Kerja Divisi TSI - KP BRI CONFIDENTIAL 1

  2. A. Core Banking System 2. TOPOLOGI Jaringan Komunikasi Data BRI Divisi TSI - KP BRI

  3. A. Core Banking System 3. Network Configuration:KANWIL, PUSDIK/Sendik, KANINS • Sistem : VSAT SCPC, 128 kbps Divisi TSI - KP BRI

  4. A. Core Banking System 4. Network Configuration: KANCA, KCP, Unit • Sistem : VSAT TDM/TDMA Broadband • Kecuali : KC Mangga Dua dan KC Hayam Wuruk (Frame Relay)‏ KANCA KCP Unit Divisi TSI - KP BRI

  5. A. Core Banking System 5. Network Configuration: KC Mangga Dua & KC Hayam Wuruk • Sistem : Frame Relay Divisi TSI - KP BRI

  6. A. Core Banking System 6. Plaza/Mall NETWORK CONFIGURATION • Sistem : VSAT TDM/TDMA ATM Divisi TSI - KP BRI

  7. A. Core Banking System 7. VSAT SCPC - Equipment • FUNGSI MASING-MASING EQUIPMENT • VSAT SCPC • Outdoor Unit (ODU)‏ • Antena Parabola • Feed Horn + LNA • RFT (SSPA, Up/Down Converter)‏ • IFL Cable • Indoor Unit (IDU)‏ • Modem Satelit • Router • PABX Divisi TSI - KP BRI

  8. A. Core Banking System 8. VSAT TMD/TDMA BROADBAND - Equipment • FUNGSI MASING-MASING EQUIPMENT • VSAT TDM/TDMA BROADBAND • Outdoor Unit (ODU)‏ • Antena Parabola • ODU (Feed Horn, LNB, SSPA, Up/Down Converter)‏ • IFL (Inter Facility Link) Cable • Indoor Unit (IDU)‏ • IDU (Modem + Router)‏ • VAP • PABX Divisi TSI - KP BRI

  9. A. Core Banking System Penerapan Model Coprehensive Banking Systems “Customer Centric “ Sumber: “Summary of BoD Decision”, Laporan PSC-AA pada Steering Committee (Jakarta,1997) Divisi TSI - KP BRI

  10. Management Support System Core Banking System Banking Delivery Channels MIS: • Financial System • Fixed Asset System • HR System DSS: • Risk Management • A&L Management • Profitability Analysis CRM: • Integration Across Access Point • Profile Management • Content Management • Customer Centric Process CIF System Retail System: - Loan - Deposits Wholesale System: - Trade Finance - Treasury / Trading GL System Credit Card System Syariah Customer Delivery Channel: • Branch & Sub-branch • Micro • STU • ATM • Call Centre (PB)‏ • POS/EFT • Internet Banking • Mobile Banking Corporate External Links: • RTGS • SWIFT • MasterCard & MDS • Network ATM Bersama • Network ATM Link • Bill Payments (Telkom, Satelindo, IM3, SMS, Mentari, Simpati, Listrik, Satelindo, Pajak, etc)‏ • Pertamina • Bapertarum A. Core Banking System 9. BRI Future Plan - Banking System Architecture BRI MANAGEMENT CUSTOMER Middleware System Middleware System Core Banking System,Banking Delivery Channels, & Network Infrastructure should the most critical components to the Bank. Therefore, they should have the highest protection in term of the DR Project. Network Infrastructure (WAN)‏ Hardware Infrastructure Divisi TSI - KP BRI

  11. Core Banking System: 10. Bank BRI’s Logical Application Interdependency Dealing Room System STU e-Mail Server System Pabean BRINETS Front-End (Web Based)‏ SWIFT EDI Cash Mgmt. (Web Based)‏ Central Bank OPICS File Report Distribution SAP (HRM, FAM)‏ Nostro Vax BRINETS Web Server RTGS BRINETS Front-End (Non-Web)‏ BRINETS Silverlake System (CIF, CD, LN, TF, DD, GL)‏ Surat Berharga Custodian Recon Syariah SVS Data Warehouse Dep.Agama Siskohat Appl.Switching (Proswitching)‏ Phone Banking Call Centre Bapertarum BANKNET MasterCard ATM Monitoring BRI ATM ATM & POS/EFT Switching (ON2 System)‏ CardLink NCR MIP MDS POS / EDC Bright & Smart Simpati PT.SYB (Listrik)‏ SMS Mentari Telkom MM ATM Bersama ATM Link Pajak Telkomsel Satelindo IM3 Divisi TSI - KP BRI

  12. LEGEND: No Effect Problem Partial Impact Full Impact A. Core Banking System 11. Illustrative Disaster Impact Scenario without DRC facility - Problems on BRINETS STU e-Mail Server System Pabean without stand in balance at Proswitching BRINETS Front-End (Web Based)‏ SWIFT EDI Cash Management Central Bank OPICS File Report Distribution SAP (HRM, FAM)‏ Nostro Vax BRINETS Web Server RTGS BRINETS Front-End (Non-Web)‏ BRINETS Silverlake System (CIF, CD, LN, TF, DD, GL)‏ Surat Berharga Custodian Recon Syariah SVS Data Warehouse Dep.Agama Siskohat Appl.Switching (Proswitching)‏ Phone Banking Call Centre Bapertarum BANKNET MasterCard ATM Monitoring BRI ATM ATM & POS/EFT Switching (ON2 System)‏ CardLink NCR MIP MDS POS / EDC Bright & Smart Simpati PT.SYB (Listrik)‏ SMS Mentari Telkom MM ATM Bersama ATM Link Pajak Telkomsel Satelindo IM3 Divisi TSI - KP BRI

  13. B. Continuity Operation 1. BCP & DRP/IT Contigency Plan • To involve the business divisions in the process for Business Contingency and assist IT to provide systems to support the on-going operations during disaster scenario. Areas Covered by an Business Continuity Plan (Adapted from a NIST Special Publication)‏ Current Project Divisi TSI - KP BRI

  14. B. Continuity Operation 2. IT Contigency Plan Objectives Short Term Objective: • Build DRC site with adequate supporting infrastructure • Standardize Roles & Responsibilities of DC and DRC Operation • Develop a tested Disaster Recovery SOP for Core Banking Systems (BRINETS with the associated network system) based on DRP • Ability to switch the operation of Core Banking System (BRINETS with the associated network system) to the DRC site within 4 hours whenever the Production Core Banking System at the DC is unavailable, and switch back to HQ within 4 hours Long Term Objective: • Be able to continue the IT services even if the main Production Environment is unavailable, for whatever reason • Ability to recover all systems as fast as possible • Ability to recover all systems as close to the original state as possible Divisi TSI - KP BRI

  15. SO ke- Bulan Tahun Objectif RPO Lokasi Transaksi Transaksi Test Durasi Test I Maret 2004 Untuk memastikan kemampuan host BRINETS DC-DRC dapat melakukan synchronization dan switch over ke DRC dengan lancar dengan melakukan verifikasi integrity data DC-DRC, fokus pada accountability proses switching serta kesiapan infrastruktur dan CBS BRINETS di DRC sebagai Disaster Recovery Site. 8 jam 45 menit (1:45– 10.30 WIB). RPO dihitung sejak mimix enabled setelah real batch selesai dan stand in server enabled: take over DC. Kanca Tabanan (Bali). • Account Inquiry, • Matching Report, • Print Snapshot Statement. 1 jam (14:00-15:00 WIB). II September 2004 Untuk memastikan kemampuan host BRINETS DRC dapat berfungsi sebagai host production khusus untuk transaksi ATM dan unit kerja pengguna BDS BRINETS. 6.5 Jam (3:50-10:20 WIB). RPO dihitung sejak mimix enabled setelah real batch selesai dan stand in server enabled: taking over DC. • 1 KC BDS (Tabanan). • 1 Unit BDS (Kediri Tabanan). • 1 ATM. • Acct Inquiry, • Matching Report, • Print Snapshot Statement. • Trx ATM 7 jam (13:35-20:35 WIB). III Agustus 2006 Untuk memastikan kemampuan host BRINETS DRC dapat berfungsi sebagai host production khusus untuk transaksi perbankan baik menggunakan BDS maupun web eBank pada Kantor-kantor cabang. Sinkron jam 15:33 WIB). RPO tidak dapat dihitung krn starting penghitungan RPO tidak ditentukan krn mimix tetap enable pada waktu EOD. -1 KC BDS -1 Unit web -1 ATM Lebih dari 30 variasi trx SO-II 3 jam (16:15-19:15 WIB)‏ IV Agustus 2007 Untuk memastikan kemampuan Host BRINETS DRC dapat berfungsi sebagai Host Production melayani Transaksi ATM SELINDO dan untuk memastikan infrastruktur web eBank yang ada di DRC dapat digunakan. Tidak dihitung. Test plan SO dimulai saat DC-DRC sinkron online, dan saat skedul EOD DC normal akan dimulai. - ATM SELINDO -2 KC BDS -1 KCPBDS -1Unit BDS -3 Unit web • 4544trx ATM/PSW trx ke host DRC. • variasi inquiry. -1 jam ATM SELINDO -2 jam BRINETS DRC. V February 2008 Untuk memastikan kesiapan DRC sebagai DR site host CBS:BRINETSuntuk mendukung kesinambungan operasional IT BRI di DC: aplikasi BRINETS dan produk berkartu, untuk melayani transaksi live dari berbagai unit kerja BRINETS: KC BDS, KCP BDS, Unit BDS, Unit Web SELINDO, dari SMS banking dan seluruh ATM BRI dan bank lain yang bekerja sama dengan BRI, seluruh merchant yang melayani BRI Card, dan kartu bank lain yang bertransaksi di ATM BRI, serta transaksi BRINETS yang berkaitan dengan Pihak-III (khusus pembayaran BBM ke Pertamina melalui unit kerja BRI). Tidak dihitung. Test plan SO dimulai saat DC-DRC sinkron online, dan saat skedul EOD DC normal akan dimulai. • 172 Unit kerja BRINETS (KC, KCP, Unit) SELINDO. • ATM BRI SELINDO, • Phone Banking, • SMS Banking, • ATM kerjasama, dan merchant • Pembayaran BBM Pertamina via uker BRI • Seluruh jenis transaksi financial Sepanjang hari Sabtu (setara hari kerja )‏ B. Continuity Operation 4. Catatan Test Plan 15 Divisi TSI - KP BRI

  16. B. Continuity Operation 5. Test Plan SwitchOver BRINETS DC-DRC (1/2)‏ Workflow Normal Host Operations DC Divisi TSI - KP BRI

  17. B. Continuity Operation 5. Test Plan SwitchOver BRINETS DC-DRC (2/2)‏ Workflow Switch Over Host Operations Divisi TSI - KP BRI

  18. B. Continuity Operation 6. Organization Structure (Conceptual Design) for DR • CEO / President Director • Director of Operational • GM of IS/IT (TSI)‏ • GM of Banking Operation • Deputy GMs TSI ITCSC IT Contingency Steering Committee Risk Management Team. Information and Support Audit Intern Team ITCMT (IT Contingency Management Team)‏ Manager of Technical Support & Infrastructure (DTI)‏ Manager of Application Dev (PAC, PAB, PAH, PAK)‏ Manager of IT Operations (OSD)‏ Head of Building Facility Management Manager of IS Security (PSS)‏ Manager of IT Help Desk (SLG)‏ Head of Building Security Guards Manager of Insurance / Legal Building Emergency Coordinator Manager of Public Relation / Information Manager of Banking Operation Reporting and Information Bank Medical Support Coordinator Manager of Human Resources Emergency Public Support Teams Operation Support Teams Building Emergency Evacuation Team Emergency Medical Support Team Police Department (Polda Metro Jaya)‏ City Fire Department Damage Assessment Team Salvage Team Recovery & Restoration Team Administration Support Team Divisi TSI - KP BRI

  19. B. Continuity Operation 8. Aktivasi DRC BRI Bali • DRC BRI Bali resmi operasional (Direksi BRI): 5 Desember 2003. • Disaster Recovery Center (DRC) BRI: • merupakan suatu pusat penanggulangan darurat sistemTeknologi Informasi (TI) yang diperlukan sebagai sistem penanggulangan sementara untuk menanggulangi kejadian atau bencana (disaster) yang mengakibatkan terhambatnya dan/atau tidak berfungsinya proses pengelolaan sistem TI utama di Kantor Data Center, yang digunakan untuk mendukung kegiatan operasional perbankan BRI. Divisi TSI - KP BRI

  20. B. Continuity Operation 9. Perangkat IT Terpasang Divisi TSI - KP BRI

  21. Continuity Operation 10. Definisi Disaster • Berdasarkan Penyebab • Berdasarkan Kategori “People Existence” & “System Technology Existence” Divisi TSI - KP BRI

  22. Continuity Operation 11. Siklus Prosessing Data pada CBS:BRINETS Day-2 Day-1 Illustration 24:00 24:00 24:00 X X X X X X X X X SOD Begins SOD Begins Close Branches Close Branches ATM-Day Environment Begins ATM-Night Environment Begins ATM-Day Environment Begins ATM-Night Environment Begins Kondisi Disaster dapat terjadi kapan saja diantara Processing Cycle Backup Before EOD Completes Backup Before EOD Completes Backup After EOD Completes Backup After EOD Completes EOD Begins EOD Completes EOD Completes EOD Begins Divisi TSI - KP BRI

  23. Day-2 Day-1 24:00 24:00 24:00 No Periode waktu pada Siklus Prosessing Data Perkiraan Periode Waktu Durasi Waktu 1 Antara "Open Branch" dan "Close Branch 03:30 AM - 21:00 PM 18 Jam 2 Pada waktu proses "ATM Shifting to Night Mode" 21:00 PM - 21:15 PM 15 Menit 3 Pada waktu proses "Backup Before EOD" 21:15 PM - 22:15 PM 1 Jam SOD Begins SOD Begins Close Branches Close Branches 4 Pada waktu proses Real EOD sedang berjalan 22:15 PM - 01:45 AM 3,5 Jam 5 Pada waktu proses 'Backup After EOD" 01:45 AM - 02:45 AM 1 Jam 6 Pada waktu proses "ATM Shifting to Normal Day Mode" 02:45 AM - 03:00 AM 15 Menit ATM-Day Environment Begins ATM-Day Environment Begins ATM-Night Environment Begins ATM-Night Environment Begins Backup Before EOD Completes Backup Before EOD Completes Backup After EOD Completes Backup After EOD Completes EOD Begins EOD Completes EOD Completes EOD Begins • Continuity Operation 12.Fokus pada 6 Siklus Prosessing Data u/ Disaster Events(1/2)‏ Masing masing dari Processing Cycle diatas mempunyai karakteristik yang berbeda dalam hal posisi datanya sehingga untuk penjelasan penanganan disasternya dilakukan secara terpisah. Divisi TSI - KP BRI

  24. Continuity Operation 14. Batas Penentuan Service Level (1/2) Sample Matrix Batas Penentuan Service Level dalam Penyelesaian Masalah TI dalam menentukan perlunya “DRC Activation”. Divisi TSI - KP BRI

  25. Continuity Operation 14. Batas Penentuan Service Level (2/2) Sample Matrix Batas Penentuan Service Level dalam Penyelesaian Masalah TI dalam menentukan perlunya “DRC Activation”. Note: Matrix ini dapat lagi disempurnakan jika masing masing konfigurasi sistem yang rusak dapat dirinci lagi kedalam item item yang lebih detil misalkan: Master Switch, Modem, Router, dsbnya. Hal ini dapat dibantu oleh masing masing Vendor IT yang terkait. Divisi TSI - KP BRI

  26. Continuity Operation 15. Incident/Problem Mgmt vs. Disaster Recovery Mgmt. Gambaran Umum (cont’)Aktifitas Utama Inform Disaster Organization Team • Switch over Network & Communication to DRC Site • Perform required operational activities • Reconcile Data 1 • Perform Recovery Activities on the damage items 2 3 • Perform Assessment • Prepare Assessment Report 5 5 4 6 - Decide Recovery Strategy • Issue Instruction Letter • Switch Network and Communication back to DC Site • Synchronize Data • Reconcile Data Divisi TSI - KP BRI

  27. Continuity Operation 16. PERMASALAHAN, KENDALA & STRATEGI BIDANG TSI (1/2)‏ a. DRM IT BRI mendefinisikan tipe dari “IT Outage” ke dalam 4 Level: • Alert Level (bagian dari Incident Management)‏ • Level-1 (Unsolved Problem dari Alert Level – bagian dari Problem Management)‏ • Level-2 (Unsolved Problem dari Level – 1, situasi yang dapat membuat environment di DC dalam situasi kritis– Emergency State)‏ • Level-3 (Highly Emergency State - Catastrophic Event)‏ IT Outage yang dapat mengaktifkan formal IT Contingency Plan adalah saat Outage pada Level 2 & Level 3. • Disaster pada non-catastrophic event (Kriteria Level-2): • Kegagalan fungsi kerja AC di DC yang melampaui maximum SLA • Power outage di DC yang melampaui maximum SLA • Permasalahan server yang tidak terselesaikan (misal: hostBRINETS) melampaui maximum SLA • Permasalahan aplikasi (misal: aplikasi BRINETS) yang melampaui maximum SLA • Kegagalan Network dan Telecommunication (misal: Enterprise LAN, Central WAN, Switching, and VSAT) yang melampaui maximum SLA • Disaster pada catastrophic event (Kriteria Level-3): • Gedung DC kebakaran. • Bencana alam (seperti: gempa bumi, badai, dll.) yang berdampak pada area DC • Aksi teroris misal: peledakan bom di gedung DC)‏ • Huru-hara (misal: perusakan, pembakaran gedung)‏ • Mogok pekerja (misal menyebabkan: perusakan, System Shutdowns, Walkout, dsb.)‏ 27 Divisi TSI - KP BRI

  28. Continuity Operation 16. PERMASALAHAN, KENDALA & STRATEGI BIDANG TSI(2/2)‏ d. OFF LINE Unit Kerja BRINETS dapat disebabkan oleh: • Kerusakan pada BDS server KC, KCP, Unit (BDS)‏ • Kerusakan pada perangkat komunikasi di lokasi (VSAT, MPLS)‏ • UPS di lokasi rusak • Genset di lokasi rusak • Terhentinya layanan dari provider karena: • pergantian perangkat, • kerusakan perangkat, • maintenance, • power down (belum tersedianya Genset saat pemadaman listrik di POP: Point of Presece)‏ • Kapasitas perangkat pendukung jaringan komunikasi di BRI (DC) sudah tidak mendukung dengan terus bertambahnya unit kerja BRINETS on line. Solusi Permasalahan di Unit Kerja BRINETS, dengan: • Antisipasi: penganggaran kebutuhan perangkat. • Peningkatan kapasitas bandwidh (Kanca = 128 KBPS; Unit=64 KBPS/ VSAT –MPLS)‏ • Penggandaan perangkat (redundancy)‏ RAPAT DEWAN KOMISARIS – DIREKSI BRI 23 JULI 2008 28 Divisi TSI - KP BRI

  29. BRINETS Control & Progress Total Unit Kerja BRINETS: 1.115 = 326 KC + 185 KCP + 604 Unit (Status: 01/02/06)‏ Divisi TSI - KP BRI

  30. ATM Control Total Unit ATM : 1.133 (Status: 01/02/06)‏ Divisi TSI - KP BRI

  31. b. DATA CENTER : Transaksi Teller dalam Bulan Agustus ‘08 Divisi TSI - KP BRI

  32. b. DATA CENTER : Transaksi Teller dalam 12 bulan terakhir Divisi TSI - KP BRI

  33. b. DATA CENTER : Transaksi ATM dalam 12 bulan terakhir Divisi TSI - KP BRI

  34. Lanjutkan Divisi TSI - KP BRI

More Related