LATIK SPBE

In alignment with President Prabowo Subianto’s vision emphasizing the acceleration of digital transformation in public services, Information and Communication Technology (ICT) audits have become a critical element to ensure that government digital systems operate effectively, efficiently, and purposefully. The current administration promotes inclusive and sustainable digitalization across all public service sectors, emphasizing transparency, efficiency, and accountability as core pillars.

One of the government’s digital platforms is the Electronic-Based Government System (SPBE), implemented by both central and regional government institutions. In this context, the ICT Audit Institution (LATIK) plays a strategic role in assessing the performance of digitalization initiatives in public institutions and providing recommendations based on national standards to support rapid and impactful digital bureaucratic reform.

PT TÜV NORD Indonesia, as an accredited ICT Audit Institution (LATIK) by the National Accreditation Committee (KAN) and registered with the National Research and Innovation Agency (BRIN) through the LATIK Information System (SiLATIK), offers professional, objective, and reliable SPBE audit services—particularly for application and infrastructure scopes. The presence of LATIK is regulated under BRIN Regulation No. 1 of 2024, forming part of a strategic policy to enhance ICT governance within central and local government agencies.

The SiLATIK system is designed to ensure that the accreditation and registration processes for audit institutions are transparent, accountable, and structured, as outlined in official BRIN publications. Through this system, BRIN ensures that only high-quality and competent institutions, in accordance with national standards, are authorized to audit the implementation of SPBE. This supports the national digital transformation agenda as mandated by Presidential Regulation No. 95 of 2018 on SPBE and is further backed by the Ministry of Administrative and Bureaucratic Reform (PANRB) and the Ministry of Communication and Digital (Komdigi).
 

The scope of external SPBE audits by accredited and registered LATIK institutions includes the following: Technical standards for SPBE application audits cover:

1. SPBE Application Governance
Evaluates the frameworks for regulating, directing, and controlling integrated SPBE implementation across all components.

2. SPBE Application Management
Covers assessments of the following stages:

• SPBE application planning;
• SPBE application development;
• SPBE application operations.

3. SPBE Application Functionality
Assesses the application's ability to provide functions that meet user needs under specified conditions, focusing on:

• Functional completeness;
• Functional correctness;
• Functional appropriateness.

4. SPBE Application Performance
Evaluates the resources used by the application under specified conditions, including:

• Access time;
• Data utilization;
• Data and information sharing capacity.

5. Other SPBE Aspects
Includes changes in legislation and national policies related to SPBE.

The technical standards for infrastructure and application audits are based on the Head of BRIN Decree No. 161/I/HK/2024 concerning Evaluation Criteria for SPBE Infrastructure and Application Audits.

The SPBE infrastructure audit includes:

• Functionality of services in the National Data Center, intra-government networks, and interconnectivity systems;
• Performance of these services provided by the National Data Center, intra-government networks, and interconnectivity systems.

• Obtaining and evaluating objective evidence related to ICT assets;
• Enhancing performance, assessing compliance with technical standards and regulations, and mitigating risks associated with technology use;
• Determining the level of conformity of ICT with established criteria and applicable laws and regulations.

External SPBE audits conducted by LATIK, including those by PT TÜV NORD Indonesia, are targeted at:

1. Central Government Institutions including ministries, non-ministerial government agencies, secretariats of state and non-structural institutions, and other public agencies.
2. Regional Governments at the provincial, regency, and city levels that implement electronic-based governance systems.

Audits may be initiated upon request or assignment from relevant institutions or regulators. The objective is to evaluate, assess, and recommend improvements to SPBE implementation.

SPBE audits by PT TÜV NORD Indonesia are conducted based on the following national regulations and policies:

1. Presidential Regulation No. 95 of 2018 on Electronic-Based Government Systems (SPBE), the legal basis for SPBE implementation in government institutions.
2. Ministry of Communication and Informatics Regulation No. 16 of 2022, governing ICT audits and evaluations for improving electronic public services.
3. BRIN Regulation No. 1 of 2024, establishing standards and procedures for SPBE infrastructure and application audits.
4. BRIN Decree No. 190/I/HK/2024, on Conformity Assessment Schemes for SPBE Infrastructure and Application Audits.
5. BRIN Decree No. 161/I/HK/2024, outlining audit evaluation criteria for SPBE infrastructure and applications.

These regulations serve as a robust foundation for both internal and external SPBE audits, ensuring audit quality, valid recommendations, and the legitimacy of audit institutions in the national SPBE framework.

Based on Kominfo Regulation No. 16/2022 and BRIN Regulation No. 1/2024, SPBE audits provide strategic benefits to central and regional institutions, including:

1. Obtaining and evaluating objective evidence related to ICT assets;
2. Enhancing performance, assessing compliance with technical standards and regulations, and mitigating risks associated with technology use;
3. Determining the level of conformity of ICT with established criteria and applicable laws and regulations.