Protection Of The Key Data For The Sustainability Of The Financial Sector In The Digital Age

JAKARTA In the midst of the heavy development of information and digital, data protection is one of the crucial things that must be managed properly by financial services actors.

Data protection is one of the keys to the sustainability of the business and operations of financial services actors in the country.

Departing from these challenges, Infobank Digital, which is part of Infobank Media Group with Synology, held INFOBANK CONNECT: Financial Inclusion 5.0 Building a Data Protection System Through Digital Technology at Ritz Carlton, Jakarta, September 24, 2025.

The event presents the keynote speech of Acting Head of the Financial Conglomeration Supervision Department of the Financial Services Authority (OJK) Yudi Permana.

Then continued the talk show session with speakers Lily Wongso, Head of Enterprise IT Architecture, Data Management & Service Quality Group PT Bank Central Asia, and Clara Hsu, Country Manager of Synology Inc, which is moderated by Alfons Tanujaya, IT Observer and Cyber Security.

In his presentation, Yudi highlighted the massive cyber attacks that spiked after the COVID-19 pandemic.

Throughout 2024, there were 330.5 million cyber attacks in Indonesia, with the financial sector in fourth position as the main target.

"Sejak COVID-19 terasa sekali bagaimana insiden siber meningkat, karena ada kebutuhan masyarakat untuk transaksi digital," ungkap Yudi.

OJK, said Yudi, has issued a number of policies to support banks in serving customers digitally.

However, cyber threats continue to grow, while public awareness of digital security is still not evenly distributed.

"OJK expects banks to always educate their customers. Because understanding cyber attacks and data protection are still the weakest points," he said.

In addition to education for customers, Yudi also highlighted the security gap within the bank.

According to him, cyber attacks often enter through systems and lack of employee understanding regarding the importance of data protection.

For this reason, the understanding of bank employees regarding cyber threats and the importance of data security needs to be increased.

Meanwhile, according to Lily, the importance of the data backup system is prevention and recovery in overcoming the threat of cyber attacks.

In addition, BCA also routinely conducts annual exercise on important applications, especially those related to business funding.

This step is in line with the Regulation of the Financial Services Authority (POJK) 11/2022 and the OJK Circular (SEOJK) 29/2022 which regulates the implementation of information technology, governance, and cyber risk management in banks.

On the other hand, despite building a layered defense system, Lily admits that no banking institution is completely immune from the risk of database data.

Data leak incidents can have a major impact, both in terms of financial and reputational losses. BCA implemented an NIST cybersecurity framework that focuses on five main steps: identity, protection, detector, response, and recover.

"So if something happens, we are ready how to respond and how to recover," he concluded.

Strategy To Strengthen Data Protection

On the same occasion, Clara shared tips for the financial industry to strengthen data protection and build cyber resilience.

Clara said, Synology emphasizes that backup is only the first step in data protection.

The backup must be fully restored, resilient to attacks, and protected against ransomware, Clara explained.

He explained that Synology offers a layered security approach that includes security in terms of access to control who can access data, security from the side of the system to close gaps in hardware and software.

Furthermore, data security is to maintain data integrity through encryption, irreversible copies, and storage at different locations.

Synology also recommends a 3-2-1-1-0 backup strategy: having three copies of data in two different media, one stored outside the site, one copy offline or unreversible, and ensuring zero errors during recovery.

In this way, financial institutions can recover faster than cyber incidents without disrupting operations.

'Backup is just the first step. Data protection means ensuring data can be recovered, remains intact, and is managed centrally with proactive strategies," concluded Clara.