- 192 - Table of Content 3. Treatment aspect, which is focused on aspects of information processing, communicating, reviewing and continuous improvement include: - Guarding the implementation of the review, monitoring and reporting system risk - Coordinating the implementation of Risk Management Audit Implementation Enteprise - Maintaining Continuity Competency Development - Maintaining Consistency Communication and Dissemination - Developing effective implementation of the assessment mechanism Risk Management.

4. Risk Management Competency Development

In 2014, we carried out the development of risk management competencies, including: No. Type of Training Time 1 Governance, Risk Compliance Conference January 2014 2 SOA of Division PO-DC January 2014 3 Portofolio Investment Evaluation February2014 4 Business Process Management BPM for Division February2014 5 Business Continuity Management System BCMS ISO 22301 integrated with ISMS ISO 27001 February2014 6 Enterprise Risk Management Aplikasi ERM Online February2014 7 Revenue Assurance Anti Fraud Management Collaboration March 2014 8 SOA dan Aplikasi ICCA untuk Divisi PO-DC April 2014 9 Creation of Implementation Documentation of BCMS - ISMS ISO 22301 ISO 27001 April 2014 10 Business Financial Analysis April 2014 11 SOA for Manager Unit of Supply Management June2014 12 Lead Auditor ISO 22301 Business Continuity Management System June2014 13 Business Process Management BPM for Wholesale International Business September 2014 14 Revenue Assurance Anti Fraud Management Collaboration September 2014 15 Catastrope Insurance in Asia Conference September 2014 16 New COSO Framework 2013 Internal Control October 2014 17 Expert of Occupational Health and Safety AK3 electricity October 2014 18 Expert of Occupational Health and Safety AK3 Firefighter October 2014 19 Flood Emergency Evacuation Simulation October 2014 20 Financial Modelling November 2014 21 Lead Auditor ISO 20000 IT Service Management December 2014 In addition to undergoing Classical Training, competency development is also achieved through socialization and related workshop on Risk Management in the Office of the Division and its subsidiaries.

5. The Use of Tools Information System

To perform the function of Risk Management, Telkom has equipped the supporting infrastructure by using applications tools information systems, among others: a. Generic Tools Enterprise Risk Management Online ERM Online used by all the units for the management of Risk Assessment b. Specific Tools for managing specific risk, example: 1. Application Fraud Management System FRAMES for the early detection of potential Customer Fraud. 2. i-Library applications which are managed by the Division of Broadband Network and used for an Integrated Management System documentation. 3. SMK 3 Online Application managed by the Security and Safety Unit for the management of Occupational Health and Safety documentation. 4. Security Safety Application is managed by the Security Safety Unit to monitor the management of Physical Security. 5. Telkomcare Application for coordinating the Crisis Management Team. - 193 - Table of Content

6. Effectiveness Assessment of Risk Management Implementation