Skip to main content
DTI

RESOURCES · MIGRATION CHECKLIST

Migration Checklist: SMS OTP → FIDO2 for POJK 11/2022 Compliance.

A practical, phased checklist for moving admin logins and critical-system access off SMS OTP onto phishing-resistant FIDO2 hardware keys — aligned with POJK 11/2022 IT risk-management principles. Covers assessment, pilot, SSO integration, rollout, and audit evidence.

Built forBanking & enterprise IT security, risk, and compliance teams
FormatPDF · 2 pages · EN/ID
PublishedJune 2026

Get the checklist

Tell us where to send it — a specialist may follow up.

Reply within 1 business day · Your data is protected (UU PDP)

What's inside

  • Risk assessment: which accounts & systems are most exposed to account takeover
  • Mapping to POJK 11/2022 principles (strong authentication, critical-system access)
  • Step-by-step FIDO2 (YubiKey) pilot plan for admins & executives
  • SSO integration: M365 / Google Workspace / core banking
  • Backup-key, recovery, and offboarding policy
  • Audit evidence & documentation for OJK assessors

Want a tailored walkthrough instead?

Our specialists can walk your team through the same regulatory mapping live — typically faster than waiting for the PDF.

Schedule a discussion

Tell us what you need. We'll help find the right solution.

Share your business challenge, existing system, or transformation target. The DTI team will help map the most realistic next step.

Download the checklist (PDF)View solutions
Chat via WhatsApp