Job Description:

• Be the subject matter expert (SME) on data privacy & relevant security governance (ISO 27001, ISO 27701, PDP, PCI-DSS, GDPR etc).

• Assisting external audit process & conduct yearly company information security compliance.

• Conduct company Information Security Awareness Program & Measurement.

• Conduct weekly basis compliance monitoring & drive continual improvement.

• Managing & resolving risk register (Cyber Security & Fraud Related).

• Supporting compliance needs & daily support.

• Keep up date with government law & regulation related to information security.

• Analyzed effectiveness of fraud prevention & detection

Requirement:

• Minimum Bachelor’s degree (S1) in Information Management, Computer Science, Risk Management, or related fields.

• At least 5 years of experience in Data Governance, Data Protection, Information Security, or Risk Management.

• Understanding ITGC, ISO 27001, ISO 27701, PDP Compliance, GDPR, PCI-DSS, other relevant information security compliance.

• Experience in implementing relevant IT policy and procedure development for Data Governance & Protection.

• Knowledge of risk assessment methodologies (e.g., DPIA, ROPA).

• Understanding of Data Management Frameworks (e.g., DAMA-DMBOK, NIST, COBIT is a plus).

• Good communication & presentation skills

• Understand how the audit process works

• Nice to have certifications: CISA / CISM (Plus Point)

• Skills in office tools (excel, presentation, visio or cloud document utility tools)

• Have knowledge in Threat Intelligence tools / platform (Plus Point)

• Placement in Bandung