Deskripsi Pekerjaan
Are you a seasoned IT Security professional passionate about shaping the digital defense and compliance landscape of a dynamic financial tech environment? Dwi Cermat Indonesia is looking for a strategic IT Security & GRC Lead/Manager to join our team in Jakarta. In this pivotal role, you will be the guardian of our organizational integrity, ensuring that our infrastructure is resilient against cyber threats while maintaining full alignment with regulatory standards in the financial sector.
You will lead initiatives to bridge the gap between complex technical requirements and business objectives. We are seeking a visionary leader who can navigate the intricacies of IT Governance, Risk Management, and Compliance (GRC) while fostering a security-first culture across the company. If you thrive on solving high-stakes challenges and are ready to elevate our information security framework to the next level, we invite you to apply.
Tanggung Jawab
- Develop, implement, and maintain comprehensive IT security policies, standards, and procedures.
- Lead organizational efforts to achieve and maintain compliance with financial industry regulations (OJK, ISO 27001, PCI-DSS).
- Conduct regular IT risk assessments and security audits to identify vulnerabilities and business impact.
- Oversee the Information Security Management System (ISMS) and coordinate with internal/external auditors.
- Manage incident response planning and execute periodic security drills to ensure business continuity.
- Provide strategic oversight on IT security projects, ensuring alignment with corporate technology roadmaps.
- Advise executive management on emerging cyber threats and recommend proactive mitigation strategies.
Kualifikasi
- Bachelor’s degree in Computer Science, Information Systems, or a related field.
- Minimum of 3+ years of professional experience in IT Security, IT GRC, or IT Auditing within the banking or financial services sector.
- Strong understanding of cybersecurity frameworks (NIST, COBIT, ISO 27001).
- Proven track record in managing compliance projects and interacting with regulatory bodies.
- Relevant certifications such as CISA, CISSP, CISM, or CRISC are highly preferred.
- Exceptional analytical skills with the ability to translate complex technical data into actionable business insights.
- Excellent communication skills in both Bahasa Indonesia and English to interact with diverse stakeholders.