We are looking for an experienced and knowledgeable IT Security Governance to join our Security Engineer team. You will be responsible for the management and advances of our security policies, standards and procedures.
- Ensure the strategy and implementation of information security in accordance with the needs & applicable regulations
- Develop an information security framework and architecture in accordance with the company's needs
- Develop and maintain policies, standards, and procedures that support the information security framework in accordance with best practices and applicable regulations.
- Actively identify, analyze, measure, provide control recommendations, and monitor follow-up on risk control & information security.
- Carry out regular evaluations of the implementation of IT security management policies, standards and procedures.
- Lead and support compliance efforts with regulatory requirements (e.g., OJK, ISO 27001, PCI DSS).
- Collaborate closely with Product, Engineering, Legal, and HR teams to embed security into our culture and workflows.
- Monitor and report on security metrics, incidents, and policy deviations.
Requirements
- Minimum Bachelors degree of Information Technology
- 3+ years experience in security governance, compliance, IT audit, or a related field.
- Strong understanding of security frameworks and regulatory requirements (especially in the fintech or financial services industry).
- Familiar with Security compliance or assessment tools
- Excellent communication and stakeholder management skills.
- Experience working cross-functionally in fast-paced environments.
- Familiar and able to implement and lead various best practices & regulations for IT Security & Cyber Security such as ISO 27000, CIS, NIST, GDPR, etc.
- Required: Certification as ISO 27001 Lead Implementer or ISO 27001 ISMS Lead Auditor.
Benefits
- Supportive teammates
- Health insurance benefits
- Self development activities that support careers
- Broaden your knowledge in financial investment