IT Governance & Risk Compliance Sr. Specialist – Back Office

Job Description

Tasks and Responsibilities :

• Be the subject matter expert (SME) on data privacy & relevant security governance (ISO 27001, ISO 27701, PDP, PCI-DSS, GDPR etc).
• Assisting external audit process & conduct yearly company information security compliance.
• Conduct company Information Security Awareness Program & Measurement.
• Conduct weekly basis compliance monitoring & drive continual improvement.
• Managing & resolving risk register (Cyber Security & Fraud Related).
• Supporting compliance needs & daily support.
• Keep up date with government law & regulation related to information security.
• Analyzed effectiveness of fraud prevention & detection

Requirements :

• Minimum Bachelor’s degree (S1) in Information Management, Computer Science, Risk Management, or related fields.
• At least 5 years of experience in Data Governance, Data Protection, Information Security, or Risk Management.
• Understanding ITGC, ISO 27001, ISO 27701, PDP Compliance, GDPR, PCI-DSS, other relevant information security compliance.
• Experience in implementing relevant IT policy and procedure development for Data Governance & Protection.
• Knowledge of risk assessment methodologies (e.g., DPIA, ROPA).
• Understanding of Data Management Frameworks (e.g., DAMA-DMBOK, NIST, COBIT is a plus).
• Good communication & presentation skills
• Understand how the audit process works
• Nice to have certifications: CISA / CISM (Plus Point)
• Skills in office tools (excel, presentation, visio or cloud document utility tools)
• Have knowledge in Threat Intelligence tools / platform (Plus Point)
• Placement in Bandung