Senior IT Grc

3 weeks ago

Jakarta, Indonesia Amartha Full time

About the Role

The Senior IT GRC and Data Privacy Analyst plays a crucial role in Amartha. You will be the warrior who will spearhead various IT GRC and Data Privacy programs to protect Amartha from internal and external threats, including monitoring and managing compliance with ISO 27001, POJK, PSrE, PDP, and other applicable regulations.

About the team

The Information Security team in Amartha is a group of dynamic, highly-analytical individuals who are highly mindful in driving security and privacy by design within the various aspects of product lifecycle and engineering processes. We are the team who are highly passionate to be the security enabler of Amartha’s systems

Job Desc/What will you do

GRC Framework Development and Maintenance:

- Develop, implement, and maintain a comprehensive GRC framework that aligns with industry best practices and regulatory requirements.
- Conduct regular risk assessments to identify potential threats and vulnerabilities.
- Develop and implement risk mitigation strategies and action plans.
- Monitor and report on compliance with internal policies and external regulations.

Data Privacy Compliance:

- Ensure compliance with applicable data privacy regulations and data protection laws.
- Conduct data privacy impact assessments (DPIAs) for new projects or initiatives.
- Develop and implement data privacy policies and procedures.
- Manage data breaches and incidents, including notification processes and remediation activities.

Vendor Management:

- Assess the security and privacy practices of third-party vendors and suppliers.
- Negotiate and manage vendor contracts to ensure compliance with security and privacy requirements.

Regulatory Compliance:

- Stay up-to-date with evolving regulatory requirements and industry best practices.
- Provide guidance and support to the organization in meeting compliance obligations.

Identity and Access Management (IAM):

- Develop and maintain IAM policies, standards, and procedures.
- Implement and manage IAM systems and tools (e.g., identity provisioning, access control, single sign-on).
- Ensure the effective administration of user accounts and privileges.
- Conduct regular IAM audits and reviews to identify and address security gaps.
- Manage access certifications and segregation of duties controls.

**Requirements**:
**Requirements**:

- 5+ years of related job experience
- Strong analytical and interpersonal skills
- Excellent communication both in written and spoken (English)
- Ability to express information clearly at different organizational levels
- Strong understanding of industry standards such as ISO 27001, NIST Cybersecurity Framework, GDPR, UU PDP
- Experience in the financial services industry (esp. Microfinance, Payments, etc)
- Having relevant certification are preferable (e.g. CRISC, CIPP, etc)
- Experience with IAM technologies and frameworks (e.
- g., Active Directory, LDAP, OAuth, SAML)

  • Head of Cyber Security

    4 months ago

    Jakarta, Indonesia WeNetwork Asia Full time

    GRC - Security **About the company**: Our client is a leading FMCG company based in Indonesia with a long history and brands that are both locally produced and exported into international markets. They are currently market leaders in the key categories they compete in with extensive manufacturing operations. **Key Responsibilities**: - Develop and...

  • IT Grc Senior Staff

    4 months ago

    Jakarta, Indonesia AJ Central Asia Raya Full time

    The IT GRC will ensure the appropriate and robust governance polices, processes and controls are developed, kept up to date and adhered to. - Align and translate business objectives into security activities to ensure business objectives are reflected in security objectives, policy, and procedures - Develop, maintain, and present Enterprise Architecture and...

  • IT Specialist

    4 months ago

    Jakarta, Indonesia WeNetwork Asia Full time

    IT Team Lead - GRC - Project Management - OJK **About the Company** Our client is Indonesia’s fastest growing Fintech Unicorn company, leading payments and financial services platform in Indonesia by providing a range of financial products and services, including its mobile wallet, to both individuals and SMEs - Plan, organize and implement the company's...

  • Senior IT Auditor

    4 months ago

    Jakarta, Indonesia Moladin Full time

    Moladin is seeking a talented and experienced Senior IT Auditor to join their team. As a rapidly growing company, Moladin is committed to using technology to simplify the transaction process and provide a better customer experience. The Senior IT Auditor will be instrumental in helping Moladin achieve this goal by performing audits of the company's IT...

  • Senior IT Auditor

    4 months ago

    Jakarta, Indonesia Moladin Full time

    Moladin is seeking a talented and experienced Senior IT Auditor to join their team. As a rapidly growing company, Moladin is committed to using technology to simplify the transaction process and provide a better customer experience. The Senior IT Auditor will be instrumental in helping Moladin achieve this goal by performing audits of the company's IT...

  • Security Delivery Lead

    4 months ago

    Jakarta, Indonesia DXC Technology Full time

    Security Delivery Lead is the account's security interface to the client, for governance, delivery and specific operational levels. The SDL is accountable for managing the delivery of security services and governing security controls delivered by other DXC Capability teams. - Develop a deep relationship with the client based on trust, delivery and execution...

  • Data & IT Management - Senior Engineer

    1 week ago

    Jakarta, Indonesia IT Group Indonesia Full time

    Provide database support services at all times to ensure continuous system availability. - Assist in design, development and implementation of database systems. - Performs database upgrades and migrations to support IT projects. - Optimize database systems for performance and operational efficiency. - Perform data back -up and archival on a regular basis. -...

  • Platform Technology

    1 week ago

    Jakarta, Indonesia IT Group Indonesia Full time

    Provide services to customers at all times to ensure continuous system availability. - Assist in implementation, Troubleshoot and Update of linux systems. - Assist in implementation, Troubleshoot and Update of Container Platform. - Optimize systems for performance and operational efficiency. - Troubleshoot and resolve issues related to the systems. - Provide...

  • Senior, IT Architect

    4 months ago

    Jakarta, Indonesia IT Business Solutions Sdn Bhd Full time

    You have: Vast experience and exposure in one or more of these primary domains - BSS Core, CRM, Billing, Middleware and Integration, Touchpoint and Channels, Data Analytics, Enterprise Support System, Distribution and Supply Chain, Partner and Revenue Assurance, and Cloud Infrastructure. cyber security and agile development, with the ability to design,...