Information Security Governance Manager

8 hours ago

Jakarta, Indonesia Hyphen Group Full time

Hyphen Group:
**The Role**:

- As Hyphen Group's Information Security Governance Manager, you will evaluate risks and develop security policies, standards, procedures, guidelines, and controls to manage the organization risks.
- You will improve Hyphen Group's security positioning through process improvement, policy, automation, and the continuous evolution of security capabilities.
- You will be responsible for defining, maintaining critical reporting metrics for technology governance and for ongoing compliance monitoring of key technology related regulatory obligations and requirements.

**If you are**:

- Good at mentoring and enjoy communicating with different stakeholders.
- Remains composed when decisions have to be made quickly.
- Develops and implements new and improved ways of doing work; encourages staff and guide organization and foster a positive security behaviour and posture.

**Responsibilities**:

- As GRC SME you will be working very closely with internal both technical and non-technical stakeholders and you need to be well versed in governance, risk, compliance, and audit background experience.
- Implements processes, such as GRC technology platform to automate/orchestrate and continuously monitor information security controls, compliance, certifications, exceptions, risks, and independent assurance & testing.
- Develop reporting metrics (e.g., risk reporting), dashboards, and evidence artifacts.
- Establishes and oversees the executions of Hyphen Group's policies and standards, governance processes to create reliable solutions to preserve the internal controls, processes, and compliance effectiveness.
- Outline key operational, and program metrics designed to provide transparency of key attributes such as compliance readiness, risk, security framework alignment, program maturity and operations.
- Develop and manage an information security risk register to address risks, issues, and action plans from all sources such as risk identified from technology risk assessments, vendor risk, and risk that may impact the business, etc.

**Experience**:

- A minimum of 8 years of relevant working experience with excellent understanding of information security and security governance, risk and compliance frameworks, methodologies, and practices, preferably in both start-up and enterprise environments.
- Excellent experience defining, revising, and implementing corporate information security policies, standards, processes, guideline, and related regulatory expectations.
- Implementing GRC solutions/platform.
- Experience with various industry frameworks and requirements including NIST framework, ISO 27001, PCI DSS, SOC 2, etc.
- Excellent understanding of regulatory requirements in different markets the organization operates (e.g., MAS, HKMA, FSC, BNM, BSP, BOT).
- Experience working on cloud technology and services.

**Skills**:

- Developing and implementing governance, risk, and compliance strategy, program, and solutions.
- Ability to communicate information security, compliance, and risk related concepts to both technical and non-technical audiences at various levels in the organization.
- Creative, independent with good problem-solving skills
- A Certified in the Governance of Enterprise IT (CGEIT), COBIT 5 Certification qualification, or equivalent certifications.
- Good to have certifications.
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Cloud Security Professional (CCSP)

LI-DN

**What can you expect from us?**

**Impact**: We are actively empowering and connecting people to a better financial future. Join us if you want to help us achieve our mission.

**Work**:We have a team of over 400 talented individuals in 6 markets who are hyper passionate about building innovative financial solutions and making an impact on people's lives.

**Culture**: We take our work seriously but don't hesitate to keep things light. We can only create magic when we have a little bit of fun.

**Thrive**: We launched in 2014 and fast-forward 7 years we now help over 10 million monthly users make the best financial decisions. Accelerate your career and become a pioneer in your field with a leading fintech company that seeks to push the boundaries of your imagination and is committed to growing your career.

**Reputation**: We are backed by world-class organizations and companies and have raised over US$110 million from investors including Experian, Pacific Century Group, IFC - a member of the World Bank Group

**_EEO Statement_**:

  • Information Security Governance Specialist

    1 week ago

    Jakarta, Indonesia Alterra Indonesia Full time

    Safety Measures and Data Recovery Plans Analyze IT specification to assess security risks Design and implement safety measures and data recovery plans Install, configure and upgrade security software Inspect hardware for vulnerable points of access Prepare reports and action plans in the event that a security breach does occur Monitor Network...

  • Information Officer

    2 days ago

    Jakarta, Indonesia GardaWorld Full time

    **Position: Information Officer - Government contract, Indonesia** **Nationality**: Australian **Security Clearance**: Negative Vetting Level 2 (NV2) **Role** The Information Officer **IO** ) role is responsible for maintaining Situational Awareness Services of the Indonesian and regional security environment including: - research and advice regarding...

  • Information Security and Compliance Manager

    7 months ago

    Jakarta, Indonesia Mekari (PT. Mid Solusi Nusantara) Full time

    Mekari is Indonesia's no. 1 Software-as-a-Service (SaaS) company. Our mission is to empower businesses and professionals to progress effortlessly. Our products (Mekari Talenta, Mekari Jurnal, Mekari KlikPajak, Mekari Qontak and Mekari e-Sign that have been used by tens of thousands of businesses in Indonesia. To reach millions, we need more people like you:...

  • Senior Security Engineer

    2 months ago

    Jakarta, Indonesia Global Tiket Network Full time

    We think you also hate when travel app is giving you a headache, right? A slight misinformation can ruin the trip. That is exactly what we are tackling as t-fam! Making sure that our 50+ million users have the best experience in crafting their own adventure. **Your main duties in flying with us**: - Responsible at managing and developing IT policies and...

  • Information Officer

    4 months ago

    Jakarta, Indonesia GardaWorld Full time

    **Position: Information Officer** **Nationality**: Australian **Security Clearance**: Negative Vetting Level 2 (NV2) **Role** The Information Officer (**IO**) role is responsible for maintaining Situational Awareness Services of the Indonesian and regional security environment including: - research and advice regarding the security environment and...

  • IT Governance Section Head

    8 hours ago

    Jakarta, Indonesia AJ Central Asia Raya Full time

    **Requirements**: - Graduate or undergraduate degree in Computer Science or related discipline. - Have at least 3 years of experience in the appropriate field for this position (as IT Governance & Security /IT Auditor/IT Compliance) - Good knowledge of COBIT / TOGAF - IT Service Management such as ITIL - Information Security Management System such as ISO...

  • Chief Information Security Officer

    7 months ago

    Jakarta, Indonesia Influx Inc Full time

    [ This is a 100% work-from-home opportunity ] We are looking to hire a Chief Information Security Officer (CISO) with experience in developing information security strategies, programs of work, and risk management. You will be responsible for protecting Influx from information security risks through the development, implementation, and maintenance of our...

  • Governance & Compliance Administrator

    7 months ago

    Jakarta, Indonesia PT Astra Digital Mobil (mobbi) Full time

    Monitor and evaluate the implementation of information security, data protection and IT governance policies as a whole in the company, as well as ensure that security requirements are fulfilled and complied with. - Supervise and carry out periodic IT security audits to identify security and conformity risks, as well as provide recommendations for...

  • Information Security Analyst

    1 week ago

    Jakarta, Indonesia PT NOOSC SECURITY GLOBAL Full time

    **Kualifikasi**: - Memiliki pengalaman kerja lebih dari dua tahun - Pendidikan strata satu Sistem Komputer/Teknik Komputer - Memiliki pengalaman bekerja lebih dari satu tahun di bidang IT - Mempunyai minat dan kemauan untuk mempelajari teknologi keamanan informasi terbaru - Terbiasa dengan pelaporan, dashboard, dan dokumentasi - Memiliki kemampuan analisa...

  • Information Security Analyst

    1 month ago

    Jakarta, Indonesia PT NOOSC SECURITY GLOBAL Full time

    **Kualifikasi**: - Pendidikan mínimal D3/setara atau jika tidak D3/setara mínimal memiliki Sertifikasi ECIH/CHFI - Memiliki mínimal sertifikasi tentang Security Operator, Pentration Tester, dan/atau Vulnerability Assessment Analyst (misal. CEH, CIHE, dan sejenisnya) - Memiliki pengalaman dalam bidang Incident Response, SOC atau bidang Keamanan Siber...

  • Information Security Analyst

    2 weeks ago

    Jakarta, Indonesia PT NOOSC SECURITY GLOBAL Full time

    L2 (cyber security secrvice) **Kualifikasi**: - **Memiliki pengalaman kerja lebih dari dua tahun** - Pendidikan strata satu Sistem Komputer/Teknik Komputer **- Memiliki pengalaman bekerja lebih dari satu tahun di bidang IT** - Mempunyai minat dan kemauan untuk mempelajari teknologi keamanan informasi terbaru - Terbiasa dengan pelaporan, dashboard, dan...

  • Head of IT Security

    4 days ago

    Jakarta, Indonesia Allianz Indonesia Full time

    Key Responsibilites: - Ensure that the Group information security framework and specific information security requirements are fulfilled; especially by governing the implementation of the security framework and monitoring and reviewing the project resulting processes and mechanisms. - Ensure that Group Standards, its Directives and company specific...

  • Information Security Compliance Manager

    8 hours ago

    Jakarta, Indonesia Hyphen Group Full time

    Hyphen Group: **The Role**: - As Hyphen Group's Information Security Compliance Manager, you will be involved with the Information Security, Data Privacy and Compliance program for all markets that Hyphen Group operates. You will help guarantee our compliance to such standards ISO 27001, SOC 2 and applicable regulations, policies, and guidelines. - You will...

  • Information Security Specialist

    7 months ago

    Jakarta, Indonesia Humana International Full time

    **Job Descriptions**: 1. Facilitate regular sessions and workshops for security members to enhance communication in the region. 2. Understand regional incidents and manage progress of prevention measures in normal stage. In emergency state when set up a contact for appropriate incident management to swiftly handle legal matter. In particular, promptly...

  • Information Security Analyst

    1 week ago

    Jakarta, Indonesia PT NOOSC SECURITY GLOBAL Full time

    **Kualifikasi**: - Memiliki pengalaman kerja lebih dari dua tahun - Pendidikan strata satu Sistem Komputer/Teknik Komputer **- Memiliki pengalaman bekerja lebih dari satu tahun di bidang IT** - Mempunyai minat dan kemauan untuk mempelajari teknologi keamanan informasi terbaru - Terbiasa dengan pelaporan, dashboard, dan dokumentasi - Memiliki kemampuan...

  • Information Security Analyst

    7 months ago

    Jakarta, Indonesia PT NOOSC SECURITY GLOBAL Full time

    **Kualifikasi**: - Pendidikan mínimal D3/setara atau jika tidak D3/setara mínimal memiliki Sertifikasi ECIH/CHFI - Memiliki mínimal sertifikasi tentang Security Operator, Pentration Tester, dan/atau Vulnerability Assessment Analyst (misal. CEH, CIHE, dan sejenisnya) - Memiliki pengalaman dalam bidang Incident Response atau bidang Keamanan Siber mínimal...

  • Information Security Officer

    3 months ago

    Jakarta, Indonesia Hukumonline.com Full time

    Conduct Corporate Information Security Awareness Program & Measurement - Conduct daily basis information security operational - Conduct and run regular training sessions for staff on information security awareness and procedures. - Conduct periodic security audits of the company's technology infrastructure - Ensure the strategy and implementation of...

  • IT Governance, Risk, and Compliance

    7 months ago

    Jakarta, Indonesia Techtiera Services Indonesia Full time

    **Requirements**: - Bachelor's Degree (min GPA: 3.00) - Can work onsite **Key Responsibilities**:As an IT GRC Specialist at [Your Company Name], you will be responsible for: - **Governance Excellence**: Monitoring and evaluating the comprehensive implementation of information security policies, data protection, and overall IT governance within our...

  • Chief Information Security Officer

    4 months ago

    Jakarta, Indonesia Mekari (PT. Mid Solusi Nusantara) Full time

    Mekari is Indonesia's no. 1 Software-as-a-Service (SaaS) company. With our ecosystem of software solutions—including Mekari Jurnal, Mekari Talenta, Mekari Qontak, and Mekari Flex, we aim to facilitate entrepreneurs and leaders as they accelerate the digital transformation of their businesses. In our 10+ years of journey we have reached over 1 Million...

  • Chief Information Security Officer

    3 months ago

    Jakarta, Indonesia Mekari (PT. Mid Solusi Nusantara) Full time

    Mekari is Indonesia's no. 1 Software-as-a-Service (SaaS) company. With our ecosystem of software solutions—including Mekari Jurnal, Mekari Talenta, Mekari Qontak, and Mekari Flex, we aim to facilitate entrepreneurs and leaders as they accelerate the digital transformation of their businesses. In our 10+ years of journey we have reached over 1 Million...