IT Compliance Security Analyst (Special Project)

Job Description

• Drive the implementation of cyber security policies, technology and tools, and governance processes to create solutions and controls for minimising losses from cyber security issues, emerging risks and regulatory breaches.
• Conduct security risk assessments and define information security requirements on business and technology projects/ processes
• Manage cyber risk during the development of new products and applications, ensuring that risks are mitigated during the development process and prior to production deployment
• Drive the cyber strategy, planning and execution of cyber security solutions for the Bank by reviewing infrastructure/architecture, building cyber roadmap, designing secure solutions, identifying gaps and improving existing processes.
• Manage audit/ regulatory reviews including coordination, communications, and required actions with internal auditors, external auditors, regulators and internal stakeholders as appropriate.

Requirements

• Bachelor’s degree or above in computer science, technology or related disciplines
• At least 5 years of relevant experience in the banking/ financial industry
• Good understanding of Agile/ Waterfall SDLC, security risk assessment and ethical hacking processes
• Familiar with Indonesian regulatory requirements and their impact on IT policies
• Knowledge and expertise of industry Information Security Standards and relevant certifications (ISO 27001, NIST, CISSP, OWASP Top 10 PCI DSS or equivalent)
• English and Bahasa proficiency; Mandarin a plus 
• Strong capability for running multiple tasks simultaneously understanding priority and delivery timeline
• Comfortable with ambiguity and changes in a fast-paced environment