IT GRC

Date Posted: Posted12 hari yang lalu
Salary:
Jakarta
Apply Now Whatsapp to Friend Save This Job

Job Description

The IT Governance, Risk & Compliance (GRC) Analyst supports Kitabisa’s IT GRC functions and performs security and risk assessments, user awareness and education, audit support, and regional regulatory compliance (i.e. Kominfo’s PSE, POJK).

The Analyst works with Information Technology, Information Security, Internal and External Audit resources, and the business, to support process documentation and review, reporting and analytics, and developing and maintaining the appropriate records related to policy, procedures, control self-assessments, risk, etc. Incumbent will coordinate with corporate accounting to identify, develop, and maintain a suite of appropriate IT Controls that support the organization's overall Internal Control over Financial Reporting (ICFR). S/he will assist in IT Risk Assessment projects including the identification and documentation of an IT Risk Register, Risk Assessments, Mitigating Controls, Residual Risk, and other related data. In the role

What will you do :
Perform recurring internal security audits

Perform vendor security reviews and evaluate security posture

Ensure business-wide alignment to security and privacy standard methodologies, policies, and procedures

Maintain and disseminate internal infosec policies and procedures

Build and execute training and awareness initiatives for company wide compliance

Who you are

You possess strong technical, analytical, and interpersonal skills

You have experience with internal and external auditors

You have a detailed approach to vulnerability management processes and risk assessments

You have demonstrated success and ability in building policies and optimizing workflow for InfoSec, IT Risk, and Compliance
2-3 years in a similar role executing internal audits & third party vendor assessments

Deep understanding of, and experience with implementing Kominfo’s PSE, POJK and with requirements

Familiarity with security frameworks, particularly NIST Cybersecurity

Framework and the ISO 27001 information security standard

The ability to work well with people from many different disciplines with varying degrees of technical experience

The ability to adapt to a dynamic, rapidly changing business and technical environment

Bonus if you have:
CISA, CRISC, CISM, CISSP, CIPP certifications are a huge plus

Understanding PCI compliance

Experience in a web/mobile technology company is helpful

Related Jobs

  • IT Project Manager

    - Posted30+ hari yang lalu
    Apply Now

    Have a developers background and have good understanding of digital technologies. Collaborate cross-functionally and closely with developers, creative designer,…

  • Baru Head, AirAsia Food

    AirAsia
    - Posted3 hari yang lalu
    Apply Now

    No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place.

  • CSR and Legal Staff

    Cargill
    - Posted30+ hari yang lalu
    Apply Now

    Handle complex clerical, administrative, technical and support audit external (customers, government, certification body) related issues regulation, legal and…

  • -
    Apply Now

  • -
    Apply Now

Job Detail

  • Job Id
    e301869dddf347ab
  • Location
    Jakarta
  • Company
  • Type
    Private
  • Employment Status
    Permanent
  • Positions
    Available
  • Career Level
    Experience
  • Gender
    Male/Female

Contact

Sponsored by

https://www.halokerja.kabardunia.com connects jobseekers and recruiters by accurately matching candidate profiles to the relevant job openings through an advanced 2-way matching technology. While most job portals only focus on getting candidates the next job, Shine focuses on the entire career growth of candidates.

Quick Links
Jobs By Industry
Latest Job
Copyright © 2026 halokerja.kabardunia.com . All Rights Reserved.