GRC Specialist
Indonesia - Jakarta, Green Office Park 1
Traveloka
Explore the world & live life your way. Best prices for hotels, flights, & attractions. Plan your own perfect trip.View all jobs at Traveloka
It's fun to work in a company where people truly BELIEVE in what they're doing!
Job Description
Establish and maintain information security policies, standard, guidelines, procedures and controls to ensure they meet with the company's risk appetite and compliance with applicable regulatory and legal requirements as well as industry standard
Enforce information security policies, standard, guidelines, procedures and controls implementation
Ensure and improve compliance such as PCI DSS, ISO/IEC 27001, and other information security related compliance, law and regulation
Manage and perform end to end risk assessments for various Information systems, services and processes
Act as a Subject Matter Expert (SME) for trending IT GRC and Information Security topics
Maintain expertise on security trends through training, research and development in order to mitigate potential security threats
Develop, promote and monitor our corporate wide Information Security awareness and Training Program
Collaborate and work closely with other stakeholders
Take ownership end to end of assigned projects
Identify and contribute to process improvements
Requirements
3-5 years of relevant professional experience is preferred
Have a good understanding about threat, vulnerability, impact and risk and their implementation on business processes
Demonstrable examples In-depth knowledge with as many as the following law, regulations, frameworks, and/or industry standards: COBIT, ISO/IEC 27000-series, PCI/DSS, NIST SP 800-53/30, GDPR, PDPA, UU ITE, UU PDP, etc
Demonstrated skills in risk assessment, both quantitatively and qualitatively. Familiarity with maturity models as aids for gap assessment and remediation planning
Experience of working on BCM projects or initiatives would be of added value
Ability to act independently and exercise good judgment as well as the ability to work cross functionally and create virtual teams
Ability to prioritize and multitask
Flexibility and adaptability in work approach
Strong written and verbal communication skills especially in English
Strong interpersonal skills
Strong problem-solving and negotiation skills
Calmness and clarity of thought under pressure and ability to maintain confidentiality
Ability to perform effective interaction with a broad range of people and roles. Accept responsibility and personal accountability
Ability to stay updated with current information security trends
Certified in CISSP, CGEIT, CISA, CISM, or other information security certification will be an added value
If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
