Date Posted:

Salary:

Apply Now Whatsapp to Friend Save This Job

Job Description

Our Company
Finantier is a leading Open Finance platform in Southeast Asia. We are fintech geeks who are passionate about Open Finance and are excited to build the enabling infrastructure for financial inclusion. Our world-class products, such as account aggregation, e-KYC, alternative credit scoring, and payments initiation power the next generation of financial and digital services across Southeast Asia.

Our Team
The Information Security team plays a critical role in supporting the company's vision to develop and lead the Southeast Asian Open Finance ecosystem by bringing secure and reliable capabilities in accordance with security practice principles without sacrificing the customer journey.
We require the best professionals in the Security Governance Risk and Compliance team to provide the highest level of service in the Open Finance ecosystem. The GRC Security team, as part of the Information Security team, is expected to assist management in developing risk-based security strategies.
Security - GRC will be responsible for creating, updating, and maintaining security programs, control matrices, as well as making recommendations to management. This position ensures that regulatory, industry-specific, internal control, and information security policies and procedures are followed. Internal audit, independent review companies, and regulatory authorities are all addressed to provide substantiation as expected. Information Security Governance Risk and Compliance are responsible to maintain the security of any protected data gathered, used, maintained, or distributed by the company.

The Responsibilities

Develop metrics and reporting methods for analyzing security, privacy, and compliance risk throughout the company.
Develop a risk management framework and assess it against it, identifying hazards that will drive future plans.
Drive the compliance roadmap and quarterly planning process across Product and Engineering.
Stakeholders will benefit from the initiative's openness and predictability.
Integrate compliance into product requirements in such a way that developer velocity remains high.
In areas pertaining to the investigation, impact, and analysis of security events, risk judgments, and measures for a product, computer, and information security, recommend programmatic and technical guidelines and conduct with a high degree of independence.
Lead the strategic implementation of the information security program's organization-wide risk management function to guarantee that information security risks are recognized and managed.
Internally assess, evaluate, and provide recommendations to management on the adequacy of the Company's information and technology safeguards.
Participate in the vendor management process and assess vendor risk.
Maintain that IT operations, processes, and procedures comply with stated standards, rules, and laws by leading the organization's information security compliance program
Assist in the development and implementation of effective and reasonable policies and procedures to safeguard protected and sensitive data, ensure data security, and ensure compliance with appropriate laws and legal interpretation, as well as alignment with corporate objectives.
Establish a strategy for dealing with an increasing number of audits, compliance checks, and external assessment processes from customers and external auditors regarding effective security practices in accordance with local and global regulations, standards such as ISO 27001/2, SOC 2, PCI DSS, and any other security standards.
On mandatory security evaluations and audits, collaborate with customers, external auditors, and outside consultants as needed.
Organize and track all information technology and security audits, including the scope of the audits, the parties engaged, the timelines, the auditing agencies, and the outcomes. Maintain excellent relationships with audit entities and provide a consistent perspective that continuously demonstrates the company in its best light by working with auditors as needed. Provide audit response guidance, assessment, and advocacy.
Managing any new hires, day-to-day dispute resolution, staff redundancy and termination of staff if required.
Manage the security awareness training program and initiatives, which include both technology innovations and awareness and training for all stakeholders.
Perform other responsibilities as needed to support the department's seamless operation and the organization's reputation as a viable business partner.

The Requirements

Minimum 4 years of experience in managing a team for security governance, risk & compliance.
Master degree or equivalent in Computer Science, Information System.
Information security-related training or certifications such as CISM, CISSP is mandatory and any other Information Security is a plus.
Significant experience in cyber security programs, audits, assessments, risk, remediation, or cyber security compliance management such as PCI DSS.
Strong knowledge and understanding of ISMS and security framework particularly NIST Framework.
Strong understanding of the Information Security concept and technology systems and process, infrastructure, data architecture, data process.
Experience and understanding of the Enterprise Information Security Architecture concept.
Well-organized and capable of managing security programs.
Strong work ethic with attention to detail, a big-picture thinker with comfort with “blank paper” assignments.
Ability to perform well at a rapid, pace with a fast atmosphere.
Excellent communication skills both in English and Bahasa are a must.

You will thrive at Finantier if…

You are hungry, humble, and eager to learn – you question the status quo and seek disruption
You are comfortable with taking risks – you understand that it takes failing in order to succeed
You thrive in fast-paced, fluid environments – growth excites you
You like to get your hands dirty and take ownership over your work
You work hard but like to have fun and don’t take yourself too seriously
You are empathetic, kind, and respect others

Perks
Amazing teammates and working culture (we hope you love food as much as we do!) Work-from-home with periodic office work and travel Best-in-class health insurance, including covering immediate family Mental health support Highly competitive compensation

Specialty coffee

Office snacks and healthy treats Healthy group and individual activities Training budget

Group outing

Yearly team retreat Office gear And much more!

Diversity, Equity & Inclusion
At Finantier, we are committed to fair treatment and equal access to opportunities of all employees, regardless of individual differences. Our hiring strategy focuses on individual skills and knowledge, and candidates will not be required to share about their race, religion, sexual orientation, age, marital status, and family background during the process. Furthermore, we encourage and support a diverse workforce at Finantier by sponsoring activities such as DEI training and language classes.

Related Jobs

id -

Apply Now
id -

Apply Now
Customer Service

Bekasi - Posted11 hari yang lalu

Apply Now

Persyaratan wajib Pria & Wanita SMA/SMK Informasi Tambahan Kualifikasi Pendidikan min SMA/SMK Kreatif & Komunikatif Menguasai Media Sosial Suka tantangan &â¦
id -

Apply Now
Baru CR/TR Admin

Jakarta - 7 hari yang lalu

Apply Now

Manage customer relation administration effectively and efficiently. Create and manage tenant database. Filling documents or letter according to category.

Job Detail

Job Id

f37fb2c77e62f2df
Location

id
Company
Type

Private
Employment Status

Permanent
Positions

Available
Career Level

Experience
Gender

Male/Female

Job Description

The Responsibilities

The Requirements

You will thrive at Finantier if…

Related Jobs

Customer Service

Baru CR/TR Admin

Job Detail

Contact

Sponsored by

Quick Links

Jobs By Industry

Latest Job