Grc (Governance, Risk, Compliance) Manager

Establish and maintain information security policies, standard, guidelines, procedures and controls to ensure they meets with company's risk appetite and compliance with applicable regulatory and legal requirements
- Ensure and improve compliance such as PCI DSS, SNI ISO/IEC 27001:2013, and other information security related compliance, law and regulation
- Enforce information security policies, standard, guidelines, procedures and controls implementation
- Maintain expertise on security trends through training, research and development in order to mitigate potential security exposures
- Manage and perform end to end risk management for various information systems, services and processes

**Requirements**:

- 3-5 years+ of relevant professional experience is preferred
- Have a good understanding about threat, vulnerability, impact and risk and their implementation on business process
- In-depth knowledge with as many as the following law, regulations, frameworks, and/or industry standards : COBIT, ISO/IEC 27000-series, PCI/DSS, NIST SP 800-53/30, GDPR, PDPA, PP71, UU ITE, etc
- Demonstrated skills in rish assessment, both quantitatively and qualitatively, Familiarity wit maturity models as aids to gap assessment and remediation planning
- Certified in CISSP, CGEIT, CISA, CISM, or other information security certification will be an adventage

Jenis Pekerjaan: Penuh Waktu

Upah: Rp15.000.000 - Rp20.000.000 per bulan