**About the role**IT GRC Analyst in Gojek Financial Services will support the adoption of a unified IT governance, risk management, and compliance (GRC) framework, processes and approach. In addition to that, you will support the day to day management of the associated activities to improve the IT-GRC posture as well as to ensure security and technology compliance with applicable legal, regulatory and contractual requirements.**What you Will Do**:- Develop and review corporate IT and Information Security documentation that includes policies and procedures to ensure suitability with the current context- Identify relevant legal, regulatory and contractual (LRC) requirements relevant to IT and information security- Identify, assess, and mitigate the risk of IT and information security, also monitor and review information security controls- Liaise with internal audit, IT, and business users on IT GRC and information security issues- Assisting the management of known information security vulnerabilities, and maintain knowledge and expertise on the latest IT GRC and information security trends.- Ensure IT implementation in the organization align/according to the applicable regulation or law- Support any audit and assessment processes that is relevant to IT and information security- Support the implementation of information security awareness program and support the implementation and maintenance of the ISO 27001 certification**What you Will Need**:- Minimum 4 years of experience in related or similar fields;- Knowledge of information security general and f IT GRC general concept;- Knowledge of the risk management general concept and cloud based IT infrastructure and agile service delivery concept;- Knowledge of Indonesian financial service regulation and best practices also hands-on experience in the ISO 27001 implementation and certification process, including but not limited to gap assessment process, process and control implementation, process improvement and remediation of non-conformities;- Good command in English, both verbally and written;- Ability to act independently and perform effective interaction in wide organization;- A healthy dose of curiosity and eagerness to learn;- Willingness to change and adapt;Ability to work under pressure, multitasking and prioritizing**About the team**The IT-GRC team in the Financial Services Platform is responsible for driving IT Governance Risk and Compliance processes within the business, product life cycle, infrastructure, and engineering process. This includes managing IT and information security controls, risks and compliance to ensure our people, processes and technology are aligned and compliant with the industry best practices and relevant legal, regulatory and contractual requirements.We are a small team based in Jakarta. The great thing about having a small team is that we've all naturally grown very close, both professionally and personally, and really rely on each other to get the job done. We use the time to share knowledge, update each other on our lives, and sometimes work on a joint side project for research and learning.At Gojek's Financial Services Platform Team, we wake up thinking about better ways to expand access to savings, insurance, loans, and investments to all Indonesians. We build financial products with partners and deploy at scale to our hundreds of thousands of GoFood merchants, 1 million+GoRide/GoCar drivers, tens of millions of users. We're looking for talented new colleagues to join us on our mission of universal access to financial services.**About Us**Gojek is a Super App. It's one app for ordering food, commuting, digital payments, shopping, hyper-local delivery, and dozen other products. It is Indonesia's first and only decacorn. It's also the only Southeast Asian startup to be part of Fortune's list of 'Companies That Changed The World.'**Our Mission**: To create and scale positive socio-economic impact for our customers, driver-partners, business and MSMEs.As of 2021, Gojek processed more than $9 billion annualised gross transaction value across all markets where it operates - in Singapore, Thailand, Vietnam and Indonesia. We have the largest food delivery product in Asia, (outside of China), and the largest payments wallet in Southeast Asia.Our investors include Google, Facebook, PayPal, Sequoia Capital, Tencent Holdings among others.- Gojek is committed to building a diverse and inclusive workplace and is an equal opportunity employer. We do not discriminate on the basis of race, religion, national origin, gender, gender identity, sexual orientation, disability, age, education status, or any other legally protected status._
