Information Security Jobs

Design, Review, and Implement Identity Access Management processes and role-based access control matrices

Support the Security team in compliance-related processes, such as achieving Security certifications, maintaining them and supervising security controls

Senior-level experience in an Information Security role

Knowledge about information security concepts and best practices

Experience in identifying information security risks and proposing controls

All of our positions are fully remote. You do not have to relocate to join us!

Knowledge of patch management, firewalls, and intrusion detection/prevention systems

Keep technical knowledge through continuing education

Min. 3 years experience in Information Technology, especially Information Technology Security or Cybersecurity

Good analytical and problem-solving skills

Knowledge of current security risks and protocols

Knowledge of IT security governance, risk, and control (GRC)

Minimum of 2-3 years’ experience in performing penetration testing.

The responsibilities as Information Security Consultant in softScheck:

· CTF and bug bounty experiences.

· Other skills that related to cyber security domain such as forensic, reverse engineering, etc.

Performing penetration tests on computer systems, networks, wireless access points, web / mobile applications, and product appliances.

Performing source code review (static and dynamic).

Knowledge of secure network architecture design principles, including network segmentation, DMZ configuration, and secure remote access.

Familiarity with identity and access management (IAM) concepts, including user provisioning, role-based access control (RBAC), and multi-factor authentication (MFA).

Understanding of risk management principles and methodologies.

Implement and manage security controls, including firewalls, intrusion detection and prevention systems, encryption mechanisms, and access controls.

Stay up-to-date with the latest security threats, vulnerabilities, and industry trends to proactively address potential risks.

Works with internal customers to interpret/clarify/implement security requirements and any changes in the current security practice.

Memiliki pengalaman satu tahun di Perusahaan IT diutamakan di bidang SOC

Pendidikan strata satu Sistem Komputer/Teknik Komputer

Mempunyai minat dan kemauan untuk mempelajari teknologi keamanan informasi terbaru

Terbiasa dengan pelaporan, dashboard, dan dokumentasi

Memiliki kemampuan analisa yang baik dan pemecahan masalah

Memiliki kepripadian yang baik dan kemampuan bekerja sebagai tim yang baik

Manage enterprise security architecture development activities in accordance with the Company's strategic plan.

Manage identity policy formulation and access control activities on application systems, communication networks, computer platforms and other Company's technology platforms.

Manage the development of information security technology platforms that are integrated with other platforms through the development lifecycle or acquisition lifecycle.

Minimum experience 3 years for similar position.

Excellent in communication skill, teamwork ability, and customer focus orientation.

Holding a valid information security related certification is preferred.

Experience in security management and developing protocol

Four years of executive or management-level experience in systems security

8+ years of working experience in the IT security industry

Certified in information security certification e.g. CISSP, CCSP, ISSAP, CISM, etc.

Certified in GIAC certification: GISO, GSLC, GCFW, or GSNA.

Able to lead the policies roadmapping and deployment across organization

Relevant industry and professional recognition and certification of achievement of skills and knowledge will an advantage

Applying / learning to apply security controls of available security tools using current change management framework

Have exposure to common security tools (e.g., Patch Management and Firewall, etc.)

Good oral and written communication skills and the ability to develop excellent working relationships both internally and externally

Working knowledge of the network, server platforms (windows, non-windows) and good understanding of TCP/IP-based networking

A minimal 1-2 years of working experience as an IT engineer

Experience in security management and developing protocol

Four years of executive or management-level experience in systems security

8+ years of working experience in the IT security industry

Certified in information security certification e.g. CISSP, CCSP, ISSAP, CISM, etc.

Certified in GIAC certification: GISO, GSLC, GCFW, or GSNA.

Able to lead the security policies roadmapping and deployment across organization

Memiliki pengalaman satu tahun di Perusahaan IT.

Memiliki Pendidikan Strata satu Sistem Komputer/Teknik Komputer.

Memiliki keterampilan dalam Network Devices dan Security Firewall.

Terbiasa dan mahir untuk mengelola System Administrator / System Engineer serta dokumentasi teknis.

Diutamakan dapat menangani perangkat Network Security.

-Diutamakan memiliki keahlian, prestasi dan kemampuan komunikasi yang baik.

Expertise in conducting security assessments, vulnerability management, and penetration testing

Strong leadership and managerial skills, with the ability to inspire and motivate a team of cybersecurity professionals

Monitor and assess the effectiveness of our security controls and infrastructure, identifying vulnerabilities and recommending remediation measures

Conduct security awareness training and education programs to promote a culture of cybersecurity awareness among employees

Proven experience in a leadership role within the cybersecurity field, with a focus on enterprise-level security

Strong knowledge of cybersecurity frameworks, standards, and regulations (e.g., ISO 27001, NIST, GDPR)

ISM shall have sufficient authority and stature to provide independent views to Location Management including Technology.

Support the Regional/Global Information Security Manager in tracking and reporting of cybersecurity risk and matters to regional technology operating committee.

Identify location and regulatory requirements and partner with local, regional and global peers and product teams to develop sustainable solutions

Strong leadership, culture carrier and team player experienced in matrix organizations

Provide partnership and support to the Regional/Global peers to develop cybersecurity and technology controls execution approach across the country business footprint

Proven subject matter expertise in Corporate and Investment Banking in the Indonesia market

Minimum 6 years experience in managing Information Security Operation/Governance, Risk Management, and Compliance, or related fields

For locally arising security incidents, act as Incident Manager, in coordination with Group Incident Response & Management teams.

Working knowledge of local information and cybersecurity-related regulations and requirements is a huge advantage

Advise CISO on local information and cybersecurity-related regulations and requirements, and then map or recommend changes to existing policies and frameworks.

Work with in-country Data Protection Officer(s) of Capital A on data protection requirements.

Participate and facilitate audits and assessment activities to ensure compliance with information security requirements.

Flexible working hours and remote work culture with free co-working space services.

Maintain Ask InfoSec Bot on Flock

Assist information security team members in doing each of their respective work

Ability to do analysis on issues, proposals, and communication material

Good ability in spoken and written bahasa and English

Ability to identify with employees, understand their understanding on context, and tailored training materials

Work with cross-functionally to enhance overall user experience of our platforms

Bachelor's degree or equivalent experience in Computer Science

At least 1 - 2 years' of experience using HTML, CSS, and JavaScript

Revise, edit, proofread & optimize web content

Own various design tasks involved in the web development life cycle from start to finish

Proficiency in at least one server-side technology (Java, PHP, NodeJS, Python, Ruby)

Strong leadership and management skills

Prepare and submit Information Security Technology reviews to top management.

Prepare and submit detailed and informative reports to top management regarding the results of these reviews

Manage Cyber Security Policy and Strategy in Bank Indonesia

Ensure that the policy and strategy are aligned with industry best practices and regulatory requirements.

Manage cooperation and coordination with stakeholders regarding resilience and cybersecurity in the financial industry.

Flexible working hours and remote work culture with free co-working space services.

Maintain Ask InfoSec Bot on Flock

Assist information security team members in doing each of their respective work

Ability to do analysis on issues, proposals, and communication material

Good ability in spoken and written bahasa and English

Ability to identify with employees, understand their understanding on context, and tailored training materials

May act as advisor to management and customers in advanced technical research studies and applications.

Describe the main responsibilities and duties of this position

Perform analysis or assessments to validate defined security requirements and to recommend additional security requirements and protections.

Leverage COTS/GOTS and specific tools and processes/procedures to scan, identify, contain, mitigate and mitigate vulnerabilities and disruptions.

Participate with senior managers to set strategic plans and objectives: Analysts may serve as program spokesperson on follow-up projects and/or programmes.

3 years or more work experience as Security Engineer, Security Analyst, Blue Team or related position