Lowongan Kerja Jakarta Raya Posisi Senior Associate – Risk Assurance – It Governance Or It Cybersecurity di PwC Indonesia

A career in our Cybersecurity practice, within Risk Assurance. Helps business leaders protect and manage their risk related to information regarding technology, people, systems, processes, culture, and physical surroundings. We help clients’ understand their current capability and develop a plan to build cyber security resilience to identify, protect, detect and respond to cybersecurity threats, including advising on various regulatory and data privacy issues.

IT Cybersecurity

Responsibilities:

• Perform assessment / design/  implementation related to cybersecurity:

  • Governance using various standards / frameworks such as NIST, ISO 27000 family, PCI-DSS, COBIT, CIS, and other established standards; or

  • Various application security and various infrastructure security (e.g operating system, database, firewall, switches, API and other security devices). This includes security assessment on web applications / infrastructures / clouds / mobile applications; or

  • Cloud security; or

  • Red teaming exercise; or

  • Cyber incident response, threat hunting and incident analysis; or

  • Operation technology security (preferably in energy, mining, utilities or oil & gas industry). 

• Provide recommendations / advice to clients.

• Train, coach and upskill team members’ capabilities.

• Perform active business developments, marketing, proposal preparation process, and lead pursuit of IT-related security projects.

• Interacting with clients on solutions and executing projects on client engagements, forming client relationships and demonstrating an understanding of the client’s business.

• Preparing concise and accurate documents / report, leveraging and utilizing MS Office (Word, Excel, Access, PowerPoint).

Requirements:

• Minimum – a bachelor’s degree within a related field.

• Three to five years of work experience in a relevant area. Having experience in a cybersecurity consulting firm is an advantage.

• Good professional reporting skills in Bahasa Indonesia and English. 

• Good knowledge of relevant cybersecurity standards / frameworks.

• Good experience and knowledge in general IT technical and controls, network, and security best practises.

• Having a related cybersecurity certificate is an advantage e.g.:

  • Cybersecurity Governance area: Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).

  • Application and Infrastructure security area: Offensive Security Certified Professional (OSCP) or Offensive Security Certified Expert (OSCE).

  • Cloud security: Certified Cloud Security Professional (CCSP) or advanced security certification from Cloud Service Provider

IT Governance
Requirements

• Minimum – a bachelor’s degree in Computer Science, Management Information Systems, Accounting, or related field.
• Three to five years of work experience in a relevant area. Having experience in conducting IT review / assessment and/ or IT regulatory compliance.
• Familiar with COBIT framework and IT regulations in Indonesia.
• Familiar with technology that supports financial and operational application systems and related business processes.
• Ability to identify IT related risks and sufficient controls in business processes.
• Strong time management skills, including flexibility to work with shifting priorities and client needs.
• Ability to perform coaching and developing junior team members.
• Strong communication skills to build client relationships (networking).
• Strong presentation and report writing skills (in English and Bahasa).
• Fast learning to understand new business and clients.

 
Desirable skills:

• Control Objectives for Information and Related Technologies (COBIT)/ Certified in Governance of Enterprise IT (CGEIT)/ Certified in Risk and Information Systems Control (CRISC)/ Certified Information Systems Auditor (CISA) qualification, or equivalent is an advantage.
• Experience in performing IT review of one of these: financial services / telecommunications / manufacturing / consumer and retail / energy, utilities, and resources / startup companies.
• Experience in IT Sarbanes-Oxley review and / or IT Governance review is an advantage.