Executive Recruitment Company Monroe Consulting Group Indonesia is recruiting on behalf of a reputable property developer for the role of Security, Compliance, and Governance Head. This job is based in Jakarta.
Key Responsibilities:
Strategic Leadership:
- Develop and implement a comprehensive IT security, compliance, and governance strategy aligned with the organization's goals and objectives.
- Provide strategic direction and guidance to the IT Security, Compliance, and Governance team, fostering a culture of excellence, innovation, and continuous improvement.
Security Management:
- Oversee the design, implementation, and maintenance of effective security controls, protocols, and procedures to protect the organization's information assets from internal and external threats.
- Conduct regular risk assessments and vulnerability scans, identifying and mitigating security risks in a proactive manner.
- Stay abreast of emerging threats, technologies, and best practices in the field of cybersecurity, recommending and implementing appropriate measures to enhance our security posture.
Compliance and Regulatory Affairs:
- Ensure compliance with relevant laws, regulations, and industry standards governing data privacy, security, and information technology.
- Monitor changes in regulatory requirements and assess their impact on the organization, advising senior management on necessary actions to maintain compliance.
- Coordinate and support audits, assessments, and certifications related to IT security and compliance, liaising with external auditors and regulatory authorities as required.
Governance and Policy Development:
- Establish and enforce IT governance frameworks, policies, and procedures to promote accountability, transparency, and effective decision-making across the organization.
- Define and maintain security and compliance metrics, reporting regularly to senior management and stakeholders on the state of IT security, compliance, and governance.
- Collaborate with legal counsel and other stakeholders to draft, review, and update contractual agreements, privacy policies, and other relevant documentation to reflect current regulatory requirements and best practices.
Qualifications:
- Bachelor's degree in Computer Science, Information Technology, or a related field; advanced degree preferred.
- Professional certifications such as CISSP, CISM, CISA, or equivalent highly desirable.
- In-depth knowledge of cybersecurity principles, practices, technologies, and regulatory requirements (e.g., GDPR, HIPAA, PCI DSS, etc.).
- Strong analytical skills with the ability to assess risks, analyze complex issues, and develop practical solutions.
- Excellent communication, interpersonal, and stakeholder management skills, with the ability to interact effectively with individuals at all levels of the organization.
- Demonstrated leadership abilities, including the ability to inspire and motivate teams, foster collaboration, and drive results in a fast-paced environment.