Security Engineer at KAYAK responsible for implementing security improvements and managing security tools in Berlin office infrastructure. Collaborating with teams to monitor incidents and enhance security protocols.
About the role
- Information Security Governance Specialist responsible for establishing IT security governance and compliance with standards. Overseeing security policies, audits, and risk management in Jakarta.
Responsibilities
- IT Governance & Policy Development : Establish, manage, and operate **Information Security Management System (ISMS)** in accordance with ISO27001 including governance over **Information security and personal data protection (PDP)**.
- Develop, implement, and continuously **maintain security and data protection policy standards** and procedure aligned with business objectives and industry best practices.
- Regulatory & Standards Compliance : Ensure compliance with applicable** information security and personal data protection regulations, including PDP Law (UU PDP)** and international standards such as **ISO 27001, PCI DSS, and NIST.** Identify and manage security and privacy-related regulatory obligations, coordinate the preparation of compliance documentation, and ensure security and data protection controls meet regulatory and audit expectations.
- SDLC & Product Governance : Govern the implementation of **Security by Design and Privacy by Design** principles across the system and product development lifecycle. Ensure information security and personal data protection requirements are defined, reviewed, and validated throughout ideation, development, deployment, and operations in alignment with ISO 27001 and PDP requirements.
- Audit Management : Act as the primary owner for information security, ISMS, and data protection audits. Plan and coordinate internal and external audits, manage audit evidence, respond to audit inquiries, track findings, and ensure corrective actions and continual improvement activities are executed and documented in accordance with ISO 27001 and PDP obligations.
- Third-Party Risk Management (TPRM) : Govern third-party risk management initiatives by assessing and managing risks associated with vendors, partners, and other third parties integrated with company systems.
- Incident Response, DRP & BCP Governance : Collaborate with technical and operational teams to ensure effective incident response governance, including Disaster Recovery Plan (DRP) and Business Continuity Plan (BCP) readiness and testing.
- Security & Compliance Awareness : Promote a strong security and compliance culture across the organization through training programs, awareness initiatives, and continuous education.
Requirements
- Education: Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field. Relevant certifications such as ISO27001 Lead Auditor, CISA, GRCP, GRCA are highly desirable.
- Experience & Expertise : Proven experience in developing and executing IT governance frameworks, policies, and compliance programs in a practical, hands-on environment. Strong understanding of IT regulatory compliance and risk assessment principles.
- Regulatory & Risk Knowledge : Solid knowledge of information security standards, regulatory requirements, and governance frameworks. Banking or financial services industry experience is a strong advantage.
- Analytical & Monitoring Skills : Excellent analytical skills to assess IT risks, monitor governance effectiveness, and identify trends or gaps in compliance and controls.
- Communication & Collaboration : Strong communication and stakeholder management skills, with the ability to collaborate effectively across technical, business, and leadership teams.
- IT Management & Security Best Practices : Deep understanding of IT management best practices, information security controls, and risk mitigation strategies.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Shift Manager overseeing security operations at WarHorse Gaming Omaha. Responsible for team safety, compliance with regulations, and staffing in the security department.
Security Supervisor responsible for loss prevention and safety at WarHorse Gaming casino in Omaha. Ensuring compliance with regulations and managing security team operations.
Security Director overseeing lab services and operations, ensuring compliance and security across global sites. Leading teams and integrating secure strategies for innovation and productivity.
Security Product Owner at Dell Technologies responsible for Lab Services and Operations. Translate strategy into initiatives while collaborating with cross - functional leaders in security engineering and Agile delivery.
Security Shift Manager responsible for safety operations at WarHorse Gaming Omaha. Supervising security staff and ensuring compliance with laws and regulations.
Security Supervisor managing safety and loss prevention for WarHorse Gaming in Omaha. Ensures compliance and oversees the security department operations on the casino floor.
Security Architect leading AI trust and governance strategies for Fortune 500 with Salesforce. Empowering organizations with cutting - edge security solutions in a collaborative environment.
Information Security Manager responsible for ensuring security of data, systems, and networks at Cayuse. Leading development and monitoring of security policies, practices, and controls.
Cloud Security Architect at Cayuse overseeing secure architecture design, implementation, and governance for cloud - native, microservices, and AI - enabled systems. Collaborating with stakeholders to ensure compliance and security practices.