Back to search
Mirae Asset Sekuritas Indonesia Linkedin · Posted 13d ago

IT GRC

Jakarta

Linkedin
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

Job Requirements:

  • Candidate must possess at least a Bachelor’s Degree (S1), preferably in Information Technology, Information Systems, Computer Science, Cybersecurity, or other related fields;
  • Have a minimum of 5 years of professional experience in IT Governance, Risk, and Compliance (IT GRC), IT Audit, Information Security, Risk Management, or related functions. Experience in the financial services industry, capital market, securities company, banking, or other regulated industries will be an advantage;
  • Professional certifications and relevant training in IT governance, information security, audit, and risk management are highly preferred, including but not limited to CISA, CISSP, COBIT, and ITIL. Additional certifications such as CRISC, ISO 27001 Lead Implementer/Lead Auditor, or other cybersecurity and risk management certifications will be considered an advantage.


Job Descriptions:

  • Develop, maintain, and enforce IT security policies, standards, procedures, and governance frameworks in accordance with applicable regulatory requirements and industry best practices;
  • Ensure that IT security controls are properly aligned with the Company’s business objectives, operational needs, and overall risk management framework;
  • Lead the identification, assessment, monitoring, and mitigation of IT risks, including risks related to information security, infrastructure, applications, systems, and technology operations;
  • Manage and maintain the IT Risk Register, including documentation of inherent risks, existing controls, residual risks, mitigation plans, responsible parties, and target completion timelines;
  • Conduct periodic reviews and assessments of the effectiveness of IT controls, particularly controls related to ISO/IEC 27001:2022, information security governance, access management, change management, incident management, and other relevant control areas;
  • Monitor emerging technology and cybersecurity risks, including but not limited to cloud security, third-party/vendor risks, ransomware, data leakage, system vulnerabilities, and other evolving cyber threats;
  • Prepare and present IT GRC reports for senior management, the Risk Committee, and other relevant governance forums, covering IT risk exposure, compliance status, key control issues, remediation progress, and improvement initiatives;
  • Communicate the Company’s IT risk position, compliance posture, control effectiveness, and security improvement plans to relevant stakeholders in a clear, structured, and actionable manner.


Work Arrangement: Full Work From Office (WFO) at our Jakarta HQ.

Candidates are expected to perform duties on-site to ensure effective coordination and alignment with our business operations.


About Us

Mirae Asset Sekuritas Indonesia as Permanent Innovator upholds a philosophy centered on long-term relationships, integrity, and client-focused innovation. Guided by our Business Philosophy, Vision and Core Values—Client First, Objectivity, Teamwork, and Citizenship—we strive to provide comprehensive and transparent financial services that empower our clients to achieve sustainable growth. Our commitment is to continuously evolve, delivering value-added services that anticipate and adapt to the changing needs of our clients in capital market industry.


Join us to be part of a team where your professional journey is enriched by shared values and a dedication to excellence.

Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent