Line of Service
AdvisoryIndustry/Sector
Not ApplicableSpecialism
Cybersecurity & PrivacyManagement Level
Senior AssociateJob Description & Summary
A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats.Our Cybersecurity team helps our clients think more broadly about security and move boldly towards new possibilities. We offer our clients an end-to-end portfolio of services across four stages: assess, build, manage and respond.
Our focus areas are Cyber Risk Strategy, Digital Identity & Access Management, Data Privacy & Protection, Cyber Defence & SOC Optimisation.
About the Role
Design Cybersecurity framework based on business objectives and strategic imperatives of the client organisation including goals, vision, mission, and operational plans
Devise a cybersecurity strategy encompassing enterprise security architecture, design, and program transformation
Design and operate governance and security processes at system, network and application levels
Maintain continuous communication with key stakeholders in support of the security strategy, and plan and solicit feedbacks, to uplift the programs and capabilities
Be abreast of best practices, vendor capabilities, and frameworks, to sustain a best-in-class and highly innovative security program
Monitor processes and drive improvements in efficiency and quality of security program
Assist in development of workflows for transitioning strategic plans into implementation plans and operational readiness
Facilitate strategic planning initiatives, documentation, technical roadmaps and security tool rationalisation
Define security policy and standards framework definition
Assist in designing the security organisation structure
Develop security policies, procedures, standards based on the security strategy and roadmap
Review of cybersecurity policies and processes to identify gaps in design of control based on comprehensive assessment framework
Conduct security process implementation reviews to assess security effectiveness and reporting
Conduct Current State Assessment of cybersecurity practices against the defined controls and provide recommendations for to-be state
Define risk management techniques around threats and vulnerabilities identified
Conduct Risk Assessment and Threat Assessment based on best practices to realise the cybersecurity strategy
Run Cyber Security Diagnostic Assessments and develop programs for cybersecurity skill development and enhancement
Design cybersecurity awareness and stakeholder sensitisation program including materials, posters, newsletters, training workshops, etc.
Provide certification advisory across Information Security Management System (ISMS), Privacy Management System (PMS), Business Continuity Management Systems (BCMS), PCI DSS etc.
Implement security controls for realisation of the certification requirements and provide technology roadmap based on the security strategy
About you
Bachelor’s degree in Computer Science, Information Systems, Information Technology, Engineering, or equivalent education
Minimum 3 - 5 years of relevant experience
Essential Skills: Professional certifications – relevant cybersecurity certification, CISSP/CISA/CISM/ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, ISO 22301 Lead Implementer, ISO 29001 Privacy
Knowledge of PCI, NIST and other security standards
Strong interpersonal skills and customer service skills
Deliver in highly collaborative and impactful manner
Proficient in development of high-quality professional presentation for business
Passionate about analysing evolving security challenges, and developing innovative security solutions working with internal customers
Coordinate between business stakeholders and technical teams
Strong oral and written skills involving both business and technical sides
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required: Degrees/Field of Study preferred:Certifications (if blank, certifications not specified)
Required Skills
Optional Skills
Desired Languages (If blank, desired languages not specified)
Travel Requirements
0%Available for Work Visa Sponsorship?
NoGovernment Clearance Required?
YesJob Posting End Date
https://halokerja.id connects jobseekers and recruiters by accurately matching candidate profiles to the relevant job openings through an advanced 2-way matching technology. While most job portals only focus on getting candidates the next job, Shine focuses on the entire career growth of candidates.