Deskripsi Pekerjaan

1. Info security policy managementFollowing Group/HQ's requirements and Indonesian regulatory policy requirements, set up info security policy in local company, review the process and push execution.

2. IS Risk Control: Based on IS policy to monitor, analysis the IS risk in company operation. To review the business process, operation SOP to ensure no IS risk. To propose improvement plan to eliminate potential IS risk.

3. Complete ISO270001 certification project and cooperate with HQ to set up key info security management rules.

4. Review and revise IS policies from HQ, draft local IS policies and implement.

5. Review business process, SOP, 3rd party contracts for IS risk and data protection.


1. 3-5 years' relevant work experience, Information security management, IT risk experience in Unsecured lending business / Multi Finance / P2P.

2. Experience/familiar with ISO270001 certification, local information security policy, security management, experienced risk control, understand framework of Information Security

3. Understand the Indonesian consumer data privacy regulation, experienced in risk control management.

4. Fluent English, Mandarin is preferred

5. Minimum 3 years’relevant experience

6. Experienced in Fintech / unsecured banking product Company