About the Company:
Our Client is a fast growing Venture Capital Company actively engaged in the microfinance sector in Indonesia. It aims to revolutionize individual access to financial products. It offers working capital through a modified version of the traditional microfinance methodology exclusively to women who do not have or have only partial access to the formal financial sector.
Key Responsibilities
- ITGM is expected to help to refine, manage and enforce the enterprise IT risk management and information security framework/methodology .
- The ideal candidate will be expected to work across all traditional IT value streams – Demand management,
- Build/Delivery and Operations as well as usage of technology across the business users. This will include all information security activities particularly aspects identified of critical importance by the Legal department and the institutional regulators. In addition, the ITGM will work with the CIO to build the enterprise architecture for records management to ensure that information asset management practices are in place for all departments and can be managed effectively going forward.
- The ITGM is accountable for ensuring all accreditations required by the regulators are attained and kept up to date by the institution including company-wide certifications such as ISO27001.
- The role will report directly to the CIO but with active cooperation with the Head of IT Operations and the Project Management Office (PMO).
- Overseeing the successful attainment of any accreditation required by the institution due to changes in its business license, engagement in partnerships or as directed by regulators (e.g., ISO 27001).
- Evaluating and determining the information technology governance and security needs and planning required to implement systems to meet changing business requirements – particularly with regards to new partnerships and integrations.
- Representing the IT division in internal and external audits.
- Actively participating in strategic discussions with regards to IT road maps and IT budgeting by providing support with insights around maintaining governance and security.
- Overseeing the implementation of recommendations from formal audits, non-functional test findings or Root Cause Analysis reports on incidents observed during the routine use of technology across the enterprise.
- Ensuring Information Assets across all departments are managed and maintained.
- Support in preparation of slides on IT enterprise health and security for periodic management meetings, institutional investor reviews and formal audits (internal and external).
- A Bachelor’s or Master’s degree in Information Management, Computer Science, Data Governance, Information Security or related field.
- A minimum of 5 years’ experience working within an information or data governance function, preferably in an international organisation or multilateral environment with two years’ experience leading a data and/or security governance programme.
- Demonstrated knowledge of data governance practices, business and technology issues related to management of enterprise information assets and approaches related to data protection.
- Sound knowledge of industry-leading data quality and data protection management practices.
- Practical experience in the implementation of IT policies and procedures.
- Experience in the monitoring of IT risk and security controls to ensure compliance and business cyber-resilience.
- Experience liaising with Internal Audit and other oversight units on enforcing compliance with company policies and best practices.
- A good understanding of information management practices including information lifecycle management, data modelling, master data management and the conduct of business audits and requirements gathering.
- Strong presentation skills and proficiency in communicating to executive level management, C-suite and the company directors (in both Indonesian and English).
- Recognised certification in Information Security such as: Certified Information Security Manager(CISM), Certified Information Systems Security Professional (CISSP) or Certified Security Analyst.
- Strong agile project management skills - Certified Scrum Master
- Practical experience in the implementation or use of document and/or records management systems such as SharePoint or similar technology.
- Knowledge and expertise in IT operation governance within a traditional financial institution or Fintech.
If you possess the above requirements and are keen on a new challenge, please apply directly or email jay@wenetworkasia.com.
WeNetwork