Lintasarta is a leading Indonesian telecommunications and IT solutions provider, specializing in business-to-business (B2B) services. Founded in 1988, the company offers a wide range of services, including data communication, networking, cloud computing, and managed services. Lintasarta primarily focuses on providing end-to-end solutions for enterprises, government agencies, and other organizations, helping them with their digital transformation needs.
Job Summary:
We are seeking an experienced L2 GRC Cybersecurity Specialist to support the Governance, Risk, and Compliance (GRC) function. This role is responsible for ensuring cybersecurity policies, procedures, and compliance requirements are met, while also assisting in risk assessments, audits, and regulatory compliance activities.
Key Responsibilities:
- Assist in the implementation and maintenance of cybersecurity policies, frameworks, and procedures.
- Conduct risk assessments and identify security gaps within IT systems and processes.
- Monitor and enforce compliance with industry regulations such as ISO 27001, NIST, GDPR, and other relevant frameworks.
- Support internal and external audits by gathering evidence and ensuring compliance documentation is up-to-date.
- Assist in the development of security awareness training and initiatives.
- Analyze and report cybersecurity risks, control deficiencies, and mitigation plans.
- Work closely with security, IT, and business teams to ensure security controls align with organizational goals.
- Maintain documentation related to cybersecurity governance and risk management.
- Provide support during security incidents by ensuring compliance with response plans.
- Stay up to date with evolving cybersecurity threats, risks, and best practices.
Qualifications & Requirements:
- Bachelor's degree in Computer Science, Information Security, or a related field.
- 3+ years of experience in cybersecurity, GRC, or risk management.
- Knowledge of cybersecurity frameworks such as ISO 27001, NIST, CIS, and regulatory requirements like GDPR and PCI-DSS.
- Experience with risk assessment methodologies and security audits.
- Strong analytical, problem-solving, and communication skills.
- Certifications such as CISA, CRISC, CISSP, or CISM are a plus.
- Ability to work collaboratively across teams and manage multiple tasks effectively.
Preferred Skills:
- Experience with GRC tools and technologies.
- Understanding of cloud security governance (AWS, Azure, GCP).
- Experience in third-party risk management and vendor security assessments.
This position offers an opportunity to play a critical role in ensuring cybersecurity governance and compliance within the organization. If you are passionate about cybersecurity and risk management, we encourage you to apply!
