IT Audit Executive will be responsible for conducting IT system and cybersecurity audits, as well as conducting digital forensic investigations of information security incidents and data breaches. Work closely with internal audit, information security and risk management teams to identify system weaknesses, evaluate compliance with IT security policies and ensure the protection of the Bank's digital assets.
About the role:
- Plan and conduct IT audits and cybersecurity assessments in accordance with internal requirements and audit standards.
- Prepare comprehensive audit reports, including findings, risks, causes and recommendations for improvement.
- Conduct digital forensic investigations of suspected security incidents or policy violations.
- Document and report forensic findings and provide actionable mitigation measures.
- Evaluate the effectiveness of IT controls, including access management, logging, system configuration and network security.
- Review compliance with information security standards, rules, and frameworks and regulations.
- Collaborate with information security and IT teams to improve threat detection and response capabilities.
- Contribute to the development of incident response plans and business continuity strategies.
- Keep up-to-date with the latest cybercrime threats, vulnerabilities and tactics.
About you:
- Minimum Bachelor's degree in Computer Science, Information Technology, Cyber Security, or other related fields.
- 3-5 years of working experience in IT Audit, IT Risk, Information & Cyber Security, penetration tester, and IT forensics.
- Hold professional certifications in Information Security such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), Computer Hacking Forensic Investigator (CHFI), and the like.
- Ability to analyze security risks, identify vulnerabilities, and develop remediation recommendations.
- Strong and effective written and oral communication skills, both in Bahasa Indonesia and English, to communicate findings and recommendations.
- Knowledge of relevant regulations and compliance frameworks.
- Ability to work independently as well as in a team environment.
