IT Security Officer

Role Description

1. Security Governance & Compliance

Support cybersecurity governance using standards (NIST, ISO 27001, PCI-DSS, COBIT, CIS). Assist with compliance to OJK and internal policies, maintain security documentation, and support internal/external audits.

2. Technical & Operational Security

Help secure systems (servers, databases, networks, apps, cloud). Support vulnerability scanning, basic penetration testing, and threatintelligence activities.

3. Incident Response & Monitoring

Assist in monitoring alerts, collecting logs, documenting incidents, supporting CSIRT, and performing daily security monitoring (SIEM, log review, alert escalation).

Qualifications

• Bachelor's degree in IT, Information Systems, Computer Engineering, Cybersecurity, or related fields.
• 23 years experience in cybersecurity, IT infrastructure, system admin, or network operations.
• Basic knowledge of cybersecurity concepts, threats, IAM, data protection, and infrastructure security.
• Familiarity with SIEM, vulnerability scanners, endpoint security, or firewall tools is a plus.
• Optional certifications: CEH (Associate), Security+, ISO 27001 Foundation.
• Strong willingness to learn cybersecurity governance, technical security, and incident response.
• Understanding of risk management and its business impact.
• Good analytical, problemsolving, attention to detail, and communication skills; able to document findings clearly and work well in a team.