Information Security Specialist

Job Position: Information Security Specialist

Office Location: Jakarta Selatan

Job Desc:

• Facilitate regular sessions and workshops for security members to enhance communication in the region.
• Understand regional incidents and manage progress of prevention measures in normal stage. In emergency state when set up a contact for appropriate incident management to swiftly handle legal matter. In particular, promptly report critical and massive incidents to the management and suggest what to do.
• Support to establish 3DL scheme to sustain cybersecurity. Support monitoring in the 2ND DL and perform on-site risk assessment.
• Raise security awareness of regional group companies in collaboration with HQ.
• Collect local intelligence information to act proactively such as information sharing at monthly sharing meeting.
• Understand the local laws and regulations related to cybersecurity and work with HQ on how to handle normal stage and emergency state.
• Coordination work related with Data Personal Protections activities.
• Any additional roles proposed by each region.
• Safeguards information system assets by identifying and solving potential and actual security problems.
• Recognizes problems by identifying abnormalities; reporting violations.
• Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Determines security violations and inefficiencies by conducting periodic audits.
• Contributes to team effort by accomplishing related results as needed.

Education, Experience, and Licensing Requirements:

• Bachelors degree in Computer Science, Information Systems, or equivalent education or work experience
• 4+ years of prior relevant experience
• Intermediate understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defence-in-depth and common security elements.
• Hands-on standard experience and knowledge responding security incident, analyzing the situation, and other attack artifacts in support of incident investigations
• Experience with vulnerability scanning solutions
• Basic knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform is preferable (e.g. Splunk, Nitro/McAfee Enterprise Security Manager, ArcSight, QRadar, LogLogic)
• Understanding of mobile technology and OS (i.e. iOS, Windows)

Cyber Security Qualifications / Skills:

• Information security knowledge and experience
• Security Incident response and solving
• Information security policies
• Intermediate IT, OT and product security knowledge
• Within the framework under enterprise polices, experience to plan, manage, and organize resources for a short to mid-term.
• Good communication skills; work with people in any internal and external field
• Know the local security environment (laws, cyber incidents and threat intelligence), see relevancy in IT, economy, culture, etc. and the true nature of the thing.
• Broad knowledge and experience across IT infrastructure with emphasis on end user, hosting and networking domains.
• Understand and effectively applying trends and developments in the area of global security and risk management.
• Excellent written, verbal, public speaking, communication and presentation