Kredivo Group

Key Responsibilities:

  • Perform IT audits on systems, applications, and processes to ensure compliance with internal policies and regulatory requirements.
  • Evaluate the effectiveness of IT controls, security policies, and governance structures.
  • Review system configurations, data management processes, and access control mechanisms to identify vulnerabilities and risks.

Education:

Bachelor’s degree in Information Technology, Computer Science, or a related field.

Experience:

  • Minimum of 3 years of experience in IT auditing, IT risk management, IT security, or a related field, with strong technical proficiency in coding and systems analysis.
  • Experience in performing audits or reviews for complex IT systems, networks, and security controls.
  • Experience with auditing frameworks like ISO 27001 is a plus.

Technical Skills:

  • Programming Languages, such as Python, PowerShell, Java, SQL, Bash, JavaScript (or any other relevant languages for automation, scripting, and audits).
  • Cybersecurity & Risk Management: Knowledge of firewalls, intrusion detection systems (IDS), encryption protocols, access controls, and vulnerability management
  • Operating Systems & Databases, such as Linux, Windows Server, SQL Server, MySQL, Oracle, Active Directory.
  • Cloud Security & Services, such as AWS, Google Cloud Platform (GCP), with a focus on security configurations and risk assessments.
  • Version Control, such as Git, GitHub, GitLab (for reviewing and managing code changes in audit environments).
  • Networking, such as TCP/IP, VPNs, DNS, HTTP/HTTPS, and network security fundamental
  • Data Analysis & Reporting, such as Excel, Power BI, Tableau (for visualizing audit results and metrics)
  • Audit Automation: Ability to write and deploy scripts to automate audit processes, data analysis, and reporting (e.g., using Python or PowerShell)
  • Familiarity with penetration testing and vulnerability assessment methodologies and techniques for network, web applications, and infrastructure.
  • Knowledge of information security and data privacy laws that applicable in Indonesia.

Certifications:

  • General IT Certifications: Demonstrates a foundational understanding of IT systems, networks, and infrastructure, such as: CompTIA IT Fundamentals (ITF+), CompTIA A+, CompTIA Network+
  • Coding & Automation Certifications: Emphasizes the candidate’s ability to write scripts and automate tasks for audits and security processes, such as Python Institute – PCEP (Python Programming Certification), Microsoft Certified: PowerShell Scripting, AWS Certified Developer – Associate
  • Information Security Certifications: Focuses on securing information systems, understanding cybersecurity principles, and managing risks, such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), CompTIA Security+, Certified Ethical Hacker (CEH).
  • Risk Management & Compliance Certifications, such as ISO 27001:2022 Information Security Management Systems is a plus.

Communication Skills:

  • Good written and verbal communication skills both in Bahasa Indonesia and English, with the ability to effectively present audit findings and recommendations to senior management and other stakeholders.
  • Ability to collaborate with cross-functional teams, including IT, risk management, and legal departments.

#LI-DI1

%FOOTER_POWERED_BY%breezy