VP of Risk Architecture – Engineering
DanAid
full-time
Posted on:
Location Type: Hybrid
Location: Jakarta Selatan • 🇮🇩 Indonesia
Visit company websiteJob Level
Lead
Tech Stack
Cyber Security
About the role
- Design, implement, and maintain risk management and compliance architecture, focusing on technical controls, policies, and standards
- Ensure integration of risk management strategies across all IT systems and business processes
- Collaborate with internal teams (IT, Security, Legal, Finance) to develop and maintain a comprehensive risk management framework
- Monitor risk-related activities and compliance metrics
- Develop and maintain risk dashboards and reporting systems
- Regularly audit systems to identify vulnerabilities
- Assist in identifying, assessing, and mitigating technical risks related to IT systems
- Develop and manage technical solutions to automate risk assessments, incident management, and compliance checks
- Stay up to date with regulatory changes and industry best practices
- Lead or assist with internal and external audits
- Provide training to employees on risk management best practices
Requirements
- Bachelor's degree in Computer Science, Information Security, Risk Management, or related field
- More than 12 years of experience in risk management, compliance, or IT security roles
- Proven experience in designing and implementing risk management frameworks and monitoring systems
- Familiarity with risk management tools and technologies, such as GRC platforms, SIEM, or compliance management solutions
- Strong understanding of risk management principles and frameworks (e.g., ISO 31000, NIST, COSO)
- Experience with IT security standards (e.g., NIST Cybersecurity Framework, CIS Controls, PCI-DSS, HIPAA)
- Proficiency in monitoring and reporting tools, risk assessment tools, and compliance management systems
- Knowledge of data protection regulations (e.g., GDPR, CCPA) and industry-specific compliance requirements
- Strong problem-solving skills and technical aptitude
- Excellent communication and interpersonal skills, with the ability to communicate complex technical information to non-technical stakeholders
- Certifications (Preferred): Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), Certified in Governance, Risk & Compliance (CGRC)
Benefits
- Competitive salary and benefits package
- Career growth opportunities in a growing and dynamic organization
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
risk managementcompliance architecturetechnical controlsrisk management frameworksmonitoring systemsrisk assessmentincident managementcompliance checksvulnerability assessmentdata protection regulations
Soft skills
problem-solvingcommunicationinterpersonal skillscollaborationtraining
Certifications
Certified Information Security Manager (CISM)Certified in Risk and Information Systems Control (CRISC)Certified Information Systems Security Professional (CISSP)Certified in Governance, Risk & Compliance (CGRC)