2,439 Threat Modeling jobs in Indonesia

The Department, which is responsible for APAC regional subsidiary, oversee regional coordination and strategy in relation to security, including but not limited to Technical, Administrative, and Physical security.

Hyundai Motor APAC HQ is responsible to build and maintain collaboration with Asia Pacific subsidiary companies and HMC (Hyundai Motor Company).

The candidate will work under the direction of Head of Asia Pacific Security Department and will be instrumental in establishing administrative security policies and conduct regular internal investigation & inspection

The hired candidate will report to Head of Asia Pacific Security Department and will be in charge of daily administrative security operations.

Candidate will direct, govern, and manage multiple administrative and governance projects of Indonesia and Hyundai Motor Asia Pacific subsidiaries.

Responsibilities:

• Perform regular internal investigation upon suspicious and unauthorized activity by an employee or party
• Develop and maintain the organization's long-term information security strategy and roadmap.
• Identify emerging security risks and recommend appropriate strategic response.
• Establish, review, and update information security policies, standards, and procedures.
• Ensure policies are effectively communicated and enforced across all departments.
• Design and deliver security awareness programs tailored to different roles and risk levels.
• Conduct regular training sessions and phishing simulations to reinforce best practices.
• Monitor compliance with applicable laws, regulations, and frameworks.
• Prepare reports and dashboards on security posture, training completion, and audit results.
• Communicate effectively with senior leadership and board members regarding risk and compliance

Requirements:

• Bachelor's degree in information Security, Computer Science, or related field
• 5+ years of experience in information security governance, risk management, or compliance.
• Proficient in English communication, including verbal, written, and listening abilities.
• Proven track record in establishing information security policies and implementing security awareness and education initiatives.
• Experienced in handling internal investigation and inspection, including but not limited to: Conduct thorough internal investigation upon suspicious and unauthorized activity by an employee or party and proficient in handling internal inspection such as measuring internal control compliance score and regular due diligence.
• Proficient in handling repetitive and analytical tasks, comfortable working with spreadsheet, data tools, and analytics platforms.

• Develop and implement an information security strategy that aligns with bank's goals and regulatory requirements.
• Lead the development and execution of the bank's incident response plan and oversee post-incident analysis to identify lessons learned and improve future response efforts.
• Provide strategic guidance on emerging security threats and industry trends to senior management.
• Oversee day-to-day security operations, security tools and technologies that currently belong to Information Security Unit, ensuring they are effective and up-to-date.
• Enforce security policies, procedures, and standards to protect bank assets.
• Conduct regular security assessments and audits to identify potential vulnerabilities and compliance gap.
• Work closely with other IT departments to ensure security is integrated into all technology initiatives.

• Lead, mentor, and develop a team of security professionals, fostering a collaborative and innovative work environment.

• Minimum Qualifications: Bachelor's Degree in Information Technology, Computer Science, Cybersecurity, or related field

• Minimum 8 years work experience in IT security, preferrably in banking industry
• Having knowledge related to framework network standardization such as OSI Layer and TCP/IP
• Experienced in configuring Linux and Windows operating systems
• Having knowledge related to information security framework issued by international organizations such as ISO, NIST, CIS and OWASP
• Having professional certifications such as CISSP, CISM, CISA, or equivalent are highly desirable

The Bank was established on 27 April 1971 under the name of PT Bank Pasar Pagi Madju. In line with the change in its status from a retail banking to a commercial bank in 1989, the Bank's name was changed into PT Bank Bintang Manunggal (Bank Bima). This status change had a positive impact on the Bank's performance and succeeded in attracting Hana Financial Group to take over the majority of the Bank's shares. The change in the Shareholders was followed by a change in its name into PT Bank Hana. In 2013, PT Bank Hana took a strategic action by merging with PT Bank KEB Indonesia to create synergies in the banking business. This business activity caused the Bank to change its name to PT Bank KEB Hana Indonesia or known as Bank KEB Hana. However, in 2020, Bank KEB Hana yet again made a brand change to Hana Bank. By these changes, Hana Bank is increasingly ready to strengthen its competitiveness, both in Indonesia and globally, through the consistency of the brands used by the group. With the presence of its best people, Hana Bank provides an array of products and services designed to meet various customer needs. Given its global reach and global standard of service, Hana Bank promises its customers to be their True Hearted Financial Partner.

Qualification :

1. S1 Cyber Security/IT
2. Memiliki pengalaman minimal 2 tahun di Information Security
3. Siap Contract OS

Job Description :

1. Ensure that security programs comply with relevant laws, regulations and policies to minimize or eliminate risk and audit findings.
2. Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation.
3. Keep abreast of information security issues and regulatory changes.
4. Liaise with project team to ensure alignment between information security and its initiatives/ project including ensure the third party/ vendor (if any) fulfilled the information security requirements
5. Provide continuous improvement to the Information Security function with implementation of security tools or control processes

Benefits :

Competitive Salary

• Develop and implement an information security strategy that aligns with bank's goals and regulatory requirements.
• Lead the development and execution of the bank's incident response plan and oversee post-incident analysis to identify lessons learned and improve future response efforts.
• Provide strategic guidance on emerging security threats and industry trends to senior management.
• Oversee day-to-day security operations, security tools and technologies that currently belong to Information Security Unit, ensuring they are effective and up-to-date.
• Enforce security policies, procedures, and standards to protect bank assets.
• Conduct regular security assessments and audits to identify potential vulnerabilities and compliance gap.
• Work closely with other IT departments to ensure security is integrated into all technology initiatives.
• Lead, mentor, and develop a team of security professionals, fostering a collaborative and innovative work environment.

Minimum Qualifications

• Bachelor's Degree in Information Technology, Computer Science, Cybersecurity, or related field
• Minimum 8 years work experience in IT security, preferrably in banking industry
• Having knowledge related to framework network standardization such as OSI Layer and TCP/IP
• Experienced in configuring Linux and Windows operating systems
• Having knowledge related to information security framework issued by international organizations such as ISO, NIST, CIS and OWASP
• Having professional certifications such as CISSP, CISM, CISA, or equivalent are highly desirable

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 3 years of experience in information security, cybersecurity operations, or a related role.
• Hands-on experience with security tools such as SIEM, firewalls, IDPS, endpoint detection and response (EDR) solutions.
• Understanding of common cyber threats, vulnerabilities, and attack vectors.
• Experience with vulnerability assessment and penetration testing methodologies.
• Knowledge of security frameworks and best practices (e.g., NIST, ISO 27001).
• Strong analytical and problem-solving skills.
• Excellent communication and documentation skills.
• Ability to work effectively both independently and as part of a team.
• Relevant certifications such as CompTIA Security+, CEH, or GIAC are a plus.

• Monitor security systems for suspicious activities and potential threats.
• Investigate security incidents and breaches, performing root cause analysis.
• Implement and manage security controls to protect systems and data.
• Conduct vulnerability assessments and penetration testing.
• Develop and update security policies, procedures, and documentation.
• Provide security awareness training to employees.
• Manage security hardware and software, including firewalls, IDS/IPS, and antivirus.
• Participate in incident response planning and execution.
• Stay current with emerging cybersecurity threats and technologies.
• Collaborate with IT teams to ensure secure system configurations.

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• 3+ years of experience in information security or cybersecurity roles.
• Strong knowledge of network security principles, firewalls, IDS/IPS, and SIEM tools.
• Experience with vulnerability assessment and penetration testing methodologies.
• Familiarity with security frameworks (e.g., ISO 27001, NIST).
• Relevant security certifications (e.g., CompTIA Security+, CEH, CISSP) are a plus.
• Excellent analytical and problem-solving skills.
• Strong communication and reporting abilities.