Senior IT GRC Analyst - Consumer Lending

About The Role

Join our team at GoTo Financial (GTF) as an IT Governance, Risk, and Compliance (GRC) Analyst where you'll play a crucial role in ensuring the secure and efficient operation of our IT infrastructure within the financial sector. Dive into the dynamic world of financial products and services, including payment and lending services. You'll gain firsthand experience in understanding the unique IT challenges and compliance requirements within the financial sector. As an IT GRC Analyst at GTF, you'll be at the forefront of safeguarding our IT environment, ensuring regulatory compliance, and upholding the trust of our customers.

What You Will Do

• Develop and maintaining IT policies, standards and procedures according to applicable internal and external requirements, including the applicable regulations in Indonesia an other countries where GTF operate;
• Develop and maintain compliance, governance and risk-related IT and business process flow;
• Coordinating with compliance team to ensure that every initiative, development and collaboration are comply with the standards and regulations (internal and external);
• Conduct routine evaluation of policies and procedures implementation and ensure best practice risk mitigation and assessment functions are maintained to comply with the company's strategy;
• Coordinate with related IT work units to follow up on data requests and internal audit findings, external audits and regulators;
• Develop the process and conduct the activities to safekeep or archive of every IT development document in a regular basis;
• Implementing a good governance organization using the ISO27001, ISO 27701, PCI DSS framework and other relevant Technology & Security best practices;
• Develop and implement the RBAC and least privilege of access management in the GTF technology stack
• Act as a Subject Matter Expert to the stakeholders and provide relevant & applicable consultation for addressing the IT GRC requirement in lending product & services.

What You Will Need

• A minimum of 5 years experiences as Information Security, IT Governance, Risk and Compliance (IT GRC) or IT Auditors;
• Demonstrate excellent communication and writing skills and proficient with English written and spoken
• Experienced in developing and maintaining IT and/or information security policies and procedures;
• Excellent knowledge in developing risk management and IT framework, BIA, BCP and BCM Framework
• Experienced in report document development and delivery;
• Experienced in dealing with regulatory audit to represent the organization IT GRC operations;
• Having good knowledge with local and regional payment & lending regulatory requirements and how they impact IT policies (having experience is preferred);
• Having excellent experience with ISO 27001, ITIL. COBIT, and PCI-DSS standards;
• One or more of the following or equivalent certifications preferred: CISA, CRISC, ITIL, COBIT is preferred

About the Team

Joining GoTo Financial (GTF) means becoming an integral part of a collaborative and dynamic team culture that values transparency, innovation, and teamwork. As a member of the GTF IT Governance, Risk, and Compliance (IT GRC) team, you'll find yourself immersed in an environment where your contributions are not only recognized but celebrated. You'll work alongside dedicated professionals within the GTF Compliance team, sharing insights, expertise, and best practices to ensure that our IT operations meet regulatory standards and industry requirements. Reporting directly to one of GTF's Head of IT GRC, you'll have the opportunity to learn from seasoned leaders in the field while also contributing your own unique perspective. Together, we'll continue to push the boundaries of innovation and set new standards for IT governance, risk management, and compliance in the financial industry.