About EY:

EY, a global leader operating in more than 150 countries delivers unparalleled service in Consulting and assists clients to transform and upskill their capabilities.

We serve our clients to build a better working world, helping them to create long-term value for people and society and build trust in the capital markets. That starts with a culture that believes in giving you the training, opportunities, and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we work towards our ambition to be the best employer.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

The exceptional EY experience. It’s yours to build.

We have opportunities for Cybersecurity Governance, Risk, and Compliance (GRC) Manager Consultant in our team.

In this role, you will help our clients navigate the business and technology transformation vision. We’ll look to you to provide our clients with a unique business and technology perspective on how technology can transform and improve their entire organization, starting with key business issues they face. This is a high-growth, high-visibility area with plenty of opportunities to enhance your skill set and build your career. 

Requirement we're looking for:

• Has working experience for about 1-2 years (for Junior) in Cybersecurity Government Risk from any industry.
• Education background from Information Technology, Cybersecurity, System Information, and similar related major. 

Your key responsibilities:

• Develop, implement and monitor a strategic, comprehensive enterprise cybersecurity and risk management program to ensure the integrity, confidentiality, and availability of information owned, controlled or processed by the organization.
• Work directly with the business units to facilitate risk assessment and risk management processes, and identify acceptable levels of residual risk.
• Advise clients on global data privacy and security laws, regulations, and best practices, such as Indonesia PDP, GDPR, ISO 27701, etc.
• Conduct and lead cybersecurity assessment and manage remediation plans and strategies.
• Understand potential threats, vulnerabilities, and control techniques, and communicate these to relevant stakeholders.
• Help clients align their cybersecurity direction with their business strategy.
• Drive project management activities for the deployment of cybersecurity services.
• Responsible as data privacy & protection researcher to provide insight and understanding of new and existing information security threats and relevant regulatory requirements.
• Involved in evaluating, recommending, implementing, and solving problems and evaluating IT security of the new IT Infrastructure systems related to data privacy & protection solutions.
• Keep yourself up-to-date how privacy technologies can serve as an enabler for privacy program operations and assist with deployment of leading privacy technologies.

What we offer

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, on your way
• Transformative leadership: We’ll give you the insights, coaching, and confidence to be the leader the world needs
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs