Great that you're thinking about a career with BSI!

Overview / Purpose of the position

We have key positions available for this role as a Specialist Client Manager - InfoSec & Privacy to serve our esteemed group of clientele and support growth of a strong team of professionals at national and APAC level.

This is a fantastic opportunity to be part of a growing team at the heart of our Digital Trust portfolio which directly contributes to the success of our business. If you are successful, you will be trained to have excellent knowledge and awareness of BSI’s products and services, as well as our business systems to ensure that you are delivering an excellence client experience.

Applicants will be part of a dynamic team of specialist involved to conduct various types of audits to work closely with BSI clients in helping them to improve their performance by assessing their systems and processes against ISO and BSI standards:

Prepare assessment reports and deliver findings to clients to ensure client understanding of the assessment decision and clear direction to particular items of corrective action where appropriate

Recommend the issue, re-issue or withdrawal of certificates, and report recommendations in accordance with BSI policy, procedures and prescribed time frame.

Maintain overall account responsibility and accountability for nominated accounts to ensure an effective partnership, whilst ensuring excellent service delivery and account growth.

Lead assessment teams as required ensuring that team members are adequately briefed so that quality of service is maintained and that effective working relationships are sustained both with Clients and within the team.

Provide accurate and prompt information to support services, working closely with them to ensure that client records are up to date and complete and that all other internal information requirements are met.

Coach colleagues as appropriate especially where those members are inexperienced assessors or unfamiliar with clients' business/technology and assist in the induction and coaching of new colleagues as requested

Plan/schedule workloads to make the best use of own time and maximize revenue-earning activity.

Responsibilities

We are currently in need of InfoSec & Data Privacy Auditors who can support us in:

Conducting application/server/network/middleware security assessment

Performing vulnerability assessment on different platforms and technologies

Performing web, mobile, infrastructure, and wireless network penetration tests

Remain up-to-date on the latest cybersecurity threats, vulnerabilities, and regulatory requirements

You will be required to travel typically working on the client sites with delivery partners and client teams. You may even be required to work overseas on some projects.

Supporting the sales driving program and activities related to the sector’s marketing campaign as well as assisting the commercial team as needed and any other technical issues for sales proposal preparation and joining sales meetings for technical discussion with the client.

Supporting any other activities as assigned by the sector manager which relevant to sector team needs and BSI Group Indonesia management direction.

Safeguarding the company’s and client’s confidential data/information.

For this role we are looking for someone who has the following experience and expertise:

Degree holder in information systems and computer science-related discipline

Pass background checks

Possess sufficient information security knowledge and experience to conduct technically complex security assessments

Possess a minimum of one year of experience in each of the following information security disciplines 1. Application security 2. Information system security 3. Network security

Possess a minimum of one year of experience in each of the following audit/ assessment disciplines 1. IT security auditing 2. Information security risk assessment or risk management

Possess at least one of the following accredited, industry-recognized professional certifications from each list: 1. List A: CISSP, CISM, ISO 27001 Lead Implementer from accredited CB, METI RISS 2. List B: CISA, GSNA, ISO 27001 Lead auditor or Internal auditor from accredited CB, IAA CIA, IRCA ISMS Auditor

Being familiar with PCI-DSS requirements would be an advantage

Optional experience / Certification;

ISO/IEC 27001:2013 Lead Auditor: At least four (4) years of full-time practical work experience in information technology, of which at least two (2) years are in a role or function relating to information security.

CISM: (minimum 3 years of experience in 3 of 4 Job Practice Domains required) 1. Information security governance 2. Information risk management 3. Information Security Program Development and Management 4. Information Security Incident Management

Excellent communication, presentation, and interpersonal skills with the ability to deal with people at all professional levels.

Strong logical thinking, analytical and problem-solving skills.

Ability to work effectively with minimum supervision and under pressure.

With a keen interest to learn and explore new knowledge and skills.

A good command of English both verbal and written including the ability to write clear and concise reports in English.

Our Excellence Behaviours: Client-centric, Agile, Collaborative. These three behaviours represent how we do things at BSI. They help us ensure that BSI is a great place to work and a highly successful business.

BSI is conducting face-to-face interviews where appropriate and possible. If you are invited to a face-to-face interview but feel more comfortable with conducting the interview virtually, please speak to a member of our recruitment team.