Infrastructure & Application Security Secure on-premise and cloud-based infrastructure. Implement security best practices across Dwidaya’s systems and applications. Security Monitoring & Incident Response Continuously monitor for security breaches, vulnerabilities, and anomalies. Lead investigation and response efforts during security incidents or data breaches. Governance, Risk & Compliance (GRC) Ensure compliance with local (Kominfo), international regulations (e.g., GDPR), and industry standards (ISO 27001). Manage risk assessments and security audits. Identity and Access Management Oversee user access control, multi-factor authentication (MFA), and privileged access for internal and external systems. Manage Single-Sign-On (SSO) and IAM policies for all systems. Security Awareness & Training Conduct regular security awareness sessions and phishing simulations. Promote a security-first culture across departments. Security Tooling & Automation Deploy and manage tools such as EDR, SIEM, DLP, and vulnerability scanners. Automate patch management and threat detection where applicable. Collaboration & Reporting Work closely with IT infrastructure, IT application and compliance teams to enforce secure coding, deployment, and operational practices. Provide regular reports and dashboards to the CTO regarding security posture and KPIs.

Jakarta