About the Role
If you have an interest in information security and data protection, this role may be for you. As our Data Security and Privacy Specialist, you’ll be an integral player in the Data Privacy Team based in Bengaluru. You’ll get to conduct the security and privacy assessments for Gojek’s products as per the project plan, which includes handling large data collections and employing various management exercises. In our humble opinion, the coolest part of this role is your ability to promote ?Privacy by Design??Principles, and leading the team in shaping the future of data-centric development in efforts to make Gojek the safest workplace ecosystem for our GoTroops.
What You Will Do
Support the Group Data Governance Team with the development of Data Security control at the database level
Build Interlock model and Access governance model between Data Security & Privacy and Internal stakeholders
Evaluate legislative and regulatory proposals involving collection, use, and disclosure of personal information
Conduct security and privacy assessments for application/product as per project plan
Work with data governance team on data classification and verification and evaluate data loss risks and identify gaps in existing security & privacy capabilities
Develop vision, policy, and technical requirements for Data Loss Prevention(DLP)and act as a primary contact for reviewing DLP policy violation alerts by working with Security, IT Eng, and business stakeholders to investigate and resolve
Implementation of technical controls to comply with privacy laws by using privacy tools like Onetrust, BigID, etc.
Support periodic reporting of the data leakage issues as required by management and, produce and contribute to policies/standards/procedures/guidelines around data loss prevention and encryption
Plan, drive, and support data security initiatives as assigned across the region, helping and assisting businesses on data protection and risk reduction approaches and/or processes
What You Will Need
At least 6 years of experience supporting large organizations, with a focus on IT/Information security
Good understanding of GDPR, PDPA, and other privacy laws of Southeast Asia
Comprehensive understanding of data security methodologies, technologies, and best practices, and working experience with Data Loss Prevention technologies across endpoints, network, email, and cloud applications in an enterprise environment
Broad exposure to data-related technology and data architecture concepts
Effective management with both technical and non-technical personnel at working/management level is a must
CIPP/CDPSE or other industry-recognized security certification(s)
About the TeamGojek’s Information Security team is a group of 70+ security engineers based primarily out of Bengaluru, Singapore, and Indonesia. We’re responsible for providing a secure and trustworthy ecosystem for Gojek, delivering world-class product security capabilities while ensuring overall compliance. This team oversees security operations across all the geographies Gojek operates in, and the various entities within our ecosystem. It’s our job to make Gojek the safest cyber workplace for our GoTroops. As a team, we are concerned with the growth and safety of the company, and each other?s personal growth and well being too. With WFH becoming more normalized, you best believe we have been sharing our favorite ways to prioritize a healthy work-life balance at home. Along with our desire to utilize smart technology and innovative engineering strategies to make people?s lives easier, our team also bonds over our shared love for tea, movies & TV shows.