Information Security Manager

Jakarta Selatan, Jakarta, Indonesia

Xendit logo
Xendit
Apply now Apply later

Xendit provides payment infrastructure across Southeast Asia, with a focus on Indonesia and the Philippines. We process payments, power marketplaces, disburse payroll and loans, provide KYC solutions, prevent fraud, and help businesses grow exponentially. We serve our customers by providing a suite of world-class APIs, eCommerce platform integrations, and easy to use applications for individual entrepreneurs, SMEs, and enterprises alike.

Our main focus is building the most advanced payment rails for Southeast Asia, with a clear goal in mind — to make payments across in SEA simple, secure and easy for everyone. We serve thousands of businesses ranging from SMEs to multinational enterprises, and process millions of transactions monthly. We’ve been growing rapidly since our inception in 2015, onboarding hundreds of new customers every month, and backed by global top-10 VCs. We’re proud to be featured on among the fastest growing companies by Y-Combinator.

Mission

Our vision is to build digital infrastructure for Southeast Asia, supporting customers from fast-growing startups, NGOs to multinational enterprises such as Traveloka, Lazada, Garuda Indonesia, Suzuki, and Ciputra. 

Your mission is to lead the security team building strong security tools and culture across the organization to protect Xendit and its customers from cyber threats.

Responsibilities

  • Establish security audit, compliance and risk strategy, ensuring robustness of controls and continuous compliance with international and local regulations, presently and in the future
  • Develop effective change and stakeholder management plan to ensure security policies, procedures, standards, products features, awareness trainings and campaigns have high adoption and satisfaction rate from internal stakeholders and customers, align with business strategy and compliance requirement
  • Raise the bar to improve threat defense & intelligence, incident response and security tests to protect Xendit products, employees and customers from internal or external threats
  • Drive large cross-organizations security initiatives 
  • Hire, retain and nurture a diverse team while fostering a positive and safe work environment
  • Collaborate with industry counterparts to proactively mitigate security risks presented by various threats
  • Represent security team to internal stakeholders, customers, partners, community and media
  • Do whatever it takes to make Xendit succeed

You may be a good fit if

  • Bachelor's degree in Computer Science. An equivalent combination of education and work experience may be taken into consideration in lieu of a degree
  • 7 - 10 years of relevant IT experience, with a minimum of 3-year hands-on technical experience on security engineering and a minimum of 3-year experience as a tech lead or manager for a security team
  • Strong project management skills to drive large cross-organizations initiatives span for 6 months or longer
  • Capable to hire rapidly, mentor effectively and build autonomous team in high-growth organization
  • Exceptional written and verbal communication skills in English and Bahasa Indonesia
  • Successful track record in driving a company to obtain or maintain international security standards such as PCI-DSS and ISO 27001
  • Familiar with common security risks, controls, and testing methodology of modern web app, mobile app, and APIs in microservices architecture for financial institutions
  • Understand what it takes to build strong and scalable threat defence & intelligence, incident response and security tests
  • Working experience with cloud computing platform (e.g.  AWS, Alicloud, or GCP)
  • Bonus point if you are certified in PMP, CGEIT, CISM, CISSP, or AWS Certified Security - Specialty
What we care about
  • Solve for the customer first: You build what customers want. You think about what is right for customers, not what is easiest for you
  • Demonstrate mastery of honey badgery: You make ambitious goals. Then execute…no matter what stands in the way. When knocked down, you get up
  • Take on challenges willingly and can be trusted to execute: You can be trusted to get things done right the first time quickly. You hit your deadlines
  • You’re like us: You smile a lot, think work is fun and don’t take yourself too seriously. You measure yourself against the best and believe feedback is the breakfast of champions. You follow the golden rule.
  • You’re remarkable: People naturally talk about how awesome you are. If we can’t find someone who raves about you then it’s unlikely we will too.
Job region(s): Asia/Pacific
Job stats:  6  0  0
  • Share this job via
  • or

Explore more Information Security career opportunities