IT Risk Officer

Privy is an end-to-end Digital Trust Platform that transforms the global digital identity and digital signature market with more than 65 million verified users and more than 155,000 enterprise clients. We are backed by blue-chip investors, including KKR, Granite Asia, Okta, Singtel, Telkom Indonesia, and Mandiri, and trusted by global companies across industries such as banking, telecom, healthcare, government, and education. As we grow rapidly, we would love to have talented and enthusiastic individuals on board.

• Assist in identifying and collecting information related to assets, threats, and vulnerabilities.
• Support the team by analyzing and evaluating potential risks.
• Help develop and document risk control measures under senior guidance.
• Monitor and review the effectiveness of risk controls and suggest improvements.
• Prepare and update risk assessment reports and assist communication with risk owners.
• Maintain and update the Risk Register and related documents.
• Identify and documents gaps in collaboration or communication between departments.
• Support audit activities by helping collect and organize required evidence.
• Continuously learn and apply risk management principles to support governance, risk, and compliance initiatives.

• Minimum bachelor's degree, majoring in Information Systems or Information Technology
• Open to Fresh Graduates, especially those with internship experience in Governance, Risk, or Compliance (GRC).
• Basic understanding of ISO 27001, ISO 27701, or similar standards.
• Strong attention to detail and ability to manage documentation (e.g., policy reviews, version control)
• Familiar with tools such as Microsoft Office, SharePoint, Outlook, or Adobe Acrobat (PDF)
• Detail-oriented, well-organized, good in written communication, and adaptable in a dynamic work environment.