job description
Join Kroll, the global leader in risk mitigation, investigations, and financial advisory solutions, as a Cyber Risk Associate in our dynamic team based in Bali, Indonesia. With nearly a century of trusted expertise, Kroll empowers businesses and governments to navigate complex risks with confidence. In this role, youâll play a pivotal part in delivering cutting-edge cybersecurity and risk management solutions to clients across industries.
As part of our mission to create a safer digital world, youâll collaborate with cross-functional teams to assess vulnerabilities, develop mitigation strategies, and ensure compliance with global cybersecurity standards. This is a unique opportunity to grow your career in a fast-paced, innovative environment while enjoying the vibrant work-life balance of Bali.
If youâre passionate about cybersecurity, analytical thinking, and making a tangible impact, we want to hear from you. Kroll offers competitive compensation, professional development, and the chance to work on high-profile projects with global reach.
Responsibility
- Conduct comprehensive cyber risk assessments for clients, identifying vulnerabilities in systems, networks, and processes.
- Develop and implement tailored cybersecurity strategies to mitigate risks and enhance organizational resilience.
- Monitor and analyze emerging cyber threats, providing actionable insights and recommendations to clients.
- Assist in incident response planning and execution, including breach investigations and forensic analysis.
- Collaborate with internal and external stakeholders to ensure compliance with industry standards (e.g., ISO 27001, NIST, GDPR).
- Prepare detailed reports and presentations for senior management and clients, communicating technical findings in a clear, business-oriented manner.
- Support the design and delivery of cybersecurity training programs for client teams.
- Stay updated on the latest cybersecurity trends, tools, and best practices to drive continuous improvement.
Qualifications
- Bachelorâs degree in Computer Science, Cybersecurity, Information Technology, or a related field. Advanced degrees or certifications (e.g., CISSP, CISM, CEH) are a plus.
- 2+ years of experience in cybersecurity, risk management, or IT audit, preferably in a consulting or advisory role.
- Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements (e.g., GDPR, PDPA).
- Experience with vulnerability assessment tools (e.g., Nessus, Qualys) and penetration testing methodologies.
- Excellent analytical, problem-solving, and communication skills, with the ability to translate technical concepts for non-technical audiences.
- Proven ability to work independently and collaboratively in a fast-paced, deadline-driven environment.
- Familiarity with cloud security (AWS, Azure, GCP) and secure SDLC practices is advantageous.
- Proficiency in English (written and verbal); additional languages are a bonus.