job description
Join Lewis Personnel Management, a leading IT talent partner through TalentTech Solutions, as our next Senior Security & Compliance Engineer in the vibrant tech hub of Bali, Indonesia. This is a unique opportunity to shape the security posture of cutting-edge organizations while enjoying the work-life balance of Baliâs tropical paradise.
In this critical role, youâll be the guardian of our clientsâ digital assets, ensuring robust security frameworks, compliance with global standards, and proactive threat mitigation. Youâll collaborate with cross-functional teams to design, implement, and monitor security policies, conduct risk assessments, and drive continuous improvement in security practices. Whether youâre based in Canggu, Ubud, Denpasar, or another Bali hotspot, youâll work in a hybrid/remote model that values flexibility without compromising impact.
Weâre looking for a strategic thinker with a passion for cybersecurity, compliance, and innovation. If you thrive in dynamic environments, enjoy solving complex security challenges, and want to advance your career in one of Southeast Asiaâs most exciting tech landscapes, this role is for you. Join us and be part of a team that values expertise, collaboration, and the freedom to work from paradise.
Note: This role is open to candidates based in Bali or those willing to relocate. Remote work options available for the right candidate.
Responsibility
- Design, implement, and maintain security policies, procedures, and controls to protect organizational assets and ensure compliance with global standards (e.g., ISO 27001, NIST, GDPR, PCI-DSS).
- Conduct regular security risk assessments, vulnerability scans, and penetration tests to identify and mitigate potential threats.
- Lead compliance audits and assessments, ensuring adherence to regulatory requirements and industry best practices.
- Develop and deliver security awareness training programs for employees to foster a culture of security consciousness.
- Monitor security incidents and respond to breaches, conducting forensic analysis and implementing corrective actions to prevent recurrence.
- Collaborate with IT, DevOps, and development teams to integrate security best practices into software development lifecycles (SDLC) and cloud environments.
- Stay updated on emerging security threats, trends, and technologies, and recommend proactive measures to enhance security posture.
- Prepare and present security reports to senior management, highlighting risks, compliance status, and improvement initiatives.
Qualifications
- Bachelorâs degree in Computer Science, Information Security, Cybersecurity, or a related field. Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are highly desirable.
- Minimum of 5 years of experience in security and compliance roles, with a focus on designing and implementing security frameworks.
- Proven expertise in compliance standards such as ISO 27001, NIST, GDPR, HIPAA, or PCI-DSS.
- Hands-on experience with security tools (e.g., SIEM, IDS/IPS, firewalls, endpoint protection, vulnerability scanners).
- Strong understanding of cloud security (AWS, Azure, GCP) and DevSecOps practices.
- Excellent analytical, problem-solving, and communication skills, with the ability to explain complex security concepts to non-technical stakeholders.
- Experience conducting security audits, risk assessments, and incident response activities.
- Familiarity with scripting languages (e.g., Python, Bash) and automation tools for security tasks is a plus.