Prudential

IT Security

Jakarta April 19, 2026

Prudential’s purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support our people’s career ambitions. We pledge to make Prudential a place where you can Connect, Grow, and Succeed.

  • Review Information Security (IS) baseline set by PCA and GHO. 

  • Develop, review, and enhance IT Security policies, procedures, standards, and technical baseline configurations. 

  • Ensure effective operation of IT Security-related policies and procedures. 

  • Handle IT security for infrastructure: Privileged ID Management, Firewall control, VPN control, Key management, Infrastructure Security projects. 

  • Handle application and user security: application project support, identity and access rights management, VPN account management, end-point security management. 

  • Periodically evaluate IT security status across infrastructure, applications, and databases; highlight risks and provide recommendations to the Information Security Manager (ISM). 

  • Manage detections and security incident processes: discovery, recovery, reporting; act as primary support during incidents and escalate repeated issues to ISM. 

  • Ensure safety of privileged account passwords. 

  • Handle IT Security & IAM requests: user administration, password resets, account housekeeping per policies. 

  • Provide security consultation during application and network architecture design and implementation. 

  • Participate in IT DRP to ensure IT security matters are adequately addressed. 

  • Manage AS/400 and Life/Asia user access: create, modify, delete accounts; assign authorities per procedure and conduct semi-annual access reviews. 

  • Conduct assessment design checkpoint for each project 

  • Ensuring security tools are covered in all assets 

  • Review and assess DevSecOps process, ensure there are no critical and high vulnerability allow before CAB 

  • Conduct Tabletop exercise with CMT member to ensure awareness if any incident happened 

  • Provide SSL certificate and private key 

  • Ensuring internet application and all API that internet facing is covered by Web application firewall 

  • manage and track remediation action for bitsight and watchtowr report 

  • Conduct vulnerability assessment and security baseline and coordinate with system owner to remediate the vulnerability based on SLA 

  • Coordinate with GISP and system owner to conduct Pentest for internet facing application mobile, web application and infrastructure 

  • As Local solution review member to ensure the project meet with our requirement 

  • Manage the lifecycle of BitLocker recovery keys, including secure storage, retrieval, handover, and revocation in accordance with approved procedures and access control requirements 

 

Prudential is an equal opportunity employer. We provide equality of opportunity of benefits for all who apply and who perform work for our organisation irrespective of sex, race, age, ethnic origin, educational, social and cultural background, marital status, pregnancy and maternity, religion or belief, disability or part-time / fixed-term work, or any other status protected by applicable law. We encourage the same standards from our recruitment and third-party suppliers taking into account the context of grade, job and location. We also allow for reasonable adjustments to support people with individual physical or mental health requirements.

Apply on company site

How well do you match this role?

Check My Resume