The Role
The Lead IT Auditor plans and executes IT audits, documents findings, evaluates risks, manages audit projects, and provides training, while ensuring compliance with regulatory standards.
Summary Generated by Built In
About the Role
At GoTo, our business growth is consistently shaped by the rapid advancements in technology and evolving regulatory requirements. As Lead IT Auditor, you will play a key role within the Internal Audit team, contributing significantly to the development of a solid technology assurance framework. This position offers opportunities for both technical and professional growth through collaboration with a dynamic and driven IT Audit team, exposure to cutting-edge technologies, and insight into tech-driven business strategies.
What You Will Do
- Plan, coordinate and execute audits to evaluate the adequacy and effectiveness of technology infrastructure, application, and process controls.
- Provide clear and organized documentation of the audit processes and findings
- Identify and evaluate complex technology and business risks, implications and related opportunities for improvements of internal controls.
- Manage audit projects effectively – resource allocation, deliver on commitment, time management and quality reviews.
- Proactively engage and communicate effectively with related stakeholders throughout the entirety of the audit process.
- Support the development of the foundational audit methodology for the technology audit, and provide training to the team
- Continuously develop and improve your technical skillset through self-studies and Company sponsored training / certification program
- Serve as a leader to your team by demonstrating integrity in your work, professionalism in your conducts, commitment to quality deliverables and open / honest feedback to team and superior.
What You Will Need
- Minimum of 6 years of IT audit experience (with at least 4 years in an audit/consulting firm) and experience in leading a project.
- Certification: CISA is a must, with additional information security / data privacy certification (ISO 27001, CISSP, etc) preferred.
- Experienced in technology compliance audits (including risk assessment and reporting) required by Bank Indonesia and OJK.
- Prior experience in auditing cloud services and security, SDLC / Agile / DevSecOps, IAM, data privacy, BCP / DRP and / or SOX, etc. will be a plus
- Strong knowledge of audit methodology, audit planning / communication, audit program development, control testing approach, work paper documentation, work paper review, and reporting (concise write-ups).
- Experience with using data analytics and / or CAAT tools will be a plus point.
- Excellent communication, work collaboratively, analytical, and problem-solving skills as well as comfortable communicating in English (verbally and in writing).
- Highly self-motivated, inquisitive (with a keen interest in learning new technologies and IT governance framework) and strive to continuously develop technically and professionally.
About the Team
Our team, GoTo Internal Audit, is a growing group of dedicated auditors with deepening expertise in our respective areas. As part of GoTo’s Internal Audit function, we support the Board’s oversight role and provide guidance to Management on operational efficiency, risk management, and asset protection across Gojek, and GoTo Financial.
Our goal is to be a trusted business partner by delivering high-quality audits that help improve operational excellence through stronger controls and governance practices, while offering valuable insights on the transparency of performance in relation to business objectives. As a publicly listed company, we also play a key role in safeguarding stakeholders’ interests, ensuring asset protection, and maintaining regulatory compliance.
About GoTo Group
GoTo is the largest digital ecosystem in Indonesia. GoTo's mission is to 'empower progress' by offering technology infrastructure and solutions that help everyone to access and thrive in the digital economy.
The GoTo ecosystem provides a wide range of services, including mobility, delivery, payments, financial services, and technology solutions for merchants. The ecosystem also provides e-commerce services through Tokopedia and banking services through its partnership with Bank Jago.
About Gojek
Gojek is Southeast Asia’s leading on-demand platform and pioneer of the multi-service ecosystem with over 2.5 million driver partners across the regions offering a wide range of services such as transportation, food delivery, logistics and more. With its mission to create impact at scale, Gojek is committed to resolving consumer problems and raising standards of living by connecting consumers to the best providers of goods and services in the market.
About GoTo Financial
GoTo Financial accelerates financial inclusion through its leading financial services and merchants solutions. Its consumer services include GoPay and GoPayLater and serve businesses of all sizes through Midtrans, Moka, GoBiz Plus, GoBiz, and Selly. With its trusted and inclusive ecosystem of products, GoTo Financial is open to new growth opportunities and aims to empower everyone to Make It Happen, Make It Together, Make It Last.
GoTo and its business units, including Gojek and GoToFinancial ("GoTo") only post job opportunities on our official channels on our respective company websites and on LinkedIn. GoTo is not liable for any job postings or job offers that did not originate from us. You should conduct your own due diligence to prevent being victims of any fake job scams, if they did not originate from GoTo's official recruitment channels.
#LI-ONSITE
Skills Required
- Minimum of 6 years of IT audit experience
- Experience in leading a project
- Certification: CISA
- Information security/data privacy certification preferred
- Experienced in technology compliance audits required by Bank Indonesia and OJK
- Prior experience in auditing cloud services and security
- Strong knowledge of audit methodology and planning
- Experience with using data analytics or CAAT tools is a plus
GoTo Group Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about GoTo Group and has not been reviewed or approved by GoTo Group.
-
Fair & Transparent Compensation — Pay is considered competitive to above market for many corporate roles across core entities such as Gojek, Tokopedia, and GoTo Financial. Base pay is often characterized as solid or above market in Indonesia tech roles.
-
Healthcare Strength — Medical coverage is characterized as strong in Indonesia and often extends to spouses and children. Company materials also highlight wellness support, parental insurance, and mental‑health counseling for employees and families.
-
Leave & Time Off Breadth — Leave programs are described as generous, including maternity, paternity, and other special leave types at Tokopedia. Broader time‑off and flexibility practices are portrayed as supportive across corporate roles.
GoTo Group Insights
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
GoTo is the largest technology group in Indonesia, combining on-demand, e-commerce and financial services through the Gojek, Tokopedia and GoTo Financial brands. It is the first platform in Southeast Asia to host these three essential use cases in one ecosystem, capturing a majority of Indonesian consumer household expenditure. GoTo’s mission is to “Empower Progress” by offering an unparalleled selection of goods and services through a comprehensive merchant and partner network and promoting financial inclusion through its leading payments and financial services business.
