IT Governance, Risk & Control

About The Company
A dynamic technology-driven company operating in a highly regulated environment, focused on building scalable systems while maintaining strong governance, risk management, and compliance standards. As the business continues to expand and regulatory expectations increase, the company is strengthening internal controls, enhancing risk visibility, and embedding structured, audit-ready governance practices across the organization.

Job Responsibilities

• Develop and maintain IT governance frameworks, policies, and procedures, including compliance matrix and monitoring mechanisms.
• Identify, assess, and mitigate IT risks through periodic risk assessments and clear action plans.
• Ensure compliance with applicable regulations and standards (e.g., ISO 27001, ISO 27017, UU PDP) and stay updated on regulatory changes.
• Manage internal and external audits, ensure audit readiness, and follow up on findings until closure.
• Conduct user access reviews and ensure proper access management controls are in place.
• Facilitate certification and regulatory audits to maintain required licenses and certifications.
• Provide training and promote GRC best practices across IT and business teams.

Key Requirements

• Bachelor’s degree in IT, Information Security, Computer Science, or related field.
• Experience in IT governance, IT risk management, compliance, or IT audit.
• Strong understanding of frameworks such as ISO 27001, ISO 27017, and data protection regulations (e.g., UU PDP).
• Familiar with audit processes and regulatory requirements.
• Strong analytical skills with the ability to identify risks and control gaps.
• Good communication skills and able to work with cross-functional teams.
• Detail-oriented, structured, and proactive in managing compliance matters.

Call for Action
If you possess the above requirements and are keen on a new challenge, please apply directly or email [email protected]