Grc Expert- Singapore

2 weeks ago


Singapore Fireblocks Full time

The Governance, Risk, and Compliance expert is responsible for the assessing and documenting of Fireblocks’s compliance and risk posture.

Fireblocks Security, Governance, Risk, and Compliance (GRC) expert is responsible among others for ensuring Fireblocks leadership has the information needed to make strategic risk-based decisions enabling the achievement of Fireblocks business objectives globally. The GRC expert will deploy common governance, risk, and compliance processes, controls, conducts audits, documents, and ensures that technologies, business operations are structured and configured as well for data protection & compliance.

**Requirements**:
**About the Role**:

- Support the Sales effort and participating with prospects DD process
- Internal & External Security Audits
- Security Compliance, Vulnerability management, Third Party Risk Management Services
- IT and Cyber Security Strategy and projects
- Policy and Procedures Management
- Metrics, KRI’s, KPIs and Dashboard reporting

The GRC expert position will report to the GRC manager and be the key contact for the CISO/CIO office for supporting GRC functions in the APAC region primarily, along with supporting other regions as well. The GRC function will ensure an understanding of local/regional laws and regulations that need to be followed and addressed appropriately.

Furthermore, the role includes the following responsibilities:

- Security reviews, Compliance, Policies, Controls, Audits, Global/Regional Regulations, SLT meetings reviews and presentations, etc.
- Manage the GRC tool with updated IT and Cyber security risk register, controls, gaps, remediation and reporting. Coordinate and track all information technology and security related audits.
- GRC capability areas such as security risk management, compliance management with the changing APAC laws and applicable regulations, policy management, awareness & training.
- Support GRC team to provide training and mentoring employees, if needed.
- Work closely with other team SMEs supporting the business to provide guidance to drive towards a cohesive view of security risk and drive open remediation items to closure
- Responsible for periodic review of the compliance with Fireblocks security policies and procedures among employees, contractors and other third parties and co-ordinate with relevant stakeholders to ensure that compliance requirements are met
- Maintain up-to-date knowledge in GRC areas to be able to advise clients
- Plan and co-ordinate for implementation of information security controls based among others on ISO 27001, ISO 27017, CCSS,, SOC 2, CIS Benchmark, NIST CSF etc.

**Preferred**:

- 7+ years experience preferred in performing and running audits, certification programs and control assessments, including but not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, mapping issues to risks and socializing results.
- Advantage: Experienced with financial/Blockchain/crypto/Fintechs industry including understanding Cyber Security regulations.
- Strong knowledge of Public Cloud Service Providers (AWS, Azure, GCP), specifically the types of services offered and industry-standard internal controls and best practices for configuring and managing these services **(Any cloud certification is a plus).**:

- Relevant BA/BS degree and/or certifications (e.g, CRISC, CISSP, CCIE, CISM, CISA, CCSK)
- Strong knowledge of and experience in security risk management and with frameworks including related regulatory compliance requirements (e.g. SOC2 Type 2, ISO 27001,ISO 27017, ISO 27018, CCSS, NIST 800-171 CSF, etc) will be a huge plus
- Analytical thinker who is highly organized and pays close attention to detail.
- Strong written and verbal communication skills; ability to effectively communicate and obtain buy-in at all levels of the organization and with internal stakeholders across the business.
- Applicable information security management, governance, and compliance principles, practices, laws, rules and regulations;
- Understanding on reviewing of Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols.


  • Grc Expert- Singapore

    2 weeks ago


    Singapore Fireblocks Full time

    **About The Position**: The Governance, Risk, and Compliance expert is responsible for the assessing and documenting of Fireblocks’s compliance and risk posture. Fireblocks Security, Governance, Risk, and Compliance (GRC) expert is responsible among others for ensuring Fireblocks leadership has the information needed to make strategic risk-based decisions...

  • ERP Grc Consultant

    2 weeks ago


    Central Singapore Emprego SG Full time

    **Location** - Singapore, Central Singapore**Job Type** - Permanent**Salary** - $4,500 - $8,000 Per Month**Date Posted** - 1 hour agoAdditional Details **Job ID** - 80076**Job Views** - 2Roles & Responsibilities **ERP GRC Consultant** **Working Location: Buona Vista** **Team**:You will be work under business transformation office to drive company towards...

  • IT GRC Manager

    1 week ago


    Singapore Starhub Full time

    Join to apply for the IT GRC Manager role at StarHub Join to apply for the IT GRC Manager role at StarHub Job Description DescriptionJob Description In this position, the applicant will join the IT GRC team to perform IT governance, risk management and compliance functions. The role reports into the Head, IT VMO & GRC within the Information Services...


  • Singapore Randstad Singapore Full time

    Information Security GRC Senior Analyst | APAC Join to apply for the Information Security GRC Senior Analyst | APAC role at Randstad Singapore . This is a full-time, mid-senior level position within the Information Technology industry, focusing on cybersecurity, governance, risk management, and compliance (GRC). Responsibilities Develop, implement, and...


  • Singapore NOGLE (SINGAPORE) PTE. LTD. Full time

    Our company is seeking a dynamic and experienced Head of GRC and Privacy to oversee all aspects of governance, risk management, compliance, and privacy initiatives. As the Head of GRC and Privacy, you will play a critical role in ensuring the organization adheres to industry regulations, best practices, and internal policies while fostering a culture of...

  • GRC Leader

    2 weeks ago


    Singapore beBeeGovernance Full time $2,000,000 - $2,500,000

    Job DescriptionWe are seeking a seasoned Governance and Compliance expert to lead our mission-critical GRC function. This role plays a key part in shaping the governance, risk, and compliance agenda across multiple markets.This position will oversee the development of comprehensive governance, risk, and compliance oversight across technology and security...

  • Lead, Security Grc

    1 week ago


    Singapore COINBASE SINGAPORE PTE. LTD. Full time

    **GRC Security at Coinbase Coinbase stores more digital currency than any company in the world, making us a prime target on the internet. Security is core to our mission and has been a key competitive differentiator for us as we scale worldwide. Crucial to scaling is building and running a security compliance program that reflects how we protect the data and...


  • Singapore beBeeGRC Full time $180,000 - $250,000

    Transformation Lead – GRC ExcellenceWe are seeking a seasoned professional to drive our banking clients' GRC transformation initiatives in Singapore. As a Transformation Lead, you will define and execute strategic plans to enhance our clients' risk management, regulatory compliance, and internal control capabilities.Key Responsibilities:Develop and...


  • Singapore Hays Full time

    **Cyber Security Roles in Singapore** **Job Posting by Belle Lim, Cyber Security Consultant at Hays Singapore** *** **IT Security Governance (GRC) Manager** **Cyber Security jobs in Singapore** **ACTIVELY HIRING NOW** Hi Everyone, An established renowned educational institution is currently looking for an IT Security Governance Manager to join their team....


  • Singapore Hays Full time

    Senior Cyber Security Specialist (GRC) Hays Technology is looking for a Senior Cyber Security Specialist (GRC) to help our client to provide Governance, Risk, and Compliance expertise and to conduct security assessments to ensure information assets are secured. - Conducting security control assessments, threat and vulnerability assessments, risk and reward...