IT Security Grc Analyst

2 days ago

Singapore AMSERS CONSULTING PTE. LTD. Full time

**About the Role**:
We are seeking a detail-oriented and proactive **IT Security GRC (Governance, Risk, and Compliance) Analyst**with a minimum of **4 years of relevant experience**to support and enhance our cybersecurity risk and compliance programs. This role will help ensure that the organization’s information security practices align with regulatory requirements, internal policies, and industry standards.

As an IT Security GRC Analyst, you will work closely with various business and technology stakeholders to monitor, assess, and report on security risks, compliance obligations, and policy adherence across the enterprise.

**Key Responsibilities**:
**️**Governance**:

- Support the development, implementation, and maintenance of information security policies, standards, and procedures.Assist in aligning security governance with industry frameworks such as ISO 27001, NIST, CIS, or COBIT.

**Risk Management**:

- Conduct IT risk assessments and control reviews across business units and systems.
- Maintain the risk register, track remediation activities, and support risk reporting to management.
- Collaborate with stakeholders to identify, assess, and mitigate security risks.

***Compliance**:

- Assist with internal and external audits, ensuring readiness and timely resolution of findings.
- Monitor regulatory compliance requirements (e.g., GDPR, PDPA, SOX, MAS TRM, etc.) and ensure controls are implemented accordingly.Support third-party/vendor risk assessments and compliance due diligence.

**Monitoring & Reporting**:

- Monitor and track the implementation of security controls and report gaps.Prepare security risk metrics, dashboards, and compliance reports for internal stakeholders.

**Awareness & Engagement**:

- Contribute to the development of security training and awareness programs.
- Support change initiatives to strengthen a culture of security compliance and accountability across the organization.

**Required Skills & Experience**:

- **Minimum 4 years**of experience in IT security, GRC, risk management, or audit functions.
- Solid understanding of cybersecurity principles, regulatory frameworks, and risk methodologies.
- Familiarity with standards such as **ISO 27001**, **NIST**, **SOC 2**, **COBIT**, **CIS Controls**, or relevant compliance laws (e.g., **GDPR**, **MAS TRM**, **PDPA**).
- Experience supporting or conducting internal/external audits and assessments.
- Strong analytical skills and attention to detail.
- Effective communication skills, both written and verbal, to interface with technical and non-technical stakeholders.
- Ability to manage multiple tasks and prioritize in a dynamic environment.

**Preferred Qualifications**:

- Professional certifications such as **CISA**, **CRISC**, **CISM**, **CISSP**, or **ISO 27001 Lead Implementer/Auditor**.
- Experience working in regulated industries such as **financial services**, **technology**, or **healthcare**.
- Exposure to GRC tools (e.g., Archer, ServiceNow GRC, OneTrust).

EA License No.: 23S2046

KAH License No.: R1652932

  • Security Grc Analyst

    2 days ago

    Singapore Databricks Full time

    As a leader on the Security Assurance Team, you will be responsible for implementing and managing the Databricks GRC solution, and assisting with Databricks security compliance projects. You will report to Manager, Security Compliance. **The impact you will have**: - Design, implement, manage, and maintain the Databricks GRC tool solution. - Support OKRs...

  • Information Security Grc Analyst

    2 days ago

    Singapore Crypto.com Full time

    The team comprises of multiple functions from Blockchain Security, Operational Security, Security Governance and Compliance and more. We drive a culture of having a growth mindset and being humble to help everyone achieve their potential. Security and Data Privacy Compliance first strategy which has been at the core of our company. The security team helped...

  • Information Security Grc Analyst

    2 days ago

    Singapore Crypto.com Full time

    The team comprises of multiple functions from Blockchain Security, Operational Security, Security Governance and Compliance and more. We drive a culture of having a growth mindset and being humble to help everyone achieve their potential. Security and Data Privacy Compliance first strategy which has been at the core of our company. The security team helped...

  • Security Consultant

    2 weeks ago

    Singapore ENSIGN INFOSECURITY (CYBERSECURITY) PTE. LTD. Full time

    **Responsibilities** - Engage clients to identify requirements relating to cyber security solutions for GRC, VMS, DLP or Data Protection - Proposal, scope and size technical solutions for clients - Deploy competency’s related projects and provide consultation to clients with regard to the deployment as a Subject Matter Expert (SME) - Create technical...

  • IT Security Practice Manager

    14 hours ago

    Singapore NCS Full time

    **IT Security Practice Manager (GRC)**: **Date**:13 Nov 2024 **Location**: Singapore, Singapore **Company**:Singtel Group NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to...

  • Grc Specialist

    14 hours ago

    Singapore SAGL CONSULTING PTE. LTD. Full time

    **Job Summary**: We are seeking a Lead GRC Specialist to drive the delivery of Governance, Risk, and Compliance (GRC) solutions. The role involves balancing business and technical priorities, documenting requirements, designing solutions, and guiding implementation for platforms such as ServiceNow, Archer, and MetricStream. **Key Responsibilities**: -...

  • IT Security Governance

    14 hours ago

    Singapore Hays Full time

    **Cyber Security Roles in Singapore** **Job Posting by Belle Lim, Cyber Security Consultant at Hays Singapore** *** **IT Security Governance (GRC) Manager** **Cyber Security jobs in Singapore** **ACTIVELY HIRING NOW** Hi Everyone, An established renowned educational institution is currently looking for an IT Security Governance Manager to join their team....

  • SAP Grc Consultant

    2 weeks ago

    Singapore BLUE OCEAN SYSTEMS INFOTECH PTE. LTD. Full time

    Hi Urgent opening for SAP GRC Consultant Evaluate & integrate SAP Fiori apps into SAP GRC Perform outside research to develop expertise in SAP GRC security functionality and industry best practices within the SAP GRC, the IT risk management and compliance space Provide technical leadership in the assessment, design, and implementation of SAP GRC security...

  • SAP Grc Consultant

    1 week ago

    Singapore Blue Ocean Systems Infotech Pvt. Ltd. Full time

    **Role: SAP GRC** - Evaluate & integrate SAP Fiori apps into SAP GRC - Perform outside research to develop expertise in SAP GRC security functionality and industry best practices within the SAP GRC, the IT risk management and compliance space - **SAP GRC Access Control**: - Access Risk Analysis (ARA) - Emergency Access Management (EAM) - Business Role...

  • SAP Grc Lead

    14 hours ago

    Singapore BLUE OCEAN SYSTEMS INFOTECH PTE. LTD. Full time

    Hi Urgent opening for SAP GRC Lead Evaluate & integrate SAP Fiori apps into SAP GRC Perform outside research to develop expertise in SAP GRC security functionality and industry best practices within the SAP GRC, the IT risk management and compliance space Provide technical leadership in the assessment, design, and implementation of SAP GRC security and...