GRC Specialist
Responsibilities
- Develop the culture of cyber security governance and risk management across the organisation, and ensure proper accountability in the management, tracking and reporting of cyber risks.
- Provide subject matter advice to internal stakeholders on cyber security requirements
- Review and establish ICT policies and processes controls, and conduct compliance checks.
- Support the CIO and CISO, and work with internal stakeholders to:
- Track and monitor cyber security initiatives to meet compliance requirements.
- Participate in consultation and conduct gap analysis against new requirements.
- Assess and seek waiver approvals for deviations and dispensations.
- Coordinate and facilitate IT / cyber security audits.
- Track remediation plans to address audit findings.
What we are looking for
- Working experience in IT Governance, IT Audit, Cyber security or related field.
- Relevant certifications in IT governance, IT audit, cyber or data security (e.g. CISSP, CISM, CISA, CGEIT, etc.) preferred.
- Ability to work with cross-functional, multi-disciplined team to institute and monitor security policies and procedures.
- Knowledge of Instruction Manual 8 and CSA Cybersecurity Code of Practice preferred.