Talent.com
This job offer is not available in your country.
IT, Governance Risk & Compliance (GRC), SeniorAnalyst

IT, Governance Risk & Compliance (GRC), SeniorAnalyst

AMSERS CONSULTING PTE. LTD.Singapore
16 days ago
Job description

About the Role :

We are seeking a highly motivated and detail-oriented IT GRC Analyst to join our Cybersecurity Transformation team About the Role :

We are seeking a Governance, Risk, and Compliance (GRC) Analyst to join our IT department, supporting enterprise-wide initiatives as part of an ongoing transformation program. This role focuses on ensuring IT operations and projects comply with internal policies, regulatory requirements, and risk frameworks.

The successful candidate will help mature the organisation's IT governance and risk posture through structured assessments, control reviews, and continuous process improvements.

Key Responsibilities :

  • Execute and manage IT risk and control assessments across systems, infrastructure, and application domains.
  • Maintain and enhance IT governance frameworks, aligning with internal policies and regulatory expectations (e.g., MAS TRM, internal audit).
  • Coordinate and support IT audits, including internal and external reviews.
  • Review IT processes and ensure they align with control standards, including change management, incident management, asset management, etc.
  • Maintain risk registers, track mitigation plans, and monitor remediation status.
  • Facilitate and document IT risk acceptance processes, ensuring approvals are in place.
  • Work closely with cross-functional stakeholders including IT, compliance, audit, and operations to manage issues and ensure timely resolution.
  • Assist in preparing reports, metrics, and dashboards for management and risk committees.

Requirements :

  • Minimum 4 years of experience in IT governance, risk management, or compliance , ideally in a regulated environment.
  • Solid understanding of IT controls, risk frameworks, and regulatory requirements relevant to financial services (e.g., MAS TRM Guidelines).
  • Experience supporting audits and IT assessments with clear documentation and remediation tracking.
  • Strong organisational, analytical, and stakeholder communication skills.
  • Familiarity with risk and control management tools is a plus.
  • Degree in Information Systems, Computer Science, Business, or a related field.
  • Certifications such as CISA , ITIL , or related governance / risk credentials will be advantageous.

    • Preferred Backgrounds :

  • Experience working in or with financial institutions .
  • Candidates from consulting firms with FSI client exposure are welcome to apply. This individual will play a critical role in driving IT governance, risk, and compliance (GRC) initiatives aligned with regulatory standards and cybersecurity frameworks. You will be responsible for supporting the design and implementation of security policies, risk assessments, audits, and compliance reviews, ensuring alignment with business and regulatory requirements in the financial services sector.

    • Key Responsibilities :

  • Support the execution of the organization's cybersecurity transformation roadmap through the lens of IT governance and compliance.
  • Perform risk assessments, control testing , and compliance reviews across IT systems, cloud environments, and third-party vendors.
  • Monitor and manage regulatory compliance requirements , including MAS TRM, GDPR, PDPA, and other applicable standards (e.g., ISO 27001, NIST, COBIT).
  • Support the implementation of policies, standards, and procedures related to IT risk, security, and compliance.
  • Collaborate with cybersecurity, technology, and business stakeholders to ensure consistent governance and control implementation.
  • Participate in internal and external audits and assist in the remediation of audit findings.
  • Track and report on IT GRC metrics and issues, and maintain up-to-date risk registers and compliance documentation.

    • Requirements :

  • Minimum 4 years of recent experience in IT GRC , cybersecurity governance, or related fields.
  • Experience working within financial services or regulated industry environments is mandatory .
  • Candidates from consulting backgrounds with FSI client exposure are encouraged to apply.
  • Strong understanding of IT control frameworks (e.g., NIST CSF, ISO 27001, COBIT).
  • Familiarity with MAS TRM and other regional regulatory standards.
  • Strong communication and stakeholder engagement skills; able to work with cross-functional teams and business leaders.
  • Relevant certifications (e.g., CISA, CRISC, CISSP, ISO 27001 LA) are a plus.

    • For more details, kindly write into Jessica@amsers-con.com

    Create a job alert for this search

    Governance Compliance • Singapore