We are looking for a motivated IT GRC Specialist to join our team. In this role, you will support the development and implementation of IT Governance, Risk, and Compliance (GRC) practices, helping ensure effective governance, regulatory compliance, and risk management across the organization. This is an excellent opportunity for professionals with a passion for IT governance, information security, and continuous improvement to grow their careers in a dynamic and collaborative environment.
Key Responsibilities
Develop, implement, and maintain the organization's IT Governance, Risk, and Compliance
(GRC) framework.
Establish and monitor IT governance policies, standards, procedures, and controls. Identify, assess, and monitor IT-related risks, ensuring appropriate mitigation strategies are
implemented.
Maintain the IT risk register and track remediation activities to closure. Ensure compliance with applicable regulatory, legal, and organizational requirements. Coordinate internal and external IT audits and facilitate the resolution of audit findings. Monitor compliance with information security policies, standards, and control frameworks. Develop and report IT governance, risk, and compliance metrics and Key Risk Indicators
(KRIs) to management.
Support business continuity, disaster recovery, and operational resilience initiatives from a
governance perspective.
Provide guidance and awareness on governance, risk management, and compliance
requirements across the organization.
Continuously improve GRC processes in alignment with industry best practices and
organizational objectives.
Qualifications And Experience
Bachelor's degree in Information Technology, Computer Science, Information Security, Risk
Management, Business Administration, or a related field.
Professional certifications such as COBIT Foundation, ITIL Foundation, ISO/IEC 27001
Foundation, CISA (or working toward certification) are preferred.
2–4 years of experience in IT Governance, Risk Management, Compliance (GRC),
Information Security, IT Audit, or a related IT role.
Basic knowledge of IT governance frameworks such as COBIT, ISO/IEC 27001, NIST, and
ITIL.
Experience supporting IT risk assessments, compliance activities, internal audits, and policy
development.
Familiarity with regulatory requirements, internal controls, and risk management principles. Experience preparing governance reports, maintaining risk registers, and tracking
remediation activities.
Strong analytical, documentation, communication, and stakeholder coordination skills.