Governance Risk Compliance Analyst (Cybersecurity)

About the Role

As a GRC Analyst, you'll be at the forefront of our cybersecurity initiatives, working closely with business and tech teams to:

Conduct cybersecurity risk assessments using leading global frameworks

Help shape cybersecurity roadmaps and policies aligned with real-world business risks

Identify and analyse IT and business operational risks

Present clear, actionable insights and recommendations to internal and external stakeholders

What We're Looking For

Fluent communication skills in Mandarin & English are essential

Strong communicator able to engage both technical and business audiences

Foundational experience in cybersecurity, GRC, IT risk, or audit

Detail-oriented, analytical thinker with eagerness to learn and grow

Ability to clearly express ideas in written reports and presentations

Experience & Qualifications

0-1 year consulting or client-facing experience

1+ years in IT, audit, GRC, or cybersecurity roles preferred

Certifications such as ISO 27001 Lead Auditor or CISA are a plus but not mandatory

CPA holders interested in transitioning to cybersecurity are highly encouraged to apply-we'll support your career shift!

About Sekuro Asia

Sekuro Asia is a leading independent cybersecurity consulting firm with over 7 years in the industry. With offices across Australia and Southeast Asia, we deliver services ranging from Offensive Security to Strategy, Governance, Risk & Compliance. We are ISO27001 certified, CREST Accredited, and a PCI QSA company. Proudly, we are registered service suppliers to both the Singapore and Australian Governments