Search by job, company or skills

JAC Recruitment

IT Governance, Risk & Compliance (GRC)

2-4 Years
Save
  • Posted 14 days ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Role Overview

My client is an integrated engineering and technology firm delivering advanced solutions across defence, digital, and complex infrastructure environments. They are looking for a hands-on GRC Analyst to support the setup and enforcement of cybersecurity governance frameworks within a growing SecOps function. This role will play a key part in building policies, processes, and controls from the ground up, while working closely with engineering and operations teams to ensure effective implementation.

Key ResponsibilitiesGovernance & Policy Development

  • Develop and implement security policies, standards, and procedures
  • Establish governance frameworks aligned to organisational and regulatory requirements
  • Define and maintain SLAs, controls, and governance processes

Risk & Compliance Management


  • Track and manage security issues from identification through to closure
  • Perform basic risk assessments and support remediation efforts
  • Ensure adherence to internal policies and regulatory expectations

Process & Control Implementation


  • Design and implement end-to-end workflows for security governance
  • Support the organisation in building structured security processes from scratch
  • Drive continuous improvement of governance maturity

Stakeholder Coordination


  • Act as liaison between security, engineering, and business teams
  • Follow up with stakeholders to ensure timely resolution of findings
  • Provide practical security guidance and recommendations

RequirementsExperience


  • 2–4 years experience in IT security, GRC, audit, or related field
  • Exposure to cybersecurity governance, risk, or compliance practices

Skills


  • Understanding of IT security concepts (e.g. incidents, vulnerabilities, infrastructure)
  • Strong organisational and tracking skills
  • Ability to manage stakeholders and drive follow-through

Nice to Have


  • Exposure to VAPT / audits / regulatory requirements
  • Certifications (e.g. CISM, CISSP, CRISC) – not mandatory

What We're Looking For


  • Proactive and detail-oriented individual
  • Comfortable working in a fast-changing, evolving environment
  • Strong team player willing to take ownership across end-to-end processes
  • Open to learning and adapting to new technologies and domains

Jaspreet Kaur Sran (R22109724)

JAC Recruitment Pte. Ltd. (90C3026)



More Info

Job Type:
Industry:
Function:
Employment Type:

About Company

Job ID: 149345279

Similar Jobs

Singapore

Skills:

Slasend-to-end workflowsIT security conceptsSecurity Policiesgovernance frameworksrisk assessments

Singapore

Skills:

technology risk Pythonregulatory engagementAudit Complianceproject managementrisk management conceptstechnology internal controlsAdvanced Excel automationOrganizational Skillstechnology control frameworksgovernance practices

Singapore

Skills:

ArcherIso 27001OneTrustrisk managementGRC toolsPDPAcybersecurity governanceNIST CSFCobitCompliancecybersecurity policiescontrol frameworksServiceNow GRCMAS TRM

Singapore

Skills:

Vulnerability AssessmentsCybersecurityThreat AnalysisIncident ResponseComplianceDefence-in-depthZero TrustDisaster Recovery PlanningGovernanceRisk Management