We are seeking an IT Risk Officer to support the Cyber Governance, Risk, and Compliance (GRC) function. This role sits between Line 1 and Line 2, acting as a critical control and assurance layer to ensure technology and cyber-related activities are process-driven, compliant, well-documented, and aligned with established policies and standards.
The ideal candidate will be detail-oriented, confident in challenging poor-quality submissions, and comfortable having professional but firm conversations with stakeholders to ensure adherence to processes and guidelines.
Key Responsibilities
- Review, assess, and validate IT and cyber-related requests, ensuring full alignment with established policies, processes, and guidelines
- Ensure end-to-end documentation and evidence are complete, accurate, and audit-ready
- Manage and review change requests, validating compliance with defined change management processes
- Actively challenge and reject incomplete, non-compliant, or poor-quality submissions, providing clear feedback and remediation guidance
- Ensure all activities comply with internal governance frameworks, risk standards, and regulatory requirements
- Support cyber risk management activities by identifying, documenting, and tracking technology and cyber risks
- Prepare clear and concise reports, dashboards, and presentations for management and governance forums
- Engage with stakeholders across IT, Cyber Security, and Business teams, and push back professionally where standards are not met
- Support continuous improvement of GRC processes, controls, and documentation standards
Required Skills & Experience
- 1-5 years of experience in IT Risk, Cyber GRC, Technology Risk, or IT Controls
- Strong understanding of governance, risk, and compliance (GRC) concepts
- Basic to intermediate understanding of cybersecurity risks and controls
- Hands-on experience with process adherence, control validation, and evidence management
- Proven ability to challenge stakeholders constructively and manage difficult conversations professionally
- Strong documentation and organizational skills with high attention to detail
- Proficiency in Microsoft Office, especially PowerPoint, Excel, and Word
Preferred / Nice to Have
- Exposure to or experience with Tenable
- Knowledge of ITIL practices (certification preferred)
- Experience supporting audits, regulatory reviews, or internal assurance activities
If you are keen on theabove position, reach out to Christopher Shepherdson (EA Licence No: 11C5502 |EAP Registration No: R1877011) at [Confidential Information] orcontact +65 6818 3193 for a confidential chat.
