On-Premises GRC (Governance, Risk and Compliance) Analyst - (Associate level and not SME level)
Governance & Compliance Develop, implement, and maintain security policies, procedures, and standards in line with industry best practices (ISO 27001, NIST, CIS, etc.).
Ensure compliance with regulatory requirements (MAS TRMG, CCoP).
Assist in internal audits and security assessments to identify gaps and recommend corrective actions.
Support third-party risk assessments and vendor security compliance.
Perform UAR/UAM validation review
Perform Hardening Review
Risk Management Conduct risk assessments and identify potential security threats, vulnerabilities, and mitigation strategies.
Develop and maintain a security risk register, tracking risk treatment plans and progress.
Monitor emerging security threats and ensure proactive risk management strategies.
Assist in business continuity and disaster recovery planning related to security risks.
Security Awareness & Training Develop and deliver security awareness training programs for employees.
Promote a culture of security by advising stakeholders on best practices.
Required Skills & Qualification Bachelor's degree in Cybersecurity, Information Security, IT, or a related field.
3+ years of experience in security governance, risk management, and compliance.
Knowledge of industry security frameworks (NIST, etc.).
Familiarity with regulatory requirements (MAS, CCoP).
Experience with risk assessments, cybersecurity audits and compliance monitoring.
Strong analytical and problem-solving skills.
Excellent communication and stakeholder management skills.
Relevant certifications such as CISSP, CISA or CRISC
Working Hours General shift: 43 hours per week (9 AM to 6 PM, with a 1-hour break).
Onsite
Occasionally, weekend work may be required.
No extra allowance will be provided; instead, compensatory off will be granted.
Job Type: Contract
Pay: $60, $65,000.00 per year
Experience:
Location: