Senior Manager - Non Regulatory/Governance/Risk & Compliance - IT

Governance, Risk & Information Security | GRC Professional

- Driving strong internal governance, enterprise risk management, and information security practices aligned with organizational objectives and risk appetite.

- Develop and maintain internal policies, procedures, and governance frameworks

- Conduct operational, strategic, financial, and security risk assessments

- Design and monitor risk mitigation strategies, KRIs, and internal controls

- Perform internal audits, control reviews, and management reporting

- Review and approve information security and access requests, ensuring least-privilege and policy compliance

- Assess security risks, manage exceptions, and define compensating controls

- Evaluate security architecture, identify gaps, and strengthen security posture

- Embed risk awareness across business functions through collaboration

- Contribute to security policy development and GRC process optimization

Core Skills:

GRC | Internal Governance | Enterprise Risk | Information Security | IAM & RBAC | Network & Application Security | BIA & BCP | NIST | ISO 31000 | COBIT | MITRE | Threat Modeling | ServiceNow | Jira