IT Risk Officer (1 year contract)

We are seeking an IT Risk Officer to support the Cyber Governance, Risk, and Compliance (GRC) function. This role sits between Line 1 and Line 2, acting as a critical control and assurance layer to ensure technology and cyber-related activities are process-driven, compliant, well-documented, and aligned with established policies and standards.

The ideal candidate will be detail-oriented, confident in challenging poor-quality submissions, and comfortable having professional but firm conversations with stakeholders to ensure adherence to processes and guidelines.

Key Responsibilities

• Review, assess, and validate IT and cyber-related requests, ensuring full alignment with established policies, processes, and guidelines
• Ensure end-to-end documentation and evidence are complete, accurate, and audit-ready
• Manage and review change requests, validating compliance with defined change management processes
• Actively challenge and reject incomplete, non-compliant, or poor-quality submissions, providing clear feedback and remediation guidance
• Ensure all activities comply with internal governance frameworks, risk standards, and regulatory requirements
• Support cyber risk management activities by identifying, documenting, and tracking technology and cyber risks
• Prepare clear and concise reports, dashboards, and presentations for management and governance forums
• Engage with stakeholders across IT, Cyber Security, and Business teams, and push back professionally where standards are not met
• Support continuous improvement of GRC processes, controls, and documentation standards

Required Skills & Experience

• 1–5 years of experience in IT Risk, Cyber GRC, Technology Risk, or IT Controls
• Strong understanding of governance, risk, and compliance (GRC) concepts
• Basic to intermediate understanding of cybersecurity risks and controls
• Hands-on experience with process adherence, control validation, and evidence management
• Proven ability to challenge stakeholders constructively and manage difficult conversations professionally
• Strong documentation and organizational skills with high attention to detail
• Proficiency in Microsoft Office, especially PowerPoint, Excel, and Word

Preferred / Nice to Have

• Exposure to or experience with Tenable
• Knowledge of ITIL practices (certification preferred)
• Experience supporting audits, regulatory reviews, or internal assurance activities

If you are keen on the above position, reach out to Christopher Shepherdson (EA Licence No: 11C5502 | EAP Registration No: R1877011) at [email protected] or contact +65 6818 3193 for a confidential chat.