Information Security (Governance, Risk & Compliance)

Greetings,

One of our clients, Generali Malaysia, is currently seeking a candidate for the position of Information Security (Governance, Risk & Compliance) located in Kuala Lumpur. The ideal candidate should have at least 5 years of relevant experience.

Client Name: Generali Malaysia

Location: Kuala Lumpur

Position Summary:

The Information Security GRC (Governance, Risk & Compliance) role leads all security GRC initiatives, offering both strategic and hands-on management. The position requires a deep understanding of financial industry regulations (e.g., RMIT, GPIS) and best practices (e.g., NIST, ISO). Responsibilities include managing GRC processes, frameworks, and tools such as Archer, overseeing budgets, and ensuring compliance with security standards. The ideal candidate is a strong leader who mentors a security team and collaborates across the organization, particularly with the CISO.

Key Responsibilities:

Develop and implement reporting frameworks for security metrics and trends.

Manage security violations, risk memos, and compliance exceptions.

Plan and execute security reviews and audits.

Ensure security management policies meet GRC requirements.

Provide guidance on security compliance and regulations.

Conduct risk assessments and develop response plans.

Manage and update security policies and controls.

Align policy strategies with Information Security Leadership.

Collaborate with IT teams to ensure compliance and address risks.

Monitor security controls and address gaps.

Lead security projects to improve compliance.

Work with auditors on compliance issues.

Provide IT risk training and awareness.

Qualifications:

Bachelor's degree in IT.

7-10 years of IT experience, with 8+ years in security, particularly in GRC domains.

Strong experience in technology controls, risk assessment, and policy review.

Security certifications (e.g., CISA, CISM, CRISC, CISSP) are preferred.

Project management experience is a plus.

Strong communication and report-writing skills.

If the above scope aligns with your qualifications, please share your most updated CV along with the following details via WhatsApp:

https://wa.me/60122456834

Thank you!