« Back to Job List

Senior GRC Consultant (Governance, Risk & Compliance)



  • Be in charge of conducting comprehensive risk assessments to identify potential threats and vulnerabilities within the organization’s systems, processes and policies.
  • Formulate and implement risk mitigation strategies and controls to minimize the impact of identified risks.
  • Keep abreast of evolving security frameworks, regulations, and standards, such as ISO 27001:2022, Cyber Trust Mark, GDPR, PDPA, and NIST.
  • Collaboratively work with cross-functional teams to integrate security requirements into business processes and technology solutions.
  • Assist in the development and implementation of security policies, procedures, and guidelines to ensure alignment with regulatory requirements and industry best practices.
  • Act as the primary point of contact for Data Protection Officer (DPO) duties, including overseeing data protection activities, ensuring compliance with relevant data protection regulations, and acting as a liaison between the organization and regulatory authorities or data subjects.
  • Guide and support internal stakeholders on security and compliance-related matters.
  • Conduct regular audits and assessments to monitor compliance with established security policies, procedures, and standards.
  • Develop and deliver training programs to raise awareness of security risks and compliance requirements among employees.


  • Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent work experience).
  • Industry-recognized certifications such as CISSP, CISA, CISM, CRISC, or equivalent.
  • Extensive experience of at least 3-5 years in performing Risk Assessment and delivering compliance standards across diverse environments, from SME to Enterprise.
  • Excellent written and verbal communication skills, with the ability to convey complex technical concepts to both technical and non-technical audiences.
  • Ability to work independently, manage multiple projects simultaneously, and meet tight deadlines.
  • Strong problem-solving skills and attention to detail.
  • A commitment to staying up to date with the evolving cybersecurity landscape.

Interested candidates may send their CV to MAC (Reg No. R1221300) at anc1@anchorsearchgroup.com quoting the job title in the Subject line. We regret that only shortlisted candidates will be notified.