IT Governance Risk and Compliance

Location Ward 1
Industry Financial Services – Banking/Insurance
Job reference 18143
Job type Permanent
Consultant email phuong.huynh@manpower.com.vn
Consultant contact no +84 338 080 077
Date posted Apr 18, 2025

Key Responsibilities

  • Manage risk assessments, audits, and compliance reviews per NIST, ISO 27001 standards.

  • Lead SOC 2 and ISO 27001 audits, including evidence management and certification processes.

  • Collaborate with IT, procurement, and privacy teams to align on GRC objectives.

  • Maintain and review security policies, standards, and risk registers.

  • Evaluate and manage third-party vendor compliance and due diligence.

  • Stay updated on security frameworks and proactively identify improvement areas.

  • Support business units on operational compliance inquiries and audit readiness.

Qualifications

  • 5+ years in information security with a focus on risk and compliance.

  • 2+ years conducting ISO 27001 and SOC 2 audits.

  • Strong knowledge of ISO 27001, SOC 2, NIST, GDPR, and cloud security practices.

  • Experience managing risk registers, third-party audits, and compliance projects.

  • Excellent communication, organization, and problem-solving skills.

  • Bachelor’s degree in IT, Information Security, or a related field.

Preferred

  • Certifications: ISO 27001 Lead Implementer/Auditor, CISA, CISM (or in progress)