Cybersecurity GRC Analyst

2 weeks ago

Pasay, Philippines MicroSourcing Full time

Overview

The Cybersecurity GRC Analyst supports the development and execution of governance, risk, and compliance (GRC) activities to protect sensitive health, payment, and personal data. This role ensures adherence to industry security standards (PCI DSS, NIST CSF, ISO 27001) with a practical, risk-based approach suitable for the childcare sector’s operational and regulatory landscape.

Responsibilities
  • Governance & Policy Management
    • Develop, review, and maintain cybersecurity policies, standards, and procedures.
    • Ensure alignment with industry frameworks (e.g., NIST CSF 2.0, ISO 27001, CIS Controls).
  • Risk Management
    • Conduct risk assessments and control evaluations across systems, applications, and processes.
    • Maintain and update the risk register, track mitigation plans, and report on risk posture.
    • Track and report security exceptions, findings, and remediation activities.
  • Compliance & Audit
    • Support internal and external audits, including evidence collection and remediation tracking.
    • Monitor compliance with regulatory requirements (e.g., PCI-DSS, Privacy Act).
    • Assist in third-party risk assessments and vendor due diligence.
  • Security Awareness & Training
    • Contribute to the development and delivery of cybersecurity awareness programs.
    • Promote a culture of security and compliance across the organisation.
  • Reporting & Metrics
    • Prepare regular reports and dashboards on GRC activities, risk trends, and compliance status.
    • Monitor and report on cybersecurity metrics, control effectiveness, and regulatory compliance.
  • Incident Response
    • Assist in incident response and post-incident reviews from a compliance and governance perspective.
Qualifications
  • Bachelor’s degree in Cybersecurity, Information Technology, or a related field.
  • 2-5 years of experience in cybersecurity governance, risk management, or compliance.
  • Familiarity with GRC tools (e.g., OneTrust, Vanta, Drata).
  • Understanding of regulatory and industry standards (e.g., ISO 27001, NIST CSF, SOC 2).
  • Strong analytical, communication, and documentation skills.
  • Certifications such as CISA, CRISC, or ISO 27001 Lead Implementer/Lead Auditor are a plus.
Technical Skills
  • Strong working knowledge of cybersecurity frameworks (NIST CSF, ISO27001).
  • Understanding of risk assessment methodologies and cybersecurity principles.
  • Familiarity with SIEM, DLP, IAM, vulnerability management tools, and endpoint protection platforms.
  • Proficiency in Excel, Power BI, or similar tools to analyse data and generate dashboards.
  • Familiarity with ticketing systems such as JIRA.
  • Ability to support internal and external audits, perform control testing, and monitor compliance metrics.
  • Understanding of Privacy Frameworks such as the Australian Privacy Act 1988, Victorian Privacy and Data Protection Act 2014, GDPR.
#J-18808-Ljbffr

  • Cybersecurity GRC Analyst

    3 weeks ago

    Pasay, National Capital Region, Philippines MicroSourcing Full time

    OverviewThe Cybersecurity GRC Analyst supports the development and execution of governance, risk, and compliance (GRC) activities to protect sensitive health, payment, and personal data. This role ensures adherence to industry security standards (PCI DSS, NIST CSF, ISO 27001) with a practical, risk-based approach suitable for the childcare sector's...

  • Cybersecurity GRC Analyst

    2 days ago

    Pasay, National Capital Region, Philippines MicroSourcing Full time ₱900,000 - ₱1,200,000 per year

    Discover your 100% YOU with MicroSourcingPosition: Cybersecurity GRC AnalystLocation: MoA, Pasay, PhilippinesWork setup & shift: Hybrid | Dayshift**Why join MicroSourcing? You'll have:**Competitive Rewards: Enjoy above-market compensation, healthcare coverage on day one, plus one or more dependents, paid time-off with cash conversion, group life insurance,...

  • Cybersecurity Engineer

    2 days ago

    Pasay, National Capital Region, Philippines MicroSourcing Full time ₱1,200,000 - ₱3,600,000 per year

    TheCybersecurity Engineeris responsible for designing, implementing, and maintaining security solutions to protect Camp Australia's digital assets and infrastructure. This role involves proactive threat detection, vulnerability management, incident response, and continuous improvement of security controls. The engineer works closely with IT, Cybersecurity...

  • Cybersecurity Engineer

    2 days ago

    Pasay, National Capital Region, Philippines MicroSourcing Full time ₱900,000 - ₱1,200,000 per year

    Discover your 100% YOU with MicroSourcingPosition: Cybersecurity EngineerLocation: MoA, Pasay, PhilippinesWork setup & shift: Hybrid | Dayshift**Why join MicroSourcing? You'll have:**Competitive Rewards: Enjoy above-market compensation, healthcare coverage on day one, plus one or more dependents, paid time-off with cash conversion, group life insurance, and...

  • Cybersecurity Engineer

    1 week ago

    Pasay, Philippines MicroSourcing Full time

    Cybersecurity Engineer (Dayshift - Hybrid in MOA) Join to apply for the Cybersecurity Engineer (Dayshift - Hybrid in MOA) role at MicroSourcing The Cybersecurity Engineer is responsible for designing, implementing, and maintaining security solutions to protect Camp Australia’s digital assets and infrastructure. This role involves proactive threat...

  • Cybersecurity Technical Operations Specialist

    2 weeks ago

    Pasay, Philippines National Grid Corporation of the Philippines Full time

    Overview Cybersecurity Technical Operations Specialist (Blue). We are looking for a dedicated and skilled Cybersecurity Technical Operations Senior Specialist to join our Blue Team. This role supports our defense-in-depth strategy by protecting the organization from cyber threats. This position is part of a 24/7 Security Operations Center (SOC) and focuses...

  • VAPT Analyst

    4 days ago

    Pasay, National Capital Region, Philippines Ben edictio Full time ₱720,000 per year

    Hiring for Vulnerability Analyst- Pasay City- Hybrid set-up (1-2x RTO per month)- Late mid shift____________JOB SUMMARYIdentification, assessment, and communication of new and emergent threats in the cybersecurity landscape, specifically vulnerability intelligence and detections.As a Vulnerability Analyst, you will be expected to familiarize yourself with...

  • Vulnerability Analyst

    5 days ago

    Pasay, Philippines ACCPRO INTERNATIONAL Full time

    Work Address: MOA, Pasay Work Set-up: Hybrid (1-2x a month RTO) Work Schedule: Mid Shift (4 or 5 PM - Login time) DUTIES and RESPONSIBILITIES: Vulnerability Analysts aid in the identification, assessment, and communication of new and emergent threats in the cybersecurity landscape, specifically vulnerability intelligence and detections. As a...

  • Threat Intelligence Analyst

    4 days ago

    Pasay, National Capital Region, Philippines Infinit-O Full time $90,000 - $120,000 per year

    Job Title: Threat Intelligence AnalystPosition SummaryAs a Threat Intelligence Analyst, you will research and analyze emerging cyber threats, produce concise analyst notes, and communicate findings to both technical and non-technical audiences. You will use open-source intelligence (OSINT) and internal tools such as the Recorded Future Intelligence Cloud to...

  • Vulnerability Analyst

    4 weeks ago

    Pasay, National Capital Region, Philippines HR TechX Corp. Full time

    OverviewJoin to apply for the Vulnerability Analyst role at HR TechX Corp.Vulnerability Analysts aid in the identification, assessment, and communication of new and emergent threats in the cybersecurity landscape, specifically vulnerability intelligence and detections. As a Vulnerability Analyst, you will be expected to familiarize yourself with high-impact...