GRC Analyst

Strengthen Security, Shape Governance

Build a global career in IT security without leaving the country. This is your chance to gain international exposure, strengthen governance, and make your mark in the ever-evolving cybersecurity industry. Step out of your comfort zone, embrace growth, and be part of a role that goes beyond boundaries.

Job Description

Be part of our client's team as a GRC Analyst and help customers build strong security governance programs. Support onboarding, policy development, gap reviews, and compliance readiness while serving as the trusted contact for communicating security policies, processes, and requirements.

Job Overview

Employment type: Full-time

Shift: Night shift, Flexible shift

Work setup: Permanent WFH

Exciting Perks Await

• Day 1 HMO coverage with free dependent
• Competitive Salary Package
• Night differential pay to maximize your earnings
• Permanent WFH arrangement
• Salary Advance Program through our banking partner (Eligibility and approval subject to bank assessment. Available to account holders with minimum of 6 months company tenure.)
• Unlimited upskilling through Emapta Academy courses (Want to know more? Visit )
• Free 24/7 access to our office gyms (Ortigas and Makati) with a free physical fitness trainer
• Exclusive Emapta Lifestyle perks (hotel and restaurant discounts, and more)
• Unlimited opportunities for employee referral incentives across the organization
• Standard government and Emapta benefits
• Total of 20 annual leaves to be used on your own discretion (including 5 credits convertible to cash)
• Fun engagement activities for employees
• Mentorship and exposure to global leaders and teams
• Career growth opportunities
• Diverse and supportive work environment

The Qualifications We Seek

• 2-3 years of relevant experience in information security, compliance, or risk management.
• Exceptional written and verbal communication skills are mandatory - must be able to confidently and clearly explain security policies and governance requirements to diverse audiences.
• Support US Eastern and Pacific timezones from 9AM - 6PM.
• Solid understanding of common security frameworks (ISO 27001, SOC 2, NIST CSF, etc.).
• Proven experience developing and implementing security policies and controls.
• Strong attention to detail and ability to manage multiple tasks and customer deliverables simultaneously.
• A collaborative, customer-focused mindset - thrives in a cross-functional team environment.

Nice to Have:

• Relevant certifications, such as ISO 27001 Lead Implementer, CISA, CISSP (Associate), Security+, or similar.
• Experience working with clients in regulated industries (e.g., finance, healthcare, SaaS).
• Exposure to tools for risk and compliance management.

Why You'll Love This Role:

• Directly help customers build trust and strengthen their security governance posture.
• Develop hands-on expertise with real-world frameworks, audits, and compliance practices.
• Be part of a supportive team that values strong communication, clear documentation, and continuous learning.

Your Daily Tasks

• Support customer onboarding and kick-off, ensuring clients understand their security program roadmap and governance objectives.
• Perform gap assessments to identify areas for improvement against frameworks such as ISO 27001, SOC 2, NIST, or other relevant standards.
• Draft, review, and maintain information security policies, procedures, and controls, ensuring they are clearly communicated and explained to customers.
• Effectively explain governance frameworks and policy requirements to non-technical stakeholders.
• Develop and track risk registers, mitigation plans, and corrective action plans.
• Coordinate hand-offs between governance activities and technical teams (e.g., Offensive Security, SecOps).
• Prepare clear, high-quality documentation and status reports for customers.
• Support clients through audit readiness and defense, helping collect evidence, track findings, and remediate gaps.
• Participate in regular customer status meetings and provide input on governance milestones and deliverables.

About the Client

Our client is a leading IT security company dedicated to strengthening governance, risk, and compliance for global organizations. With a focus on ISO, SOC, and NIST frameworks, they provide trusted solutions that safeguard businesses across regulated industries, from finance to healthcare and SaaS. Their collaborative team ensures customers remain audit-ready, resilient, and confident in their security posture.

Welcome to Emapta Philippines

Join a team that values camaraderie, excellence, and growth. Recognized as one of the Top 20 Dream Companies of Filipinos in 2024, Emapta stands proudly alongside industry giants, offering stability and exciting career opportunities. Your career flourishes here with competitive compensation, international clients, and a work culture focused on collaboration and innovation. Work with global clients across industries, supported by a stable foundation and like-minded professionals passionate about making an impact. We empower your success with opportunities for personal and professional development in an inclusive environment. Apply now and be part of the #EmaptaEra