Role Purpose

Lead Technology Governance, (TGRC) within the cybersecurity domain by implementing security policies, reducing risk, and ensuring compliance with international regulations and standards

Key Responsibilities

Develop and implement Cyber TGRC frameworks
Conduct risk assessments and define mitigating control
Establish and maintain policies, standards and procedures aligned to ISO 27001, NIST, CIS ETC
Manage compliance with GDPR, SOX, ITAR/EAR and other regulations
Plan and execute internal/external audits and lead corrective actions
Collaborate with IT/OT, Legal, Procurement and business stakeholders
Support incident response with regulatory reporting and governance requirements
Measure, monitor and report risk posture and KPIs to leadership

Requirements

3+ years of proven experience in GRC/Information Security

Deep knowledge of standards/regulations: ISO 27001, NIST-CSF, CIS Controls, GDPR, S
Strong technical understanding across infrastructure, cloud, networking and OT protocols
Experience in project management, policy writing and control implementation
Excellent English (written and verbal)
Relevant certifications: CISM, CRISC, ISO 27001 Lead Implementer/Lead Auditor – advantage

Skills

Analytical thinking and risk management orientation
Strong communication and stakeholder engagement
Executive reporting and documentation capabilities
Proactive, accountable and independent working style

Role Benefits

Direct impact on organizational cyber resilience aligned to business objectives
Broad exposure to technologies, regulations and cross-functional collaboration