- Security Governance, Assurance & Risk
- Support security governance and assurance activities, including monitoring adherence to security policies, standards, and control frameworks
- Perform and support security risk assessments for projects, platforms, and services, documenting risk, impact, and recommended treatment plans
- Assist with internal and external audits (e.g. ISO 27001, SOC 2, PCI DSS), including evidence collection, control testing, and remediation tracking
- Support control design, implementation, and operational effectiveness testing across security and IT controls
Security Metrics & Compliance Monitoring- Monitor security metrics, scorecards, and control performance indicators across applications
- Identify non鈥慶ompliance and control failures against defined security standards, policies, and SLAs
- Analyse trends and recurring issues to highlight systemic control weaknesses
- Validate the accuracy and relevance of security metric data before escalation or reporting
Non鈥慍ompliance Tracking & Remediation- Lead the tracking of security non鈥慶onformities, findings, and control gaps identified through metrics and assessments
- Verify that remediation actions are implemented sustainably
- Escalate overdue, high鈥憆isk, or stalled remediation following governance expectations
Reporting & Stakeholder Engagement- Prepare and contribute to security reporting for governance, risk, and assurance forums
- Provide clear, risk鈥慴ased summaries of security posture, non鈥慶ompliance, and remediation status
- Collaborate with Risk Management, Internal Audit, and Technology teams to proactively identify emerging risks and compliance gaps
You will be reporting to a Senior Manager