Skip to content

GRC Specialist - Executive Operations

    • Manilla, National Capital Region, Philippines
  • $5 - $5 per hour
  • Cyber Security

Monitor, triage, and escalate security incidents for a U.S client. Remote. Entry-level SOC role. Growth potential. Must start August 01. Must be Philippines-based and able to work full-time U.S. hours

Job description

Job Overview:
Executive Operations is looking for a highly skilled GRC Specialist to join our dynamic remote team. In this role, you will support the development, implementation, and continuous improvement of IT governance, risk management, and compliance programs. You’ll work closely with cross-functional teams to identify risks, enforce compliance, support audits, and contribute to a strong cybersecurity and regulatory posture across the enterprise.

This is a remote, full-time contract opportunity with potential for long-term engagement based on performance.

Key Responsibilities:

  • Assist in drafting, reviewing, and maintaining IT policies, procedures, and standards aligned with frameworks such as NIST, ISO 27001, and COBIT.

  • Promote governance policy adherence across teams and operations.

  • Conduct IT risk assessments, vendor risk reviews, and control gap analyses.

  • Develop and track risk treatment plans and provide regular updates to stakeholders.

  • Support internal and external audit processes by preparing documentation and evidence.

  • Ensure compliance with relevant regulations (e.g., GDPR, HIPAA, SOX, PCI-DSS).

  • Maintain clear and thorough documentation of assessments, policies, incidents, and remediation efforts.

  • Develop and deliver monthly training sessions or awareness content on GRC best practices.

  • Generate and submit timely compliance and risk reports to leadership and regulatory bodies.

Job requirements

  • Bachelor’s degree in Information Technology, Cybersecurity, or a related field.

  • 2–5 years of experience in GRC, IT audit, or cybersecurity compliance roles.

  • Familiarity with regulatory standards (e.g., GDPR, HIPAA, PCI-DSS) and frameworks (e.g., NIST, ISO 27001).

  • Experience using GRC tools like Vanta, ServiceNow GRC, Archer, or LogicManager.

  • Preferred certifications: CRISC, CISA, CISSP, CGEIT, ISO 27001 Lead Implementer.

  • Strong analytical, documentation, and reporting skills.

  • Excellent verbal and written communication skills.

  • Ability to work independently in a fast-paced, fully remote setup.

Shift timings: 9:00 am to 5:00 pm EST

or

Apply with Indeed unavailable