Cybersecurity GRC Analyst

Senior GRC Analyst | Cybersecurity | Singapore | 12-Month Contract (Extendable)

We're hiring a Senior GRC Analyst in Singapore. This isn't a policy-writing role, you'll be owning real programmes, influencing how things get built, and acting as the internal expert that bridges security and the business.

WHAT YOU'LL BE DOING

• Leading Data Classification, DLP implementation, and Data Discovery programmes end to end
• Conducting cybersecurity risk assessments and threat modelling
• Building frameworks for safe AI and Generative AI adoption
• Advising engineering teams on secure design across the SDLC
• Championing Privacy-by-Design and PDPA compliance
• Translating complex cyber risks into language leadership can act on

WHAT WE'RE LOOKING FOR

• 5–8 years in cybersecurity - GRC, risk management, and real project delivery
• Hands-on experience leading cross-functional security programmes
• Strong grasp of ISO 27001, NIST CSF 2.0, MITRE ATT&CK
• Familiarity with Singapore regulations - PDPA, Cybersecurity Code of Practice
• Experience with AI security frameworks (NIST AI RMF) is a big plus
• Cloud security knowledge (CSA CCM, AWS) advantageous
• Certs like CISSP, CISM, CRISC, CCSP, or PMP preferred (not all required)
• Degree in Computer Science, Computer Engineering, or related field