IT GRC Lead

Your Main Objective

As the GRC Lead in the IT Division, you will be at the forefront of our efforts to build a robust and secure IT environment. Your role will be pivotal in developing and managing our IT governance, risk management, and compliance (GRC) programs, as well as enhancing our cybersecurity measures. You will be the go-to expert in these critical areas, driving initiatives that safeguard our organization and align with our strategic goals.

Your Main Responsibilities

You will focus on the following crucial activities:

1. Develop and implement comprehensive IT GRC frameworks
2. Create and enforce IT policies and procedures
3. Conduct regular risk assessments and manage mitigation plans
4. Lead initiatives to maintain and improve security posture
5. Lead cybersecurity incident response and investigation
6. Ensure compliance with regulations and standards
7. Collaborate with IT and business units to integrate GRC practices with organizational goals

Qualifications

• Excellent communication skills and fluency in English
• Bachelor’s degree in Information Security, Computer Science, or a related field
• Strong leadership and extensive knowledge of GRC principles and cybersecurity frameworks
• 5+ years of overall IT experience, with a focus on GRC areas
• Proven track record of formulating and enforcing IT policies
• Hands-on experience in ISO 27001 and/or PCI-DSS certification process
• In-depth understanding of data regulatory requirements such as PDP/GDPR
• Relevant certifications (e.g., CISSP, CISM, CRISC, CGEIT) are preferred
• Experience dealing with regulators or auditors would be advantageous

Be Part of ATI Journey:

Our aim at ATI Business Group in working with our Clients is to support their continued growth by providing cost-effective technology and talented & scalable people resources on demand. ATI’s focus on serving the travel and hospitality industries since 2002 has been highly successful. We now have over 900 employees providing services to our clients worldwide.