Manager, IT Governance

We are seeking an experienced Manager, IT Governance to enhance our organization’s governance, compliance, and cybersecurity posture. This role is critical in safeguarding digital assets, ensuring regulatory compliance, and maintaining a strong IT control environment that supports business operations.

You will lead governance frameworks, IT audits, cybersecurity initiatives, and risk management activities while collaborating closely with IT, Risk, Legal, and business units.

• Develop and maintain IT governance frameworks, policies, and standards aligned with ISO 27001, COBIT, ITIL, and other best‑practice frameworks.
• Ensure IT processes, controls, and governance practices comply with internal policies and regulatory requirements (PDPA, BNM RMiT, GDPR).
• Conduct regular IT risk assessments and ensure mitigation plans are implemented.
• Ensure continuous compliance across the organization.
• Plan and execute internal IT audits, ensuring audit issues are addressed on time.
• Support internal and external auditors in IT and cybersecurity audit activities.
• Develop IT control matrices and conduct testing to ensure control effectiveness.
• Monitor IT risk indicators and prepare risk, audit, and compliance reports.

• Oversee cybersecurity strategies to protect systems, networks, and data assets.
• Manage vulnerability assessments, penetration testing, and cybersecurity incident responses.
• Work closely with technical teams to implement access controls and security measures.
• Promote cybersecurity awareness and conduct training for employees.

• Develop and update IT policies, SOPs, and governance processes.
• Define and monitor KPIs, SLAs, and performance metrics related to governance.
• Support digital transformation initiatives through embedded governance practices.

• Prepare governance, cybersecurity, and audit reports for management.
• Advise leadership on IT risk posture and recommend control improvements.
• Collaborate with IT, Risk, Legal, and Business units to ensure governance alignment.

• Bachelor’s Degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• 7–10 years of experience in IT governance, IT audit, or cybersecurity, with hands‑on involvement in controls, compliance, and risk management.
• Strong understanding of governance frameworks such as ISO 27001, COBIT, ITIL, and IT general controls (ITGC).
• Proven experience managing IT audits, regulatory compliance (PDPA, BNM RMiT), and risk assessments.
• Solid capability in stakeholder management, cross‑functional collaboration, and driving governance adoption across teams.
• Excellent analytical thinking, communication, decision‑making, and problem‑solving skills.

• 5 working days (Monday to Friday)
• Car allowance provided
• Annual leave entitlement
• Comprehensive medical coverage for employee
• Access to internal training programmes for technical, leadership, and professional development
• Strong career growth opportunities

Apply now with your CV and salary expectations.

We review your application based on the following criteria:

• Right to work in Malaysia
• Expected monthly basic salary
• Years of experience as Head of Information Technology
• Fluency in required languages
• Years of project management experience
• Years of experience with change management
• Notice period required by current employer