Cybersecurity Governance Specialist (GRC) (JD#11143) - Part-Time

Job Summary

Seeking an experienced Cybersecurity Governance Specialist to lead enterprise cybersecurity risk governance, threat risk assessments, and security architecture initiatives across IT, Cloud, and OT environments. Drive Zero Trust adoption, audit readiness, supply chain risk management, and stakeholder engagement to strengthen organizational cyber resilience.

Mandatory Skill-set

• Must have 10+ years of experience in Cybersecurity GRC, Information Security Risk Management, or Security Architecture;
• Strong expertise in enterprise risk governance and security risk management;
• Hands-on experience in Threat Risk Assessments (TRA/TVRA) and threat modeling;
• Deep understanding of Zero Trust Architecture and security-by-design principles;
• Strong knowledge of Cloud security and security control frameworks;
• Experience in third-party, vendor, and software supply chain risk management;
• Ability to map security controls to MITRE ATT&CK and evolving threat TTPs;
• Excellent stakeholder management and risk communication skills.

Desired Skill-set

• Familiarity with security policies and international security standards;
• Exposure to OT/ICS security environments;
• Certifications such as CISSP, CISM, CRISC, OSCP, or OSWE;

Responsibilities

• Establish and maintain enterprise cybersecurity risk registers;
• Lead risk discussions with senior leadership and key stakeholders;
• Develop and govern Threat Risk Assessment (TRA) standards and frameworks;
• Define and drive Zero Trust and security architecture governance initiatives;
• Provide security advisory during system design and implementation phases;
• Establish frameworks for third-party and software supply chain risk management;
• Drive audit readiness and oversee effective remediation of audit findings;
• Monitor emerging threats and assess the effectiveness of security controls.

Should you be interested in this career opportunity, please send in your updated resume to [email protected] at the earliest.

When you apply, you voluntarily consent to the disclosure, collection and use of your personal data for employment/recruitment and related purposes in accordance with the SCIENTE Group Privacy Policy, a copy of which is published at SCIENTE’s website

(https://www.sciente.com/privacy-policy).

Confidentiality is assured, and only shortlisted candidates will be notified for interviews.

EA Licence No. 07C5639