111 IT Governance jobs in Malaysia

Information Technology Governance Manager

Information Technology Governance Manager

Direct message the job poster from Cognizant APAC Talent Acquisition Lead at Cognizant

The IT Governance Manager will be responsible for developing and implementing policies and procedures that ensure the effective and efficient use of IT in enabling our organization to achieve its goals. He/She will also oversee the IT governance framework, ensuring that all IT activities comply with regulatory requirements and best practices. Key responsibilities for this role include: - Developing and implementing IT governance frameworks and policies - Ensuring compliance with regulatory requirements and best practices - Monitoring and reporting on IT performance and compliance - Collaborating with other departments to ensure alignment with business objectives - Providing guidance and support for IT-related decision-making The ideal candidate should have a strong background in IT governance, risk management, and compliance, with excellent communication and leadership skills. They should also have a deep understanding of IT processes and best practices, as well as experience in managing IT projects and initiatives. Seniority level

Seniority level Mid-Senior level Employment type

Employment type Full-time Job function

Job function Information Technology Industries IT Services and IT Consulting Referrals increase your chances of interviewing at Cognizant by 2x Sign in to set job alerts for “Information Technology Governance Manager” roles.

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Information Technology Governance Manager

Federal Territory of Kuala Lumpur, Malaysia 1 week ago Information Technology Governance Manager

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 23 hours ago Kuala Lumpur City, Federal Territory of Kuala Lumpur, Malaysia 5 days ago IT Specialist, Operations and Infrastructure (MY)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago Petaling Jaya, Selangor, Malaysia 6 days ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Application Specialist, Technology & Operations

Manager, Internal Audit - IT/Technical & Network

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 year ago Petaling Jaya, Selangor, Malaysia 18 hours ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Technology Consulting - Information Technology Business Analyst, Manager/ Senior Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago Petaling Jaya, Selangor, Malaysia 5 months ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Petaling Jaya, Selangor, Malaysia 1 day ago Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago IT Security Project Manager I IT Security, MSS, Group Technology & Digital

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 days ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from Daythree

Daythree is an award-winning business process management company, focused on delivering insights and innovation-driven customer experiences. We specialize in Customer Experience Lifecycle Management, combining our expertise with unique insights to create differentiated solutions for our clients. Our commitment to excellence has made us a leader in our field.

Department: Governance, Risk & Compliance (GRC)

Reporting To: Senior Manager, GRC

Location: UOA Business Park

Key Responsibilities:

Data Privacy & Protection (PDPA & other applicable regulations):

*Serve as the appointed Data Protection Officer (DPO).

*Lead and coordinate data privacy compliance across jurisdictions.

*Develop, maintain, and update privacy policies and procedures.

*Monitor legal and regulatory changes related to privacy (e.g., PDPA) and advise on required controls or adjustments.

*Conduct and maintain Records of Processing Activities (ROPA) and lead Data Protection Impact Assessments (DPIAs) for high-risk data processing.

*Oversee personal data breach response processes and contractual obligation breaches.

Contractual Compliance & Legal Review:

*Review and interpret legal and contractual clauses including clients requirements (eg: SLAs, audit rights, and data security terms)

*Document and maintain a database of legal and contractual obligations.

*Assist in responding to legal and compliance audits or assessments.

Ethics, Anti-Bribery & Corruption (ABC):

*Collaborate with internal stakeholders to monitor and enhance the organization’s Anti-Bribery and Corruption (ABC) compliance program.

*Assist in developing and maintaining training materials and awareness initiatives on ethics and compliance.

Third-Party Risk Management:

*Establish and operationalize a third-party due diligence framework.

*Manage third-party onboarding checks related to ethics, privacy, and compliance.

*Ensure vendors and partners comply with the organization’s policies and legal obligations.

Requirements:

Qualifications:

*Diploma/Degree in Law, Legal Studies, Compliance, or related fields.

*Paralegal training or background is required.

Experience:

*Minimum 1 year of experience in compliance, legal, or data privacy roles.

*Exposure to privacy laws (e.g., PDPA) and corporate compliance is an advantage.

Skills:

*Strong understanding of data protection principles and regulatory compliance.

*Familiarity with legal and contractual clauses.

*Strong attention to detail and documentation.

*Good interpersonal and communication skills.

*Able to work independently and collaboratively across departments

Thank you!

Seniority level

• Seniority level Entry level

Employment type

• Employment type Full-time

Job function

• Job function Finance and Sales
• Industries Outsourcing and Offshoring Consulting

Referrals increase your chances of interviewing at Daythree by 2x

Sign in to set job alerts for “Compliance Specialist” roles.

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Vice President - Compliance Governance & Advisory

Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Internship - Compliance (Risk Management) (RID-00567)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago

Petaling Jaya, Selangor, Malaysia 2 months ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

GRC (Governance, Risk and Compliance) Analyst

Federal Territory of Kuala Lumpur, Malaysia 1 week ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia MYR150,000.00-MYR180,000.00 1 month ago

Federal Territory of Kuala Lumpur, Malaysia 4 days ago

Federal Territory of Kuala Lumpur, Malaysia 4 days ago

Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Regulatory Affairs Senior Executive / Assistant Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Regulatory Affairs Senior Executive / Assistant Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago

Petaling Jaya, Selangor, Malaysia 3 days ago

Asset Management - Group Compliance - Assistant Compliance Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Federal Territory of Kuala Lumpur, Malaysia 1 week ago

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Internship - Governance, Risk &Compliance Services (Petaling Jaya)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago

Money Laundering Reporting Officer (MLRO)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago

Asset Management - Group Compliance - Assistant Compliance Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Select how often (in days) to receive an alert:

Title: Manager, Credit Policy and Process

33238

Regular Employee

Office - Full Time

9 Jul 2025

Job Summary

• Facilitate the completion of Control Tests (KCIs/CSTs). Assist to identify and assess key operational risk areas and control gaps.
• Support Group with adhoc work including but not limited to
• Preparing power point training materials
• Housekeeping of all governance and policy related documents in share point
• Arranging and recording the training calls as needed (4-5 times a year)
• Quarterly Capacity plan for CIB approvers.
• Engage in periodic
• Trigger Reviews, Inherent and Residual Risk Assessments.
• Risk assessments on BAU matters (SORE and EORP Issues) and outcomes of control test results.
• Risk register reviews, risk acceptances, control documents and other regular assessments.

Key Responsibilities

People & Talent

• Lead through example and demonstrate the appropriate culture and values within the function and across the wider organisation

• Maintain a good understanding of the requirements of key external stakeholders in respect of risk management and ensure these are well understood internally and reflected in internal procedures.

Governance

Skills and Experience

Regulatory & Business Conduct

• Display exemplary conduct and live by the Group’s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

Key stakeholders

· Credit Risk Policy and Governance
· Credit Approvers

Other Responsibilities

· Embed Here for good and Group's brand and values in CIB Risk team.
· Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures

Qualifications

• Good understanding of operating risk identification process and implementing process controls. Experience in working / implementing such methodology in process operations would be preferable.
• Banking knowledge preferable

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills,global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

Provider

Description

Enabled

SAP as service provider

• "route" is used for session stickiness
• "careerSiteCompanyId" is used to send the request to the correct data centre
• "JSESSIONID" is placed on the visitor's device during the session so the server can identify the visitor

Provider

Description

Enabled

LinkedIn

#J-18808-Ljbffr

Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: Select how often (in days) to receive an alert: Title: Manager, Credit Policy and Process

33238 Regular Employee Office - Full Time 9 Jul 2025 Job Summary

• Facilitate the completion of Control Tests (KCIs/CSTs). Assist to identify and assess key operational risk areas and control gaps. • Support Group with adhoc work including but not limited to • Preparing power point training materials • Housekeeping of all governance and policy related documents in share point • Arranging and recording the training calls as needed (4-5 times a year) • Quarterly Capacity plan for CIB approvers. • Engage in periodic • Trigger Reviews, Inherent and Residual Risk Assessments. • Risk assessments on BAU matters (SORE and EORP Issues) and outcomes of control test results. • Risk register reviews, risk acceptances, control documents and other regular assessments. Key Responsibilities

People & Talent • Lead through example and demonstrate the appropriate culture and values within the function and across the wider organisation • Maintain a good understanding of the requirements of key external stakeholders in respect of risk management and ensure these are well understood internally and reflected in internal procedures.

Governance Skills and Experience

Regulatory & Business Conduct • Display exemplary conduct and live by the Group’s Values and Code of Conduct. • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. Key stakeholders · Credit Risk Policy and Governance · Credit Approvers Other Responsibilities · Embed Here for good and Group's brand and values in CIB Risk team. · Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures Qualifications

• Good understanding of operating risk identification process and implementing process controls. Experience in working / implementing such methodology in process operations would be preferable. • Banking knowledge preferable About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion. Together we: Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing. Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations. Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum. Flexible working options based around home and office locations, with flexible working patterns. Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills,global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning. Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential. Provider Description Enabled SAP as service provider "route" is used for session stickiness "careerSiteCompanyId" is used to send the request to the correct data centre "JSESSIONID" is placed on the visitor's device during the session so the server can identify the visitor Provider Description Enabled LinkedIn

#J-18808-Ljbffr

Get AI-powered advice on this job and more exclusive features. Direct message the job poster from Daythree Daythree is an award-winning business process management company, focused on delivering insights and innovation-driven customer experiences. We specialize in Customer Experience Lifecycle Management, combining our expertise with unique insights to create differentiated solutions for our clients. Our commitment to excellence has made us a leader in our field. Department: Governance, Risk & Compliance (GRC) Reporting To: Senior Manager, GRC Location: UOA Business Park Key Responsibilities: Data Privacy & Protection (PDPA & other applicable regulations): *Serve as the appointed Data Protection Officer (DPO). *Lead and coordinate data privacy compliance across jurisdictions. *Develop, maintain, and update privacy policies and procedures. *Monitor legal and regulatory changes related to privacy (e.g., PDPA) and advise on required controls or adjustments. *Conduct and maintain Records of Processing Activities (ROPA) and lead Data Protection Impact Assessments (DPIAs) for high-risk data processing. *Oversee personal data breach response processes and contractual obligation breaches. Contractual Compliance & Legal Review: *Review and interpret legal and contractual clauses including clients requirements (eg: SLAs, audit rights, and data security terms) *Document and maintain a database of legal and contractual obligations. *Assist in responding to legal and compliance audits or assessments. Ethics, Anti-Bribery & Corruption (ABC): *Collaborate with internal stakeholders to monitor and enhance the organization’s Anti-Bribery and Corruption (ABC) compliance program. *Assist in developing and maintaining training materials and awareness initiatives on ethics and compliance. Third-Party Risk Management: *Establish and operationalize a third-party due diligence framework. *Manage third-party onboarding checks related to ethics, privacy, and compliance. *Ensure vendors and partners comply with the organization’s policies and legal obligations. Requirements: Qualifications: *Diploma/Degree in Law, Legal Studies, Compliance, or related fields. *Paralegal training or background is required. Experience: *Minimum 1 year of experience in compliance, legal, or data privacy roles. *Exposure to privacy laws (e.g., PDPA) and corporate compliance is an advantage. Skills: *Strong understanding of data protection principles and regulatory compliance. *Familiarity with legal and contractual clauses. *Strong attention to detail and documentation. *Good interpersonal and communication skills. *Able to work independently and collaboratively across departments Thank you! Seniority level

Seniority level Entry level Employment type

Employment type Full-time Job function

Job function Finance and Sales Industries Outsourcing and Offshoring Consulting Referrals increase your chances of interviewing at Daythree by 2x Sign in to set job alerts for “Compliance Specialist” roles.

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Vice President - Compliance Governance & Advisory

Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago Internship - Compliance (Risk Management) (RID-00567)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 3 weeks ago Petaling Jaya, Selangor, Malaysia 2 months ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago GRC (Governance, Risk and Compliance) Analyst

Federal Territory of Kuala Lumpur, Malaysia 1 week ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia MYR150,000.00-MYR180,000.00 1 month ago Federal Territory of Kuala Lumpur, Malaysia 4 days ago Federal Territory of Kuala Lumpur, Malaysia 4 days ago Federal Territory of Kuala Lumpur, Malaysia 1 week ago Regulatory Affairs Senior Executive / Assistant Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Regulatory Affairs Senior Executive / Assistant Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 day ago Petaling Jaya, Selangor, Malaysia 3 days ago Asset Management - Group Compliance - Assistant Compliance Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago Federal Territory of Kuala Lumpur, Malaysia 1 week ago WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago Federal Territory of Kuala Lumpur, Malaysia 1 week ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Internship - Governance, Risk &Compliance Services (Petaling Jaya)

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 month ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 5 days ago Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 1 week ago Money Laundering Reporting Officer (MLRO)

WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 6 days ago Asset Management - Group Compliance - Assistant Compliance Manager

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia 2 weeks ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia

Job Type

About the Role

An exciting Governance, Risk Management & Compliance Trainer role waits for the right candidate!

What can we offer you?
- An excellent opportunity to conduct trainings on governance, risk management and compliance subjects to clients in Malaysia.
- A stimulating work environment, with abundant opportunities to show-case your trainer skills.

Requirements

HRDF Certified Trainer

Experience in giving training programs in Governance, Risk Management, Ethics & Compliance subjects

5 years of experience in teaching

About the Company

Established in 2019, ABMS Consulting Sdn Bhd (ABMS Consulting) partners with organisations across industries to navigate today's dynamic landscape. Headquartered in Malaysia, we provide comprehensive Governance, Risk Management, Compliance (GRC) Consultation, IT & Digital Transformation, ISO Consultation & Training, and Talent Acquisition Services to clients, empowering you to achieve objectives, mitigate risks, and operate with integrity.

#J-18808-Ljbffr

Senior/Junior Information Security Consultant (Governance, Risk and Compliance) Location: Malaysia

Job Summary and Mission

This position contributes to the success of wizlynx group by performing the following:

• Responsible for development and operational activities across the entire scope of our clients' Security Governance, Risk and Compliance programs.
• The job encompasses leading and participating in the assessment of security, risks, and control effectiveness for applications, infrastructure, and technology projects. The Specialist will identify, classify, and document control issues in our clients' computing environment by documenting assessment results, recommending corrective action, tracking remediation, evaluating policy and control standard exceptions, and regularly reporting to our clients' IT management.
• Serve as the primary contact point for issue escalation.
• Manage service support requirements and ensure that quality plan, KPIs/SLAs are met.
• Draft support SOP and documentation.
• Models and acts in accordance with wizlynx group guiding principles.

With this position, you will also have the opportunity to get introduced to different areas of information and cyber security such as Offensive Security & Penetration Testing.

Summary of Key Responsibilities

• Leads IT control assessments for our clients to ensure effective IT controls are in place to meet operational and compliance requirements.
• Works with our clients' IT, Internal Audit, Compliance and other key stakeholders to create an IT GRC strategy that complies with professional standards and addresses the IT risks inherent in our client’s operations and industry.
• Develops Vendor Risk Management policies and supports client’s risk profile assessment for vendor onboarding process and conducts annual review of critical vendors.
• Performs ongoing logical access reviews and recommends updates to access control privileges to ensure proper Segregation of Duties based on user access reviews.
• Effectively reports and communicates testing results to client’s IT management for corrective action, where required.
• Conducts information security awareness training.
• Performs evidence collection and project management assistance of our clients' annual compliance (e.g. CREST, PCI DSS) certification program.
• Track and monitor risk exceptions to ensure control deviations are identified and mitigating controls are in place.
• Assist our clients with drafting and maintaining information security policies.
• Provides mentoring for other team members.
• Demonstrates excellent project management skills, inspires teamwork and responsibility with engagement team members, and uses current technology/tools to enhance the effectiveness of deliverables and services.
• Facilitates the performance and testing of our client’s annual disaster recovery tests and business continuity plans.

Summary of Ideal Experience, Skills, Knowledge, and Abilities

Ideal Experience

a) Senior GRC role:

A minimum of five years of experience in information security audit or in a technology-related audit or compliance field, and strong knowledge base in operations, enterprise networking, system evaluation/architecture and consulting experience preferred.

b) Junior GRC role:
One to two years of experience in information security audit or in a technology-related audit or compliance field, and strong knowledge base in operations, enterprise networking, system evaluation/architecture and consulting experience preferred.

• Strong understanding of and ability to provide security configuration and testing of networking and operating systems including TCP/IP, WAN/LAN routing, VLAN architecture, and a wide array of large-scale environments including various major web application servers.
• Strong understanding of information security principles such as ISO 27001, BNM GPIS, MAS TRM PCI-DSS, PDPA, and other regulatory compliance.

Language Skills

• Fluent technical English (speech and writing).
• Ability to communicate clearly and concisely, both orally and in writing, in local language.

Soft Skills

• Excellent team leadership, team-oriented and team player who takes ownership.
• Flexible attitude, reliable, action-oriented.
• Customer-friendly approach and appearance.
• Willingness to travel.
• Innovative to push new ideas, dynamic and forward-looking with clear management principles towards the team.
• Able to work independently, critical thinking and be able to communicate effectively with the support team and customers.
• Enjoys working in a global team with different cultures.

Technical Skills and Abilities

• Microsoft OS and Office knowledge.
• Technical document writing.
• Experience in Project Management in IT.
• Knowledge in perimeter firewall infrastructure and VPN remote access.

Summary of Education

• Bachelor's degree from an accredited college/university in an appropriate field.

Certifications / Training

• CISM, CISA, CRISC, CISSP certified.

KEY PERFORMANCE INDICATORS / MEASURES OF SUCCESS

• Achieve agreed targets/SLA/KPI in terms of quality, time and cost.
• Lead team members to achieve team/organizational goals.
• Improve and retain high customer satisfaction.

POTENTIAL CAREER DEVELOPMENT

• Advance to higher business development tiers or geographic reach.

APPLY NOW

Your Full Name

Your Email

Upload Resume

Your Full Name Your Email Upload Resume I grant wizlynx group my consent to the processing of my personal information for the job application purposes.

#J-18808-Ljbffr

Senior/Junior Information Security Consultant (Governance, Risk and Compliance)

Location: Malaysia

Job Summary and Mission This position contributes to the success of wizlynx group by performing the following: Responsible for development and operational activities across the entire scope of our clients' Security Governance, Risk and Compliance programs. The job encompasses leading and participating in the assessment of security, risks, and control effectiveness for applications, infrastructure, and technology projects. The Specialist will identify, classify, and document control issues in our clients' computing environment by documenting assessment results, recommending corrective action, tracking remediation, evaluating policy and control standard exceptions, and regularly reporting to our clients' IT management. Serve as the primary contact point for issue escalation. Manage service support requirements and ensure that quality plan, KPIs/SLAs are met. Draft support SOP and documentation. Models and acts in accordance with wizlynx group guiding principles. With this position, you will also have the opportunity to get introduced to different areas of information and cyber security such as Offensive Security & Penetration Testing. Summary of Key Responsibilities Leads IT control assessments for our clients to ensure effective IT controls are in place to meet operational and compliance requirements. Works with our clients' IT, Internal Audit, Compliance and other key stakeholders to create an IT GRC strategy that complies with professional standards and addresses the IT risks inherent in our client’s operations and industry. Develops Vendor Risk Management policies and supports client’s risk profile assessment for vendor onboarding process and conducts annual review of critical vendors. Performs ongoing logical access reviews and recommends updates to access control privileges to ensure proper Segregation of Duties based on user access reviews. Effectively reports and communicates testing results to client’s IT management for corrective action, where required. Conducts information security awareness training. Performs evidence collection and project management assistance of our clients' annual compliance (e.g. CREST, PCI DSS) certification program. Track and monitor risk exceptions to ensure control deviations are identified and mitigating controls are in place. Assist our clients with drafting and maintaining information security policies. Provides mentoring for other team members. Demonstrates excellent project management skills, inspires teamwork and responsibility with engagement team members, and uses current technology/tools to enhance the effectiveness of deliverables and services. Facilitates the performance and testing of our client’s annual disaster recovery tests and business continuity plans. Summary of Ideal Experience, Skills, Knowledge, and Abilities Ideal Experience a) Senior GRC role: A minimum of five years of experience in information security audit or in a technology-related audit or compliance field, and strong knowledge base in operations, enterprise networking, system evaluation/architecture and consulting experience preferred. b) Junior GRC role: One to two years of experience in information security audit or in a technology-related audit or compliance field, and strong knowledge base in operations, enterprise networking, system evaluation/architecture and consulting experience preferred. Strong understanding of and ability to provide security configuration and testing of networking and operating systems including TCP/IP, WAN/LAN routing, VLAN architecture, and a wide array of large-scale environments including various major web application servers. Strong understanding of information security principles such as ISO 27001, BNM GPIS, MAS TRM PCI-DSS, PDPA, and other regulatory compliance. Language Skills Fluent technical English (speech and writing). Ability to communicate clearly and concisely, both orally and in writing, in local language. Soft Skills Excellent team leadership, team-oriented and team player who takes ownership. Flexible attitude, reliable, action-oriented. Customer-friendly approach and appearance. Willingness to travel. Innovative to push new ideas, dynamic and forward-looking with clear management principles towards the team. Able to work independently, critical thinking and be able to communicate effectively with the support team and customers. Enjoys working in a global team with different cultures. Technical Skills and Abilities Microsoft OS and Office knowledge. Technical document writing. Experience in Project Management in IT. Knowledge in perimeter firewall infrastructure and VPN remote access. Summary of Education Bachelor's degree from an accredited college/university in an appropriate field. Certifications / Training CISM, CISA, CRISC, CISSP certified. KEY PERFORMANCE INDICATORS / MEASURES OF SUCCESS Achieve agreed targets/SLA/KPI in terms of quality, time and cost. Lead team members to achieve team/organizational goals. Improve and retain high customer satisfaction. POTENTIAL CAREER DEVELOPMENT Advance to higher business development tiers or geographic reach. APPLY NOW

Your Full Name Your Email Upload Resume Your Full Name Your Email Upload Resume I grant wizlynx group my consent to the processing of my personal information for the job application purposes.

#J-18808-Ljbffr

Descriptions

KPMG, a place where bold, new ideas are welcome and dedication is rewarded, is made up of outstanding people with a broad range of interests, talents and motivations.

We invite you to join our team in Penang and to experience the KPMG difference as we continue to be The Clear Choice to our clients from every sector of business and industry imaginable. Aspiring to be an Employer of Choice, we create an atmosphere in which our employees will be inspired to excel. To this end, KPMG Penang office is seeking highly motivated and results oriented individuals to fuel our growth and embark on a journey of self-discovery. Internal Audit, Risk and Compliance Services (IARCS) provides a range of corporate governance advisory, enterprise risk management, internal auditing and controls compliance services built upon our clear understanding of business issues and opportunities. We help our clients optimize their risk management, control, and governance processes to manage risks while identifying and pursuing important opportunities to enhance business.

Responsibilities

Acting as engaging team member in conducting assignments and supporting the engagement-in-charge in delivering the services contracted for, this includes but not limited to the following:

• Identify and evaluate significant risks and internal controls for the areas being audited;
• Conduct assessments of risks as part of the audit process in the assigned areas including discussion with the risk owners, and review the effectiveness of the Risk Management process and documentation; and
• Draft audit reports that describe the result of audit highlighting all exceptions, root causes, and other deficiencies, and to recommend corrective actions with consideration of adding value to improve the internal control system, operational effectiveness, and efficiency.
• Support business development activities such as proposal writing and presentation.

Requirements

• A recognize degree in Accounting or equivalent with at least a CGPA of 3.20 or Second class upper classification and/ or a Professional Accounting qualification. Those who are currently pursuing are recognized Professional Accounting are also encouraged to apply.
• Excellent academic credentials, leadership qualities, and a good track record in extra-curricular activities
• A self-starter and must be a team player
• Initiative, good interpersonal, analytical,l and communication skills as well as the ability to work in a team
• High analytical and rationalization ability
• Excellent command of English language, both verbal and written
• Willing to travel

Closing Date: Dec. 31, 2025

For further information, and to apply, please visit our website via the “Apply” button below.

Candidates must be resident in Malaysia, or have the right to work in Malaysia.

#J-18808-Ljbffr