GLOBAL RISK AND COMPLIANCE SPECIALIST

About the role

This is a full-time role based in Kuala Lumpur, Malaysia, working for TRANSCOSMOS (MALAYSIA) SDN. BHD. As a Global Risk and Compliance Specialist, you will play a crucial role in ensuring the company's global operations adhere to all relevant regulations and risk management best practices.

Key Responsibilities:

1. Implement and maintain security controls, risk assessments, and compliance frameworks.
2. Evaluate risks, enhance security policies, and improve compliance through automation and process refinement.
3. Manage GRC tools, monitor control effectiveness, and generate reports.
4. Conduct internal security risk assessments, audits, vulnerability scans, and incident investigations.
5. Provide remediation guidance and track corrective actions.
6. Develop and roll out security policies, procedures, guidelines, or checklists to all business entities and users.
7. Support cross-functional teams in security training, audits, and compliance initiatives.
8. Review evidence before audit submission or review.
9. Work together with relevant stakeholders to improve the third-party security assessment process.

Skills & Qualifications:

1. Bachelor’s Degree in IT, Computer Science, Engineering, Information Systems or any other relevant field.
2. Must have BPO/IT auditing background.
3. 3+ years in Information Security, Governance, Risk, and Compliance (GRC).
4. Strong knowledge of IT regulations (NIST, PCI-DSS, ISO 27001, Data Protection & Information Security).
5. Experience in cybersecurity audits, risk assessments, and compliance management.
6. Ability to analyze security risks and communicate technical issues effectively.
7. Knowledge of cloud infrastructure (AWS, Azure, Google Workspace) is a plus.
8. Likely to hold at least one common security certification (CISA, CSIRC, or CompTIA Security+), alongside other relevant IT certifications.
9. Skilled in creating and maintaining compliance documentation and reports.
10. Experience in project coordination for IT projects.

Leadership & Communication:

1. Experience of operating at various levels within the organisation (e.g. senior levels, remote employees) and with external vendors.
2. Build strong relationships with internal teams and clients.
3. Strong communication skills (written and oral) and strong presentation skills.
4. Deliver training and guidance on security compliance.
5. Effectively prioritize tasks and remain calm under pressure.

How do your skills match this job?

Your application will include the following questions:

• Which of the following statements best describes your right to work in Malaysia?
• What's your expected monthly basic salary?
• Which of the following types of qualifications do you have?
• How many years' experience do you have as a Compliance Specialist?
• How many years' experience do you have in the IT industry?