Senior Manager of Compliance overseeing compliance operations related to insurance regulations at Tokio Marine HCC. Leading a team to ensure adherence to regulatory standards and internal guidelines.
About the role
- GRC Specialist at Optasia enhancing compliance and security protocols for fintech platform operations across departments. Supporting audits, risk assessments, and security awareness training.
Responsibilities
- Maintain and enhance the company’s Information Security Management System (ISMS) aligned to ISO 27001:2022.
- Support the planning, execution, and maintenance of SOC 2 Type II controls and evidence collection.
- Prepare and maintain compliance documentation (policies, procedures, guidelines, control matrices, risk registers).
- Coordinate and track compliance across departments, ensuring timely closure of audit findings and corrective actions.
- Act as the point of contact for internal and external audits (ISO 27001, SOC 2, customer and partner audits).
- Support and manage Customer Audit activities — including responding to security and compliance questionnaires, coordinating input from multiple departments, collecting, and validating evidence, and ensuring timely and accurate responses.
- Prepare structured evidence packages, liaise with control owners, and manage communications with auditors and customers.
- Conduct internal control reviews and readiness assessments ahead of certification or customer audits.
- Participate in regular risk assessments and reviews of security controls.
- Assist in maintaining the risk register, monitoring remediation plans, and validating control effectiveness.
- Coordinate and deliver security awareness initiatives for employees (e-learning, workshops, newsletters).
- Promote a risk-aware culture and support departmental champions to strengthen overall security posture.
- Monitor changes in applicable regulations, standards, and best practices (ISO, SOC, GDPR, etc.) and recommend updates.
- Support automation and digitalization of compliance activities through GRC platforms and dashboards.
- Contribute to incident and issue management reviews to ensure lessons learned are captured and controls improved.
Requirements
- At least 3 years of experience in GRC, Information Security, or Audit roles.
- Solid understanding of ISO 27001, SOC 2, and general IT security control frameworks (NIST, COBIT, etc.).
- Strong organizational skills and ability to coordinate across departments.
- Excellent written and verbal communication in English.
- Experience supporting or participating in audits and compliance assessments.
- Strong customer-facing and communication skills, with the ability to interact confidently with clients, auditors, and internal stakeholders.
- Conceptual understanding of key security technologies such as EDR, UTM/Firewall, SIEM, and Vulnerability Management systems to evaluate related controls and compliance evidence.
Benefits
- 💸 Competitive remuneration package
- 🏝 Extra day off on your birthday
- 💰 Performance-based bonus scheme
- 👩🏽⚕️ Comprehensive private healthcare insurance
- 📲 💻 All the tech gear you need to work smart
- 🎌 Be a part of a multicultural working environment
- 🎯 Meet a very unique and promising business and industry
- 🌌 🌠 Gain insights for tomorrow market’s foreground
- 🎓 A solid career path within our working family is ready for you
- 📚 Continuous training and access to online training platforms
- 🥳 CSR activities and festive events within any possible occasion
- 🍜 Enjoy comfortable open space restaurant with varied meal options every day
- 🎾 🧘♀️ Wellbeing activities access such as free on-site yoga classes, plus available squash court on our premises
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Chief Compliance Officer ensuring compliance with BSP regulations for the first crypto brand in the Philippines. Managing risk compliance, policies, and providing guidance to teams.
LA
Governance, Risk & Compliance Officer focusing on data protection for an international trade company. Developing GRC structures and ensuring compliance with privacy regulations.
Compliance Advisor II supporting enterprise - wide compliance operations at AltaMed. Involves audits, training, policy drafting, and compliance queries with healthcare focus.
Manager, Regulatory Affairs coordinating global regulatory submissions for therapeutic development. Collaborating cross - functionally to meet regulatory agency requirements and ensure compliance.
Senior Scientist responsible for developing and maintaining Core Labeling for pharmaceutical products. Collaborating with global teams to ensure compliance with regulatory requirements and quality standards.
Compliance Intern offering forensic analysis support for Johnson & Johnson. Engaging in audits and analytical tasks in a hybrid work environment in New Brunswick, NJ.
Director, Global Regulatory Leader responsible for global regulatory strategies in innovative medicine for investigational products. Leading cross - functional teams and ensuring regulatory compliance with health authorities.
GRC Analyst supporting Siteimprove's security governance, risk, and compliance team. Engaging with customers, managing vendor security reviews, and enhancing security practices.
Compliance Manager overseeing United Rotorcraft’s compliance initiatives with federal standards. Ensuring audit readiness and managing supplier compliance and training programs.