IT Governance and Compliance Analyst

Responsible for ensuring IT governance frameworks and compliance with regulatory requirements. This includes monitoring policies, assessing risks, conducting audits, and implementing best practices to align IT operations with business objectives and legal standards.

• Bachelor's degree in Cybersecurity, Information Technology, Business, or related field.

• Relevant professional certifications such as CISA, CISM, CRISC, CGEIT, or ISO 27001 are highly preferred.

• Proven experience in cybersecurity governance, risk management, and compliance (minimum 3-5 years).

• In-depth knowledge of cybersecurity standards and frameworks (e.g., NIST, ISO 27001, PCI-DSS, GDPR).

• Familiarity with regulatory requirements and the ability to interpret and implement compliance standards.

• Proven experience in conducting threat modeling exercises, vulnerability assessments, and business impact analyses.

• Strong understanding of risk management methodologies and frameworks.

• Strong analytical, problem-solving, and communication skills.

• Ability to work collaboratively across teams and present complex information to non-technical stakeholders.

• Knowledge of cloud security and privacy compliance.

• Familiarity with data protection and privacy laws.