Senior Specialist | Technology Risk
Grab
Company Description
About Grab and Our Workplace
Grab is Southeast Asia's leading superapp. From getting your favourite meals delivered to helping you manage your finances and getting around town hassle-free, we've got your back with everything. In Grab, purpose gives us joy and habits build excellence, while harnessing the power of Technology and AI to deliver the mission of driving Southeast Asia forward by economically empowering everyone, with heart, hunger, honour, and humility.
Job Description
Get to Know the Team
Get to Know the Role
The GTS Governance Specialist reports to the Governance Leader. The Governance team is the trusted IT Risk advisor and partner to ensure the appropriate IT Risk and controls are in place.
This role is an onsite role, and the office is in Malaysia.
The Critical Tasks You Will Perform
- Governance Program Support: You will support the Governance Leader in rolling out IT controls aligned with Grab's IT Risk Management framework and processes.
- Risk Framework Enhancement: You will improve and maintain the IT Risk Management framework, ensuring alignment with the Enterprise Risk Management (ERM) processes.
- Risk Metrics and Reporting: You will develop, review, and report key IT risk metrics (e.g., KRIs, KPIs) and provide independent reporting on the IT risk posture.
- Risk Assessments: You will conduct IT risk assessments, evaluate countermeasures, and recommend effective controls to mitigate identified IT risks.
- Risk Monitoring: You will monitor IT risks, manage the risk register, and develop strong relationships with risk owners.
- Audit Coordination: You will assist in managing and coordinating IT audits (e.g., IT SOX) and perform ad-hoc reviews on IT processes.
Qualifications
What Essential Skills You Will Need
- IT Governance and Risk Management: At least 4 years of experience in IT Governance, Risk Management, and Controls, preferably using COBIT in regulated environments.
- Risk Assessment and Management: Proficiency in conducting IT risk assessments, developing countermeasures, and managing risk registers.
- Technical Expertise: Knowledge of IT controls, risk metrics (KRIs, KPIs), and frameworks (e.g., COBIT).
- Certified Professional: CISM, CISA, or CRISC certifications are preferred but not mandatory (COBIT 2019 Foundation Training is an advantage).
Additional Information
Life at Grab
We care about your well-being at Grab, here are some of the global benefits we offer:
- We have your back with Term Life Insurance and comprehensive Medical Insurance.
- With GrabFlex, create a benefits package that suits your needs and aspirations.
- Celebrate moments that matter in life with loved ones through Parental and Birthday leave, and give back to your communities through Love-all-Serve-all (LASA) volunteering leave
- We have a confidential Grabber Assistance Programme to guide and uplift you and your loved ones through life's challenges.
- Balancing personal commitments and life's demands are made easier with our FlexWork arrangements such as differentiated hours
What We Stand For At Grab
We are committed to building an inclusive and equitable workplace that provides equal opportunity for Grabbers to grow and perform at their best. We consider all candidates fairly and equally regardless of nationality, ethnicity, race, religion, age, gender, family commitments, physical and mental impairments or disabilities, and other attributes that make them unique.