Governance Risk Compliance Analyst

Position Goal

Reporting to the Manager Governance Risk and Compliance. The role will be responsible

• maintaining cyber governance processes and practices to support NBC in managing security risks and compliance obligations.
• This includes documenting processes for assuring compliance with organizational and regulatory requirements, procedures and standards.

Responsibilities and Duties

• Support internal and external audit programs (PCI DSS, SWIFT CSP, SOC 2, NIST CSF, ISO27001 and BPNG Prudential Standards) by gathering necessary documentation and evidence.
• Gather and analyze GRC data to identify security trends and areas for process improvement.
• Assist in performing risk assessments, maintaining the corporate Risk Register, and monitoring risk mitigation activities.
• Assist with quarterly user access reviews, manage Role-Based Access Control (RBAC), and ensure proper documentation of access changes.
• Collaborate with IT and Cybersecurity teams to track progress and achieve milestones for key compliance projects.
• Support the development and delivery of GRC training materials and workshops to promote a culture of compliance across the bank.
• Monitor software licensing and compliance expiration dates for the Information Security and GRC business unit

Qualifications and Experience

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, Risk Management, or a related field.
• Minimum of 3+ years of experience in IT and GRC, preferably within the Banking or Financial Services sector.