IT - GRC

• Have experience in handling the IT Governance, Risk, and Compliance (GRC) and audit specifically focusing on the IT Security E-signature.
• Overseeing, managing and taking responsibilities for the IT department across SeaMoney entities.

Governance, Risk, and Compliance (GRC):

• Lead the development, implementation, and management of GRC frameworks to ensure the organization complies with applicable regulations, industry standards, and best practices.
• Drive the creation and execution of IT risk management strategies, including identifying, assessing, and mitigating risks related to technology, data, and cybersecurity.
• Oversee the implementation of risk assessment processes and ensure proper documentation of risk mitigation strategies.
• Establish, monitor, and report on key performance indicators (KPIs) for GRC and ensure the organization adheres to internal policies, external regulations, and industry standards.

Audit and Compliance:

• Manage internal and external IT audits, ensuring compliance with regulatory standards such as GDPR, HIPAA, PCI-DSS, and others.
• Collaborate with internal audit teams to evaluate the effectiveness of controls and provide guidance on remediation efforts.
• Monitor the results of audits and assessments and work to ensure timely corrective actions are taken.
• Ensure that audit and compliance records are well-documented and maintained for internal and regulatory purposes.

Cybersecurity and IT Security:

• Develop, implement, and manage the organization’s IT security strategy, ensuring the protection of critical systems, data, and applications from cyber threats.
• Oversee the deployment and maintenance of cybersecurity tools and technologies, including firewalls, intrusion detection systems, and encryption protocols.
• Ensure the organization is prepared for and able to respond to security incidents, including managing incident response plans, and recovery processes.
• Lead efforts to promote cybersecurity awareness and best practices across the organization.