Job Description
DREBCON is seeking IT GRC Auditors with strong experience in leading compliance frameworks and standards. If you have a passion for cybersecurity, risk management, and regulatory compliance, and are looking to grow with a promising startup, this role is for you.
Responsibilities:
- Conduct audits based on ISO 27001, ISO 27701, ISO 22301, PCI DSS, NIST, and COBIT frameworks
- Assess organizational compliance with cybersecurity policies and standards
- Identify gaps, suggest controls, and prepare compliance reports
- Work with stakeholders to improve IT governance and risk posture
- Ensure audit findings are tracked and remediated effectively
- Collaborate in designing risk mitigation strategies and business continuity plans
Job Requirements
• Hands-on experience in GRC auditing across multiple frameworks
• Sound understanding of IT security controls and regulatory standards
• Strong analytical and documentation skills
• Excellent communication and stakeholder engagement abilities
Preferred Qualifications
• Professional certifications such as ISO Lead Auditor, CISA, CRISC, or similar
• Experience in startup or fast-paced consulting environments
• Exposure to client-facing audit projects
• To Apply: Send your CV with Subject: Application for IT GRC Auditor
About the Company
DREBCON is a high-growth startup firm in the cybersecurity and risk consulting space. With several high-potential projects in the pipeline, we’re building a team of dedicated professionals ready to make an impact. Join us as we redefine the future of IT governance and security consulting.