Job Description
DREBCON is actively hiring Security GRC Auditors with strong expertise in information security frameworks and risk management standards. This role is ideal for professionals who thrive in dynamic, high-growth environments and are passionate about compliance and cybersecurity.
Responsibilities:
- Conduct comprehensive audits in line with ISO 27001, ISO 27701, ISO 22301, PCI DSS, NIST, and COBIT
- Evaluate and enhance risk management practices
- Perform security gap assessments and document audit findings
- Provide recommendations for process and control improvements
- Collaborate with internal and external stakeholders to ensure compliance
- Assist in developing and refining governance frameworks and security policies
Job Requirements
• Practical experience with security frameworks and standards
• Strong understanding of GRC tools, security audits, and risk assessment
• Ability to create clear audit reports and compliance documentation
• Excellent analytical, communication, and problem-solving skills
Preferred Qualifications
• Certifications such as ISO 27001 Lead Auditor, CISA, CRISC, or equivalent
• Familiarity with startup or consulting environments
• Experience managing client engagements and remediation plans
• To Apply: Please send your CV with Subject: Application for Security GRC Auditor
About the Company
DREBCON is a forward-looking cybersecurity and compliance consulting startup. With several impactful projects on the horizon, we are expanding our team of experts who are passionate about securing digital ecosystems and driving risk-aware innovation.