It Grc Specialist/Senior Specialist (Fintech)

TL;DR

IT GRC Specialist/Senior Specialist (Fintech): Managing Information Security and Compliance risks by collaborating with internal stakeholders and contributing to IT SOX compliance, risk management, and broader GRC initiatives. Focus on continuously assessing risks, enhancing security controls, and ensuring timely remediation of audit findings in a dynamic environment.

Location: Bangkok, Thailand. Relocation support available for eligible candidates.

Company

hirify.global is bridging the world through travel by connecting people to destinations and experiences via great deals across millions of hotels and holiday properties, flights, and experiences worldwide.

What you will do

• Apply strong knowledge of Risk Management, GRC functions, IT SOX Compliance, IT General Controls (ITGC) and industry frameworks (e.g., NIST CSF, PCI DSS and other leading standards).
• Support and manage IT SOX compliance activities, including control design, testing, documentation, and remediation tracking.
• Continuously assess risks and ensure IT policies, procedures, and standards are effectively embedded into daily operations.
• Partner with internal teams to enhance and mature security controls.
• Track and ensure timely remediation of audit and risk assessment findings.
• Proactively identify gaps and recommend improvements through strong written and verbal communication.

Requirements

• Bachelor’s degree in Business, Computer Information Systems, Computer Science, Information Systems Management, or equivalent experience.
• At least 2-4 years of experience in a technology role, preferably within a security environment.
• Strong understanding of international Information Security standards and frameworks.
• Ability to manage multiple projects and balance competing priorities.
• Independent, self-driven mindset with strong problem-solving skills.
• Excellent communication and presentation skills, with the ability to explain complex concepts clearly.

Nice to have

• Experience leading global projects across multiple regions.
• Attention to Detail- Is thorough when performing work and conscientious about attending to detail.
• Stakeholder management- Works with clients and leadership.
• Oral Communication- Expresses information to individuals or groups effectively.
• Problem Solving- Identifies problems; determines accuracy and relevance of information.
• Professional security certifications such as CISA, CRISC, CISSP, or other relevant Information Security credentials.

Culture & Benefits

• Being a company represented by people of all different backgrounds and orientations.
• Prioritizing attracting diverse talent and cultivating an inclusive environment that encourages collaboration and innovation.
• Employment based solely on a person’s merit and qualifications.
• Providing equal employment opportunity regardless of sex, age, race, color, national origin, religion, marital status, pregnancy, sexual orientation, gender identity, disability, citizenship, veteran or military status, and other legally protected characteristics.