Manager, IT GRC & Audit – OREL IT in Colombo, Western Province

Company OREL IT is offering job opportunities for the position of Manager - IT GRC & Audit in the Western Province area. The job type available is Contract.

We are looking for candidates who possess skills with beginners/seniors experience. We value honesty, discipline, and responsibility in our employees.

OREL IT operates in the (according to the company) industry. If you are interested in applying to this company, please proceed with your application.

Job Information

Company:	OREL IT
Position:	Manager, IT GRC & Audit
Region:	Colombo - Western Province, Western Province
Education:	Confidential
Job Type:	Contract
Industry:	IT Services and IT Consulting

Job Description

Responsibilities:

• Perform detailed assessments of IT systems, policies, and procedures to identify risks and vulnerabilities.
• Develop and enforce IT governance frameworks, including policies, standards, and procedures, to ensure robust IT controls and compliance.
• Work with stakeholders to create risk management strategies encompassing risk identification, analysis, mitigation, and monitoring.
• Provide guidance on regulatory compliance requirements and assist in the creation and implementation of compliance programs.
• Conduct regular audits to evaluate the effectiveness of IT controls and compliance measures.
• Offer actionable insights and recommendations to enhance clients’ IT GRC posture and reduce risks.
• Keep abreast of new IT GRC trends, regulations, and best practices to maintain and improve expertise.
• Manage the internal audit function to ensure accurate financial reporting, compliance with laws, and effective internal controls.
• Develop and oversee audit plans, schedules, and reporting.
• Ensure audits are completed on time and that corrective actions are implemented.

Requirements:

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Demonstrated experience as an IT GRC Consultant or in a similar role, ideally within a consulting firm.
• Strong grasp of risk management principles and methods.
• Excellent analytical and problem-solving capabilities.
• Effective communication and interpersonal skills for collaboration with clients and stakeholders.
• Ability to manage multiple projects independently.
• Understanding of regulatory requirements such as GDPR, HIPAA, SOX, and PCI-DSS.
• In-depth knowledge of IT governance frameworks (e.g., COBIT, ISO 27001, NIST Cybersecurity Framework).
• ISO/IEC 27001 Lead Auditor Certifications is a must.
• Candidates possessing Technology or Risk Certifications such as CISA, CISM, CRISC, CGEIT, etc. would have an advantage.

Benefit

• Overtime bonus
• Gaining experience
• Comfortable work environment

Application Requirements

• Good communication skills
• Strong team skills
• Experience in similar work

Company address

Province	Western Province
City	Colombo
Full Address	37th Floor, Mireka Tower, OREL IT Global Innovation Center, 324 Havelock Rd, Colombo 00500, Sri Lanka
Google Map	Google Map