- Develop, implement, and maintain governance, risk, and compliance (GRC) frameworks, policies, and procedures tailored to the fintech and e-payment industry.
- Conduct comprehensive risk assessments and audits to identify, evaluate, and mitigate operational, financial, and information security risks.
- Ensure compliance with relevant regulatory requirements, industry standards, and internal policies, including those related to e-payment and fintech operations.
- Collaborate with cross-functional teams to integrate GRC best practices into business processes and technology solutions.
- Monitor, analyze, and report on risk exposure, compliance status, and control effectiveness to senior management and stakeholders.
- Lead incident response and investigations related to compliance breaches, security incidents, or policy violations.
- Maintain up-to-date documentation of GRC activities, risk registers, and compliance evidence.
- Provide training and awareness programs to staff on GRC policies, regulatory changes, and risk management practices.
- Support internal and external audits, ensuring timely and accurate responses to audit findings and recommendations.
- Continuously evaluate and enhance GRC tools, methodologies, and processes to align with evolving business needs and regulatory landscapes.
Bachelor’s degree in Information Technology, Computer Science, Business Administration, or a related field.4 to 5 years of proven experience in governance, risk, and compliance, preferably within the fintech, e-payment, or financial services sector.Strong understanding of regulatory frameworks and standards relevant to e-payments and fintech (e.g., PCI DSS, ISO 27001, GDPR, CBE regulations).Demonstrated experience in risk assessment, policy development, and compliance monitoring.Excellent analytical, problem-solving, and decision-making skills.Ability to work independently and remotely, managing multiple priorities in a fast-paced environment.Exceptional communication and interpersonal skills, with the ability to influence and collaborate across teams.Proficiency in GRC tools, risk management software, and Microsoft Office Suite.Strong attention to detail and organizational skills.Professional certifications in GRC, risk management, or information security are highly desirable.