Governance, Risk

Optasia is a fully enabled B2B2X financial technology platform covering scoring, financial decisioning, disbursement and collection. We are committed to enabling financial inclusion for all. We are changing the world our way.

We are seeking for enthusiastic professionals, with energy, who are results driven and have can-do attitude, who want to be part of a team of likeminded individuals who are delivering solutions in an innovative and exciting environment.  

As a member of the Information Security team in Optasia, your primary objective is to support the ongoing development and maturity of our ISO 27001:2022 and SOC 2 Type II programs as a motivated GRC Specialist. The successful candidate will play a key role in maintaining compliance, preparing for audits, and strengthening our company's security culture through awareness and continuous improvement initiatives.

This is a hands-on position, ideal for a professional with experience in governance, risk, and compliance activities within a technology-driven environment.

What you will do 
Governance & Compliance

• Maintain and enhance the company's Information Security Management System (ISMS) aligned to ISO 27001:2022.
• Support the planning, execution, and maintenance of SOC 2 Type II controls and evidence collection.
• Prepare and maintain compliance documentation (policies, procedures, guidelines, control matrices, risk registers).
• Coordinate and track compliance across departments, ensuring timely closure of audit findings and corrective actions.

Audit Coordination

• Act as the point of contact for internal and external audits (ISO 27001, SOC 2, customer and partner audits).
• Support and manage Customer Audit activities — including responding to security and compliance questionnaires, coordinating input from multiple departments, collecting, and validating evidence, and ensuring timely and accurate responses.
• Prepare structured evidence packages, liaise with control owners, and manage communications with auditors and customers.
• Conduct internal control reviews and readiness assessments ahead of certification or customer audits.

Risk Management

• Participate in regular risk assessments and reviews of security controls.
• Assist in maintaining the risk register, monitoring remediation plans, and validating control effectiveness.

Awareness & Training

• Coordinate and deliver security awareness initiatives for employees (e-learning, workshops, newsletters).
• Promote a risk-aware culture and support departmental champions to strengthen overall security posture.

Continuous Improvement

• Monitor changes in applicable regulations, standards, and best practices (ISO, SOC, GDPR, etc.) and recommend updates.
• Support automation and digitalization of compliance activities through GRC platforms and dashboards.
• Contribute to incident and issue management reviews to ensure lessons learned are captured and controls improved.

What you will bring 

• At least 3 years of experience in GRC, Information Security, or Audit roles.
• Solid understanding of ISO 27001, SOC 2, and general IT security control frameworks (NIST, COBIT, etc.).
• Strong organizational skills and ability to coordinate across departments.
• Excellent written and verbal communication in English.
• Experience supporting or participating in audits and compliance assessments.
• Strong customer-facing and communication skills, with the ability to interact confidently with clients, auditors, and internal stakeholders.
• Conceptual understanding of key security technologiessuch asEDR, UTM/Firewall, SIEM, and Vulnerability Management systemsso to evaluate related controls and compliance evidence .

Why you should apply

What we offer:
Competitive remuneration package
Extra day off on your birthday
Performance-based bonus scheme
Comprehensive private healthcare insurance
All the tech gear you need to work smart

Optasia's Perks:
Be a part of a multicultural working environment
Meet a very unique and promising business and industry
Gain insights for tomorrow market's foreground
A solid career path within our working family is ready for you
Continuous training and access to online training platforms
CSR activities and festive events within any possible occasion
Enjoy comfortable open space restaurant with varied meal options every day
Wellbeing activities access such as free on-site yoga classes, plus available squash court on our premises

Optasia's Values
#1 Drive to Thrive: Fully dedicated to evolving. We welcome all challenges and learning opportunities.
#2 Customer-First Mindset: We go above and beyond to meet our partners' and clients' expectations.
#3 Bridge the Gap: Knowledge is shared, information is exchanged and every opinion counts.
#4 Go-Getter Spirit: We are results oriented. We identify any shortcomings that hold us back and step up to do what's needed.
#5 Together we will do it: We are committed to supporting one another and to understanding and respecting different perspectives, as we aim to reach our common goals.