The Cybersecurity GRC Analyst will support the organization's information security governance, risk management, and compliance programs. This role ensures that security policies, controls, and processes align with regulatory requirements, industry standards, and business objectives.

• Job Location: Remote (Nigeria)
• Employment Type: Full-Time
• Salary: Not stated

Kora is a global fiat and stablecoin payment infrastructure – the rails that financial institutions, fintechs, and enterprises use to move money across borders reliably and at scale. The company operates across multiple markets globally as the settlement infrastructure, compliance engine, and connectivity that makes cross-border payments work.

• Develop, review, and maintain information security policies, standards, and procedures.
• Ensure alignment with industry frameworks (ISO 27001, NIST CSF, CIS Controls).
• Support implementation and monitoring of security governance programs.
• Drive security awareness initiatives and promote compliance culture.
• Conduct risk assessments (enterprise, vendor, application, infrastructure).
• Maintain and update the organization's risk register.
• Perform control gap assessments and recommend remediation actions.
• Support third-party/vendor risk management processes.
• Track and report on risk treatment plans and mitigation progress.
• Support compliance with regulatory requirements (PCI DSS, SOC 2, GDPR).
• Coordinate internal and external audits, including evidence collection.
• Monitor compliance posture and track remediation of audit findings.
• Assist in developing compliance reports and dashboards for management.
• Collaborate with security and IT teams to ensure effective controls.
• Assist in incident response from compliance and reporting perspective.
• Support control testing and continuous monitoring activities.
• Maintain accurate documentation of policies, risk assessments, and control activities.
• Other duties as assigned by the CISO.

• 2–4 years of experience in cybersecurity, IT risk, compliance, or audit.
• Minimum of a Bachelor's degree certificate.
• Strong understanding of information security frameworks (ISO 27001, NIST, SOC 2, PCI DSS).
• Experience with risk assessment methodologies and control frameworks.
• Familiarity with regulatory requirements (financial services, data protection laws).
• Experience with GRC tools.
• Good communication and interpersonal skills.
• Positive attitude.
• Ability to handle stress appropriately and interact well with others.

Key Skills (from employer):

• Strong analytical and risk assessment skills.
• Attention to detail and strong documentation capabilities.
• Excellent communication and stakeholder management skills.
• Ability to translate technical risks into business impact.
• Strong organizational and project management abilities.
• High level of integrity and professionalism.

Benefits (from employer):

• Health insurance
• Sponsored and tailored training
• Paid parental leave
• Paid time-off
• Flexible work style
• Low-interest loans
• Group Life Insurance
• Access to up to four therapy sessions monthly
• Day off on your birthday
• Employee interest groups
• Great company culture and collaborative team environment

Note from employer:
"We recognise imposter syndrome is real – any candidate who does not perfectly fit every characteristic of this role is still strongly encouraged to apply."

How to Apply:
Interested candidates should Apply here.

Why this job might be a good fit:
This role is ideal for a GRC professional who enjoys shaping security policy, managing risk, and ensuring compliance in a fast-growing global payment infrastructure company with a strong remote-first culture.

About This Listing
This page is part of our regularly updated collection of job opportunities. Each listing is shared to help users find available roles without upfront costs. 

What You Should Know
Details such as eligibility, requirements, deadlines, and availability may change at any time. We do not control the hiring or enrollment process and are not responsible for final selections, or outcomes. 

Disclaimer
This website does not act as an employer, recruiter, or training provider. Users are advised to verify information directly from the official source before applying.

Want to see all current job openings? Browse our latest job listings to find roles that match your skills.