Governance, Risk and Compliance (GRC) Specialist

India, Philippines


Multi currency business account, for start-ups & SMEs, to manage your company spends & expenses, accounts receivables & payables, invoices, bills, corporate cards & cross-border payments.

View company page

Aspire is the leading all-in-one finance operating system for growing businesses in APAC. We are on a mission to reinvent business finance for a new generation of entrepreneurs and business owners, empowering startups and MSME to realise their full potential. 

Founded in 2018, Aspire has raised over USD 300M+ across equity and debt from world-class investors. In 2023, we successfully closed an oversubscribed USD 100 million Series C equity round led by Sequoia Capital and Lightspeed Ventures with participation of Tencent, Paypal Ventures, LGT Capital Partners, Picus Capital and MassMutual Ventures. To power our solutions, we have partnered with some of the best companies in the world such as Visa and Wise and helped more than 15,000 businesses using our suite of products.

In 2022, we were awarded Best Employer of the Year and Payments Tech of the Year by Asia Fintech Awards, ranked #1 on LinkedIn's 2022 Top Startups list and were listed on YC Top Companies 2022. In 2023, we ranked Top 10 on The Straits Times Fastest-Growing Companies. 

You will be amazed by the energy and experience of our team. We are a team of ex-entrepreneurs, ex-founders, and high-achievers with international backgrounds. We team up to reach the highest standards in what we do, and don't take NO for an answer. 

We are expanding rapidly. Are you a top talent? Are you passionate about entrepreneurship? Join us and make an impact in the fintech space.

About the role:

As the Governance, Risk, and Compliance (GRC) Specialist, you will be responsible for driving and creating state-of-the-art security environments within Aspire. You will be reporting to Aspire’s Head of Information Security and will have the exciting opportunity to be part of a fast-growing team of infosec specialists within the company.

What will you be doing? 

  • Governance:
    • Maintain, and periodically review IT security policies, procedures, guidelines, and frameworks in accordance with industry standards.
    • Help to align IT/security solutions and infrastructure with MAS TRM, MAS Cyber Hygiene, PDPA, PCI-DSS, SOC2, and ISO 27001.
  • Risk Management:
    • Conduct risk assessments and drive other IT/security related activities and projects to identify vulnerabilities.
    • Monitor the organization's risk posture and ensure mitigation strategies are in place.
  • Compliance:
    • Ensure practices and standards compliance, particularly concerning MAS TRM, MAS Cyber Hygiene, PDPA, PCI-DSS, SOC2, and ISO 27001.
    • Conduct and drive audits, penetration tests, and other compliance efforts, addressing findings effectively.
  • Collaboration:
    • Liaise with both internal and external auditors, ensuring observations are promptly addressed.
    • Collaborate cross-departmentally to communicate and ensure understanding and adherence to regulatory requirements.
  • Reporting:
    • Provide regular updates to stakeholders about the company's GRC status and initiatives.
    • Produce actionable reports based on audits, risk assessments, and compliance efforts.
  • Continuous Improvement:
    • Drive information security awareness campaigns tailored to regulatory requirements and standards.
    • Stay updated with the latest changes and best practices in MAS TRM, MAS Cyber Hygiene, PDPA, PCI-DSS, SOC2, and ISO 27001.
  • Regulatory and Standard Compliance:
    • Navigate and ensure alignment with specific regulations and standards, such as MAS TRM, MAS Cyber Hygiene, PDPA, PCI-DSS, SOC2, and ISO 27001.

We would love to get to know you if you have the following: 

  • A degree in Technology, Engineering, MBA or a related qualification.
  • Passion for cybersecurity, GRC, and regulatory compliance.
  • Minimum of 2 years of experience in the GRC sector, ideally in MAS-regulated environments.
  • Familiarity with MAS TRM, MAS Cyber Hygiene, PDPA, PCI-DSS, SOC2, and ISO 27001.
  • Ability to navigate a fast-paced, diverse environment.
  • Strong communication skills in English, proficient in conveying complex technical and regulatory details.
  • Collaborative team player, eager to work across departments for comprehensive compliance.

What we offer

  • Work from anywhere and Work from Home subsidy.
  • Uncapped flexible annual leave.
  • Training subsidy for your professional growth.
  • Wellness benefit.
  • Team bonding budget to foster collaboration and sense of belonging.
  • Culture is Key: Most importantly, we always strive to cultivate a special culture that brings special talents together - You may learn more about our culture at our careers site and LinkedIn Life page.

Equal Opportunity Statement 

Aspire is an equal opportunity employer and is committed to providing equal employment opportunities to all qualified individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or any other protected characteristic as outlined by applicable laws. 


Please note: by submitting your application, you acknowledge that you have read and understood Aspire’s Data Protection Policy for Employees, Freelancers, Contractors and Job Applicants (the “Policy”), and consent to the collection, use and disclosure of your personal data by Aspire for the purposes set out in the Policy. You may withdraw consent for such collection, use and disclosure, and make an access or correction request in respect of your personal data, in accordance with the Policy by emailing

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Audits C Compliance Finance FinTech Governance ISO 27001 Risk assessment Risk management SOC 2 Vulnerabilities

Perks/benefits: Career development Startup environment Wellness

Region: Asia/Pacific
Countries: India Philippines
Job stats:  6  2  0
Category: Compliance Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.