GRC Specialist

Job Title: GRC Specialist

Location: Lahore, Pakistan — Onsite
Employment Type: Full-time

About Us

At AHK Global Solutions, we are committed to building secure, compliant, and well-governed business operations that align with international standards such as ISO 27001, SOC 2, and GDPR.
We’re looking for a Governance, Risk & Compliance (GRC) Specialist who is eager to grow in a dynamic, tech-driven environment and support our ongoing compliance and risk management initiatives.

If you have an analytical mindset, a passion for process improvement, and a keen eye for compliance, this is a great opportunity to develop your career in the global risk and governance domain.

Role Overview

The GRC Specialist will assist in implementing and maintaining the company’s governance, risk, and compliance framework. The role involves supporting audits, maintaining documentation, coordinating risk assessments, and ensuring adherence to internal policies and external regulatory requirements.

Key Responsibilities

• Assist in the implementation and maintenance of GRC frameworks aligned with ISO, SOC, and regulatory standards.
• Support internal and external audits, ensuring timely documentation and corrective actions.
• Conduct risk assessments, identify gaps, and support mitigation planning.
• Maintain the compliance documentation library (policies, SOPs, controls, evidence records).
• Coordinate with cross-functional teams (IT, HR, Operations) to ensure compliance with data privacy and security standards.
• Monitor regulatory and policy changes and communicate relevant updates to management.
• Support awareness programs and internal training on governance, compliance, and information security.
• Participate in vendor risk assessments and assist in third-party compliance reviews.

Qualifications & Experience

• Education: Bachelor’s degree in Information Security, Computer Science, Business Administration, Risk Management, or a related field.
• Experience: 1–2 years of experience in GRC, Information Security, Risk, or Compliance roles.
• Knowledge of:
• ISO 27001 / SOC 2 frameworks
• Risk assessment and internal control procedures
• Basic understanding of data protection (GDPR or equivalent)
• Skills:
• Strong documentation and analytical skills
• Excellent attention to detail and process orientation
• Proficient in MS Office Suite and familiar with GRC tools (ServiceNow, Archer, or others)
• Strong communication and collaboration skills

Preferred Certifications (Optional but Advantageous)

• ISO 27001 Lead Implementer / Auditor
• CompTIA Security+
• Certified in Risk and Information Systems Control (CRISC)
• Any introductory GRC or Information Security certification

What We Offer

• Competitive salary package based on experience and qualifications.
• Exposure to international compliance standards (ISO, SOC, GDPR).
• Continuous learning and professional development opportunities.
• Supportive environment that values precision, accountability, and growth.
• Opportunity to collaborate with cross-border teams and global clients.

Job Type: Full-time

Work Location: In person