Senior IT Risk & Compliance Specialist

Joining Razer will place you on a global mission to revolutionize the way the world games. We offer a unique gamer-centric experience that will put you in an accelerated growth, both personally and professionally.

Job Responsibilities:

The IT Risk & Compliance Specialist is responsible for identifying, assessing, and managing IT and cyber risks across our technology environment while ensuring compliance with applicable regulatory requirements, standards, and internal policies. This includes supporting risk assessments, regulatory compliance gap analyses, ISO/IEC 27001 implementation and maintenance, third-party risk management, and audit activities, working closely with cross-functional stakeholders to strengthen our governance, risk, and compliance posture.

IT Risk Management

• Identify, assess, and manage IT and cyber risks across applications, systems, networks, and infrastructure.
• Conduct IT risk and security assessments, including IT General Controls (ITGCs), application controls, and cyber/security reviews.
• Track risk remediation actions with risk owners and recommend control improvements.
• Monitor and mitigate risks related to vulnerabilities, data security, cyber threats, outsourcing, and third-party/partner integrations.
• Support vulnerability assessments, penetration testing, and cyber incident risk mitigation activities.
• Maintain IT risk registers, risk assessment tools, and supporting documentation aligned with enterprise risk frameworks.
• Support IT Disaster Recovery (DR) testing and technology resilience initiatives.
• Stay informed on emerging technology risks and industry best practices.

IT Compliance Management

• Perform regulatory compliance gap assessments and recommend corrective actions to address identified gaps.
• Coordinate and assist in the implementation, maintenance, and continuous improvement of the ISO/IEC 27001 Information Security Management System (ISMS).
• Partner with technology and engineering teams to ensure systems and software meet regulatory and compliance requirements.
• Perform IT due diligence on third-party service providers, outsourcing arrangements, and partner integrations.
• Coordinate internal and external IT audits, including ISO 27001 audits, and follow up on audit findings and remediation actions.
• Maintain compliance documentation, policies, procedures, and regulatory reporting.
• Respond to internal and external compliance inquiries and support regulatory examinations.

Requirements:

• Bachelor's degree in IT, Computer Science, or equivalent.
• 4+ years' experience in IT risk, compliance, or regulatory roles.
• Hands-on experience in IT/security risk assessments;
• Professional certifications such as CRISC, CISA, CISM, or equivalent is highly advantageous.
• Excellent communication skills with ability to explain complex compliance requirements to stakeholders.
• Proven experience preparing and maintaining compliance documentation and reports.
• Strong attention to detail and ability to work independently and collaboratively.
• Cloud (AWS/Azure) and SQL knowledge are advantageous.
• Positive, proactive team player with strong presentation skills.