Build your career with Trax

Join one of the fastest growing SaaS companies in the world

At Trax, our people are at the core of our business, as we create technology and services that are changing the world of retail. Get to know us.

image description
Trax team sitting in the waiting area having a conversation
Trax team members sitting infront of a Trax sign
Trax team members relaxing in a break area

Trax is a rapidly growing
company with start-up values

We started out with the daring mission of solving long-standing problems for our CPG and retail customers. Today, we are proud to be market makers, and our journey is streaked with perseverance, team work and a whole lot of fun.

Unleash your potential by joining a powerhouse of brilliant minds from diverse backgrounds, in an environment that is learning-friendly - and often filled with food!


GRC Specialist

philippines · Full-time · Experienced

About The Position

Trax Retail is looking for a Independent and highly motivated GRC Specialist, to be a part of a global dynamic and fast-growing environment.

 In this role, you will need to be thorough, consistent, service-oriented, adaptive, and precise. You will be responsible for governance, risk, and compliance processes and activities. You will need to bring willingness to read and learn, research areas and technologies, and with a friendly approach. The company is global hence your English level in writing, reading and verbally needs to be very good.

Trax is 100% cloud based and you will need to bring strong technological background in these areas.


  • Evaluate and develop Information Security policies, standards, procedures, and guidelines
  • Risk management program development, execution, and compliance monitoring
  • Assess security controls effectiveness, KRIs and KPIs, and document compliance gaps
  • Collect evidence from various systems and processes and document according to standards
  • Lead supplier risk assessment activities
  • Lead security awareness activities
  • Lead GRC solutions implementations and policy enforcement
  • Lead external audit activities such as ISO 27001, SOC2, Sox (ITGC)
  • Perform security assessments and update the risk ledger
  • Participate in customer engagements, meetings, RFIs, RFPs and questionnaires
  • Participate in incident and crisis management forums
  • Lead project security reviews and compliance monitoring
  • Engage with engineering for vulnerability management & secure software development compliance
  • Prepare progress and readiness reports


  • Strong technological background in networking, infrastructure, cloud, endpoints, and identity areas
  • 5+ years of experience as GRC specialist or similar positions and background - mandatory
  • 5+ years of experience and technological knowledge in various security domains - mandatory
  • Profound knowledge and experience of ISO 270XX and 22301 standards - mandatory
  • Profound knowledge and experience of SOC2 audits and requirements - mandatory
  • Profound knowledge and experience of SOX (ITGC) audits and requirements - mandatory
  • Profound knowledge and experience of GDPR and privacy regulations - mandatory
  • Familiar and experienced with BCP/DRP program requirements - bonus
  • Familiar and experienced with GRC security solutions – big bonus
  • Familiar and experienced with vulnerability management solutions – bonus
  • Familiar and experienced with penetration testing engagements – bonus
  • Updated with recent and latest technologies, attacks, and security trends - bonus
  • Good presentation skills - mandatory
  • Good office applications skills - mandatory
  • Good documentation skills – bonus
  • CISA/CISM/CISSP certified - bonus


Bachelor’s degree in CS, IS, Networking, or other related discipline

Key Competencies

  • Independent and highly motivated Individua·
  • Communicate effectively technical information (verbal, written), to a wide range of target audiences
  • Ability to learn technologies quickly
  • Thorough and consistent
  • Trusted
  • Team player
  • Friendly approach

Apply for this position

Back to top