Security Governance, Risk & Compliance (GRC) Analyst at Delivery Hero

Kuala Lumpur, Kuala Lumpur, Malaysia -

Full Time

Start Date

Immediate

Expiry Date

20 Sep, 26

Salary

0.0

Posted On

22 Jun, 26

Experience

0 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Governance Risk And Compliance, Information Security Governance, Regulatory Compliance, Cyber Risk Management, Security Policy Management, Third-Party Risk Management, Cloud Compliance, Data Protection Governance, Operational Resilience, Security Reporting, Automation, Data Analysis, ISO 27001, SOC 2, PCI-DSS, NIST

Industry

technology;Information and Internet

Description

Company Description foodpanda is part of the Delivery Hero Group, the world’s pioneering local delivery platform. Our mission is to deliver an amazing experience — fast, easy, and to your door. We operate in over 70+ countries worldwide, connecting millions of customers with restaurants, shops, and riders through technology and innovation. Headquartered in Berlin, Delivery Hero has been listed on the Frankfurt Stock Exchange since 2017 and is part of the MDAX stock market index. Job Description As a GRC Analyst within the Security function, you will support the execution and continuous improvement of governance, risk, compliance, and operational resilience practices across our brands, including foodpanda, foodora, and Yemeksepeti. The Security function operates as a 1.5 line of defense within the organisation, with the GRC team responsible for defining and maintaining the security posture across local, regional, and platform domains. You will work closely with internal stakeholders to support governance activities, compliance initiatives, operational processes, and risk management efforts across the organisation. This role is ideal for someone early in their cybersecurity or governance career who has an interest in data, automation, and operational process improvement, and is eager to gain exposure to modern cloud-native, AI-driven, and product engineering environments. Key areas of support include: Information security governance Regulatory and audit compliance Technology and cyber risk management Security policy and control management Third-party and vendor risk management Cloud and platform compliance Data and customer protection governance Operational resilience governance Security reporting, automation, and operational efficiency Qualifications Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, Business, Data Analytics, or a related discipline 1+ years of experience in Governance, Risk & Compliance (GRC), Information Security, Technology Risk, Audit, Compliance, Data Analytics, Automation, or related fields Basic understanding of security frameworks and standards such as ISO 27001, SOC 2, PCI-DSS, NIST, or CIS Controls Familiarity with modern technology environments, including cloud platforms, SaaS tools, automation platforms, engineering environments, reporting dashboards, or AI-enabled productivity tools Strong organisational, analytical, documentation, and communication skills. Interest in data analysis, automation, AI-enabled productivity tools, and operational process improvement Eagerness to learn and grow within cybersecurity governance and risk management Experience in e-commerce, marketplace, delivery, fintech, or technology organisations is advantageous but not essential Exposure to reporting tools, workflow automation platforms, dashboards, or AI-enabled productivity tools is preferred but not mandatory. Additional Information Why Join Us Opportunity to shape and scale security engineering practices across globally recognized digital platforms Work alongside modern engineering, cloud, platform, and AI-driven technology environments Exposure to large-scale, cloud-native, and high-availability systems Collaborative, fast-paced, and impact-driven culture Ability to influence how security is embedded into engineering, platform delivery, and emerging AI capabilities at scale We are dedicated to bringing our full-time pandas a suite of inclusive, flexible and competitive benefits that support a fulfilling experience at foodpanda What we offer: A dynamic and challenging work environment. A company committed to developing you personally and professionally. A great working atmosphere with regular company and team events. A vibrant and international team committed to diversity and inclusion. Responsibility from day one in a fast growing and global company. Other benefits include free food, health and dental insurance, and learning and development opportunities! foodpanda is operated by Delivery Hero Group (“DH Group”) - the world’s leading local delivery platform, operating in 70+ markets across Asia, Europe, Latin America, the Middle East, and Africa. Delivery Hero started as a food delivery service in 2011 and now employs 40,000+ people globally. Additionally, Delivery Hero is pioneering quick commerce, the next generation of e-commerce, aiming to bring groceries and household goods to customers in under one hour and often in 20 to 30 minutes. Headquartered in Berlin, Germany, Delivery Hero has been listed on the Frankfurt Stock Exchange since 2017. In July 2024, Delivery Hero SE merged three of its market-leading food delivery businesses, foodora and Yemeksepeti in Europe, and foodpanda in Asia. All three businesses now make up the second-largest organization within the Delivery Hero Group, and leading food and QCommerce delivery in 18 markets in both regions.

Responsibilities

Support the execution and continuous improvement of security governance, risk, compliance, and operational resilience across multiple brands. Work with internal stakeholders to maintain security posture across local, regional, and platform domains.