General Background

GRC are policy makers, lawyers and development experts dedicated to promoting accountability and strengthening justice systems through the application of international law. With ongoing operations in some of the world’s most complex legal and security environments, Global Rights Compliance continues to provide specialised legal expertise, policy solutions, and strategic advisory services to uphold justice and strengthen the rule of law globally.

We are looking for an IT Security Officer to join our International Team. The IT Security Officer will oversee and support GRC’s IT security, infrastructure, and digital risk management functions across the organisation. The role will serve as the primary focal point for all IT security-related matters and will work closely with internal teams, external IT providers, and programme teams to ensure that GRC’s systems, devices, and digital infrastructure remain secure, compliant, and operationally effective.

Full-time/Part-time: Full-time

Location: Remote

The Role

IT Security & Cybersecurity Support

• Support the implementation and maintenance of GRC’s cybersecurity measures, IT security policies & procedures, and controls across the organisation.
• Monitor systems and assist with incident response, vulnerability assessments, and threat management.
• Implement and maintain security systems, including endpoint protection, encryption, access controls, and multi-factor authentication.
• Ensure organisational systems and devices are securely configured, regularly patched, and protected against malware, spyware, ransomware, viruses, and other cyber threats.
• Maintain up-to-date knowledge of emerging cybersecurity risks, technologies, and best practices.

Microsoft 365, Azure & Intune Administration

• Manage and support Microsoft 365, Azure/Entra ID, and Microsoft Intune environments.
• Manage, configure, and maintain Microsoft Intune and endpoint management systems.
• Implement and support Mobile Device Management (MDM) and endpoint compliance policies across both GRC-owned and personally owned devices (BYOD).
• Support secure onboarding and offboarding processes.

Infrastructure, Systems & Data Protection

• Support secure server, network, cloud storage, backup, and disaster recovery systems to ensure operational resilience and business continuity.
• Assist in documenting and enforcing system standards and security protocols across the organisation.
• Assist with the migration, deployment, and optimisation of software platforms and IT systems.
• Review and recommend improvements to strengthen security and operational efficiency.

Vendor & Third-Party Coordination

• Coordinate with external IT providers on security updates, monitoring, and remediation.
• Support the development and implementation of third-party IT and cybersecurity risk management processes in coordination with the Risk Manager.
• Assist with procurement and management of IT infrastructure, software, and cybersecurity tools.

Compliance, Governance & Risk

• Support organisational compliance with applicable data protection, cybersecurity, and information governance requirements.
• Identify and report digital security and privacy risks across organisational operations.
• Support internal and external audits, donor compliance processes, and due diligence reviews relating to IT systems and cybersecurity.
• Ensure teams comply with organisational IT and information security policies.
• Maintain accurate IT documentation, inventories, and access records.

Team Support & Capacity Building

• Deliver cybersecurity awareness guidance and promote secure digital practices.
• Collaborate with internal IT teams to ensure consistent implementation of IT and security standards across all offices and programmes.

Your Background

• Bachelor’s degree in IT, computer science, or a related field.
• A minimum of 6.5 years of experience in IT management.
• Strong teamwork and communication skills.
• Strong troubleshooting and problem-solving skills.
• Knowledge of industry-standard computer hardware and software systems.
• Familiarity with our software platforms including Microsoft 365.
• Familiarity with cloud document/case storage/management database systems (such as Huridocs’ Uwazi) is an asset.
• Fluent in English, written and verbal skills.