Risk and Governance Engineer

Closing on: Jan 6, 2027

Strengthen our security posture. Ensure compliance. Mitigate risk. Drive trust and build a safer, more resilient healthcare future.

Required skills & qualifications

  1. Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or related field.
  2. Strong knowledge of risk management frameworks and security best practices.
  3. Hands-on experience with penetration testing and vulnerability assessment tools.
  4. Understanding of compliance frameworks (HIPAA, SOC 2, ISO 27001, NIST CSF).
  5. Experience preparing detailed reports and presenting risk insights to management.
  6. Ability to interpret technical risks and translate them into actionable business recommendations.
  7. Strong analytical, documentation, and problem-solving skills.
  8. Excellent communication and cross-functional collaboration abilities.

Nice-to-have

  1. Certifications such as CEH, OSCP, CompTIA Security+, CISSP, CISA, or ISO 27001 Lead Implementer.
  2. Experience with SIEM solutions and log analysis (e.g., Splunk, Sentinel).
  3. Familiarity with cloud security (Azure, AWS, GCP).
  4. Knowledge of ESG frameworks such as GRI, SASB, or ISO 26000.
  5. Experience developing automated workflows for risk assessments or compliance tracking.
  6. Understanding of DevSecOps practices and secure SDLC.
  7. Exposure to data privacy and governance tools (DLP, CASB, MDM, EDR).
  8. Ability to lead training and awareness programs on security and governance topics.

About the company

Be part of a purpose-driven team where security, governance, and innovation come together to transform healthcare.

When applying

Send your CV.

Company: Innobot (Pvt) Ltd
Company email: [email protected]
Job Location: Colombo
Job Category: Cybersecurity / Information Security
Job Type: Full Time

Apply now

Allowed Type(s): .pdf, .doc, .docx