Hi everyone,
I’m from the Philippines, and I’m currently a law student trying to find a realistic way to earn remotely for foreign clients. Life here has become very difficult financially because of the oil crisis, and I need to work to support myself while studying.
I do not have a computer science or IT degree, and I’m not a programmer. I’m willing to spend my summer getting certifications, training, and practical experience if it can help me become employable. I’ve looked into virtual assistant work, but the market seems very saturated. Recently, I’ve seen many people mention GRC, compliance, ISO 27001, cybersecurity compliance, and related remote roles as possible paths.
I want honest advice from people who actually work in these fields:
Is GRC a realistic path for someone without a technical background?
What entry-level certifications or trainings would actually help me get hired?
How can I build practical experience if I have no prior GRC work?
What kind of roles should I search for as a beginner?
Are there platforms, agencies, or companies that hire remote workers from the Philippines for compliance, legal, privacy, or GRC-related work?
Would my law background help in this field, especially for contracts, privacy, policies, compliance, or risk documentation?
I’m not expecting an easy shortcut. I’m willing to study, train, and start from the bottom. I just want to avoid wasting money on certifications that won’t lead anywhere.
Any honest guidance, roadmap, recommended certifications, job titles, or practical first steps would mean a lot.
Thank you.