GRC Specialist
Lendo
Employer Active
Posted 12 hrs ago
Send me Jobs like this
Nationality
Any Nationality
Gender
Not Mentioned
Vacancy
1 Vacancy
Job Description
Roles & Responsibilities
Develop, implement, and maintain cybersecurity policies, standards, and procedures in alignment with industry frameworks.
Monitor the effectiveness of cybersecurity governance and provide regular updates to leadership.
Establish and maintain a system for tracking, reporting, and addressing policy exceptions.
Conduct risk assessments to identify, analyze, and prioritize cybersecurity risks to organizational assets.
Collaborate with business units to design and implement effective risk mitigation plans.
Maintain a risk register and ensure continuous monitoring and reporting of risks.
Ensure compliance with applicable laws, regulations, and standards.
Conduct regular audits and assessments to verify adherence to internal policies and external requirements.
Act as the primary point of contact for regulatory bodies, auditors, and other third-party assessors.
Design and deliver cybersecurity awareness and compliance training programs for employees.
Promote a culture of compliance and risk awareness across the organization.
Support incident response processes by ensuring governance and compliance aspects are addressed.
Provide guidance on documentation and reporting requirements for incidents and breaches.
Stay current on emerging regulatory requirements, security trends, and best practices.
Recommend and implement improvements to governance, risk, and compliance programs.
Desired Candidate Profile
Strong understanding of governance, risk management, and compliance principles.
Knowledge of information security frameworks (e.g., ISO 27001, SAMA CSF, NCA ECC, NIST CSF, COBIT, etc.).
Experience conducting risk assessments and developing mitigation plans.
Familiarity with regulatory requirements (e.g., SAMA regulations).
Proficiency in documenting policies, procedures, and reports.
Hands-on experience with GRC tools (e.g., RSA Archer, ServiceNow GRC, MetricStream).
Knowledge of cloud security and compliance requirements.
Understanding of audit processes and methodologies.
Understanding of vulnerability management processes.
Bachelor's degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
Relevant certifications such as CISA, CRISC, CGEIT, ISO 27001 Lead Implementer/Auditor, or similar are highly desirable.
Excellent organizational and time-management skills.
Strong analytical and problem-solving abilities.
Effective communication skills (Arabic and English) to present technical concepts to non-technical audiences.
Company Industry
- Banking
- Financial Services
- Broking
Department / Functional Area
- IT Software
Keywords
- GRC Specialist
Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com
Lendo
At Lendo, we are a fast-growing FinTech company on a mission to revolutionize the financial landscape in Saudi Arabia. With our innovative digital lending platform, we empower businesses by providing fast, secure, and transparent access to finance.
https://www.efinancialcareers.com/jobs-Saudi_Arabia-Riyadh-GRC_Specialist.id23423516