GRC Specialist
Specialized Technical Services
Employer Active
Posted 16 hrs ago
Send me Jobs like this
Nationality
Any Nationality
Gender
Not Mentioned
Vacancy
1 Vacancy
Job Description
Roles & Responsibilities
Develop cybersecurity policies and related documentation.
Establish and maintain appropriate communication channels with stakeholders.
Review existing proposed policies and related documentation with stakeholders.
Cooperate with relevant regulatory agencies and other legal entities in any compliance reviews or investigations.
Develop Cybersecurity Awareness program
Promote awareness of cyber policy and strategy as appropriate among the organization's management and staff.
Interpret and apply applicable laws, statutes and regulatory documents to ensure they are reflected in the cybersecurity policies.
Create and publish the organization's cybersecurity policy
Monitor how effectively cybersecurity policies, principles and practices are implemented in the delivery of planning and management services.
Review, conduct, or participate in audits of cyber programs and projects.
Develop risk mitigation strategies to effectively manage risk in accordance with organizational risk appetite
Develop specific cybersecurity countermeasures and risk mitigation strategies.
Ensure that decisions relating to cybersecurity are based on sound risk management principles
Perform risk analysis whenever an application or system undergoes a major change
Provide input to the risk management framework and related documentation.
Ensure cybersecurity risks are identified and managed appropriately through the organization's risk governance process.
Conduct an initial risk assessment of stakeholder assets and update the risk assessment on an ongoing basis.
Use continuous monitoring tools to assess risk on an ongoing basis.
Analyze organization's cybersecurity defense policies and configurations to evaluate compliance with regulations and organizational directives.
Evaluate cybersecurity aspects of contracts to ensure compliance with financial, contractual, legal and regulatory requirements.
Recognize patterns of non-compliance with cybersecurity policies and related documentation to identify ways to improve the documentation.
Periodically review cybersecurity strategy, policies and related documents to maintain compliance with applicable legislation and regulation.
Work with stakeholders to resolve cybersecurity incidents and vulnerability compliance issues.
Develop specifications to ensure that risk, compliance and assurance efforts conform with cybersecurity requirements.
Monitor and evaluate a system's compliance with cybersecurity, resilience and dependability requirements.
Provide support to compliance activities as necessary.
Maintain knowledge of applicable legislation, regulation and accreditation standards and regularly review these to ensure continued organizational compliance
Desired Candidate Profile
1. Minimum Qualification and certifications
- Education: Bachelor s in Computer Science, Information Security or related field.
- Experience: 3-5 years of experience in GRC.
- Language: Very Good English and Arabic.
Company Industry
- IT - Software Services
Department / Functional Area
- IT Software
Keywords
- GRC Specialist
Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com
Specialized Technical Services
Our Culture: At Zaintech we are proud of our culture and how it drives everything we do. We are looking for individuals who share our values and want to be part of a unique and engaging culture that revolves around collaboration and innovation. If you are looking for a role where you can drive engagement and excellence across teams through commitment and collaboration, and are someone who is customer-centric and appreciates an organization with uncompromised integrity that focuses on employee engagement then read on to learn more about how you can become part of the Zaintech family. Our Code of Conduct: At Zaintech we strictly adhere to our code of conduct, which is there to serve as a moral compass, offering a framework for responsible behaviours and enabling ethical choices that cultivate positive relationships and a better future. It also outlines policies, standards, and procedures for our global operations, promoting integrity and ethical excellence across the countries we engage with. Every year, all employees are required to review, comprehend, confirm, and adhere to the code of conduct. Additionally, all newly hired employees are subject to the same as part of their onboarding process.