Cybersecurity Assurance & GRC Consultant

We are seeking a highly skilled Cybersecurity Assurance & GRC Consultant to join our team in Dubai. The ideal candidate will have a strong background in cybersecurity governance, risk management, and compliance, with a proven track record of managing audits, certifications, and regulatory assessments.

Key Responsibilities:

• Develop, implement, and maintain cybersecurity governance frameworks, policies, and standards
• Lead security assurance activities across the enterprise, ensuring alignment with business strategy and regulatory requirements
• Conduct enterprise-wide risk assessments and manage the cybersecurity risk register
• Oversee third-party/vendor risk management processes
• Ensure compliance with laws and standards such as ISO 27001, NIST CSF, CIS, COBIT, GDPR, HIPAA, PCI DSS, and SOX
• Manage internal and external audits, certifications, and regulatory assessments
• Provide strategic guidance to leadership on cybersecurity risks and compliance posture

Required Qualifications:

• Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or a related field (Master’s preferred)
• Minimum 5 years of experience in cybersecurity governance, risk, compliance, or assurance roles
• CREST certification (CPSA or CRT) is mandatory
• Strong knowledge of cybersecurity frameworks and standards (ISO 27001, NIST, CIS, COBIT)
• Experience with regulatory compliance and audit management
• Excellent communication and stakeholder management skills

Job Type: Full-time

Application Question(s):

• Are you experienced with implementing and auditing cybersecurity frameworks such as ISO 27001, NIST, CIS, or COBIT?

Education:

• Bachelor's (Required)

Experience:

• cybersecurity governance, risk management, and compliance: 5 years (Required)

License/Certification:

• CREST certification (CPSA or CRT) (Required)