Cybersecurity GRC Manager
Lead the ongoing development and implementation of the Cybersecurity Governance, Risk, and Compliance (GRC) framework across GCC and LATAM operating companies.
Ensure enterprise cybersecurity policies, standards, and control frameworks (e.g., CRF, ISO/IEC 27001, NIST CSF, CIS Controls) are developed, implemented, and adhered to across regional subsidiaries.
Identify and assess cybersecurity risks related to business objectives and technology operations, and report on them accordingly.
Coordinate and support periodic internal and external cybersecurity audits, regulatory reviews, and assessments.
Maintain and manage the risk register, ensuring risks are documented, assessed, and tracked in alignment with the risk management framework.
Interface with local GRC professionals in each OpCo to harmonize compliance controls and address country-specific regulatory requirements.
Evaluate and monitor the maturity of cybersecurity practices and propose continuous improvement strategies.
Present key findings, risk exposures, and recommendations to the CISO and executive management.
Stay informed on regulatory changes for the countries within GCC and LATAM and assess their impact on the compliance posture.
Foster a strong cybersecurity risk-awareness culture across business lines through training and awareness programs.
Qualifications & Attributes
We are seeking someone who embodies the following:
Education:
Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field (required).
Master's degree in Information Security or Risk Management (preferred).
Certifications:
CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor (highly desirable).
Experience:
7+ years in cybersecurity, with at least 3 years in a GRC leadership or advisory role.
Experience operating within multinational environments, preferably in telecom, fintech, or critical infrastructure.
Strong familiarity with GCC regulatory frameworks; LATAM experience is a plus.
Proven ability to communicate and influence across executive and regulatory stakeholders.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
