Cybersecurity GRC Manager
We don't think about job roles in a traditional way. We are anti-silo. Anti-career stagnation. Anti-conventional.
Beyond ONE is a digital services provider radically reshaping the personalised digital ecosystems of consumers in high growth markets around the world. We're building a digital services aggregator platform, with a strong telco foundation, and a profitable growth strategy that empowers users to drive their own experiencesubscribe once, source from many, and only pay for what you actually use.
Since being founded in 2021, we've acquired Virgin Mobile MEA, Friendi Mobile MEA and Virgin Mobile LATAM (with 6.5 million subscribers) and 1600 dedicated colleagues across Chile, Colombia, KSA, Kuwait, Mexico, Oman and UAE.
To disrupt for good takes a rebellious spirit, a questioning mind and a warm heart. We really care about how to get things done and not who manages who. We benefit from our diversity, and together, we disrupt the way we and others thinkin about our lives for good.
Do you want to exchange ideas, learn from each other and leave your mark on our journey? This is the place for you.
Role Purpose
Why this role matters:
As a Cybersecurity GRC Manager, you will play a key role in strengthening Beyond ONE's resilience against evolving cyber threats. You will lead the charge in unifying our cybersecurity governance, risk, and compliance practices across diverse regulatory landscapes in the GCC and LATAM regions. Your contributions will help shape our global security program, enabling secure operations and strategic alignment across our operating companies, and ultimately the way we disrupt the market.
What success looks like:
In your first year, you will develop and implement a standardized GRC framework across all OpCos, complete regional cybersecurity risk assessments with executive reporting, and ensure measurable improvements in compliance maturity benchmarks in both GCC and LATAM.
Why this is for you:
If you're keen on solving the global cybersecurity governance puzzle, hit us up. We're looking for someone ready to tackle this challenge head-on and make an impact from day one.
Key Responsibilities
In this role, you will:
- Lead the ongoing development and implementation of Beyond ONE's Cybersecurity Governance, Risk, and Compliance (GRC) framework across GCC and LATAM operating companies.
- Ensure enterprise cybersecurity policies, standards, and control frameworks (e.g., CRF, ISO/IEC 27001, NIST CSF, CIS Controls) are developed, implemented and adhered to across regional subsidiaries.
- Identify and assess cybersecurity risks related to business objectives and technology operations, and report on them accordingly.
- Coordinate and support periodic internal and external cybersecurity audits, regulatory reviews, and assessments.
- Maintain and manage the risk register, ensuring risks are documented, assessed, and tracked in alignment with the risk management framework.
- Interface with local GRC professionals in each OpCo to harmonize compliance controls and address country-specific regulatory requirements.
- Evaluate and monitor the maturity of cybersecurity practices and propose continuous improvement strategies.
- Present key findings, risk exposures, and recommendations to the CISO and executive management.
- Stay informed on regulatory changes for the countries within GCC and LATAM and assess their impact on Beyond ONE's compliance posture.
- Foster a strong cybersecurity risk-awareness culture across business lines through training and awareness programs.
Qualifications & Attributes
We're seeking someone who embodies the following:
Education:
- Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or related field (required).
- Master's degree in Information Security or Risk Management (preferred).
- Certifications: CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor (highly desirable).
Experience:
- 7+ years in cybersecurity, with at least 3 years in a GRC leadership or advisory role.
- Experience operating within multinational environments, preferably in telecom, fintech, or critical infrastructure.
- Strong familiarity with GCC regulatory frameworks; LATAM experience is a plus.
- Proven ability to communicate and influence across executive and regulatory stakeholders.
What we offer:
- Rapid learning opportunities - we enable learning through flexible career paths, exposure to challenging & meaningful work that will help build and strengthen your expertise.
- Hybrid work environment - flexibility to work from home 2 days a week.
- Healthcare and other local benefits offered in market.
By submitting your application, you acknowledge and consent to the use of Greenhouse & BrightHire during the recruitment process. This may include the storage and processing of your data on servers located outside your country of residence. For further information, please contact us at [HIDDEN TEXT].
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
