Senior GRC & IT Risk Consultant

Job summary

A leading security consultancy is seeking an experienced GRC Consultant to manage regulatory compliance and security risks effectively. Candidates should possess deep knowledge in Information Security Compliance Management and standards such as ISO 27001, NIST, CBUAE, and SAMA. This role involves developing compliance frameworks, conducting audits, and preparing detailed reports on risks and governance for senior management. A proactive approach in implementing change and maintaining risk mitigation plans is essential for success in this position.

Qualifications

• Experience in developing and implementing Information Security frameworks.
• Knowledge of compliance standards including CBUAE and SAMA.
• Strong analytical skills to determine policy requirements.

Responsibilities

• Develop and maintain Information Security and Compliance frameworks.
• Support policy development and conduct audits.
• Document and analyze system performance and compliance.