Enable job alerts via email!
GRC Consultant
Extelligence SRO
Riyadh
On-site
SAR 200,000 - 300,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading information management company in Riyadh is seeking a skilled professional to design and implement Governance, Risk, and Compliance (GRC) frameworks aligned with international standards and Saudi regulations. The role includes conducting risk assessments, ensuring regulatory compliance, and developing security programs tailored to local market specifics. Ideal candidates will have knowledge of the Sabsa framework and Saudi NCA regulations. The company values long-term relationships with its team and offers a multicultural workplace.
Benefits
Qualifications
- Experience in Governance, Risk, Compliance (GRC) framework design.
- Understanding of ISO 27001, NIST CSF, and Saudi regulations.
- Proven ability to conduct risk assessments and develop treatment plans.
Responsibilities
- Design and implement a GRC framework aligned with international standards.
- Deliver regulatory compliance for Saudi market specifics.
- Develop security programs and conduct maturity assessments.
Skills
Extelligence is an intelligent partner that goes the extra mile. We provide customized information management solutions for major industries. Our team in Prague and Bucharest is working with international companies, transforming, and adding value to their business on a daily basis. We are growing quickly, and we are interested to bring more talented individuals into our team.
- Governance, Risk, and Compliance (GRC) framework design and implementation* aligned with international standards (ISO 27001, NIST CSF) and Saudi regulations (NESA, CISO guidelines, SAR 3/4, ICO policies).
- Conduct risk assessments and develop risk treatment plans
- Map controls to regulatory requirements and business processes
- Regulatory compliance delivery* for Saudi market specifics, including data protection, privacy, and cyber security mandates
- Prepare and maintain policies, standards, procedures, and evidence for audits
- Security program development and maturity* assessments
- Develop roadmaps, governance rituals (Steering Committees, risk registers, KRIs)
- Third-party risk management* and vendor security assessments
- ICT supplier due diligence, contractual security clauses, and ongoing monitoring
- Security awareness and training* programs tailored to local teams
- Audit readiness and remediation* support
- Facilitate internal/external audits and track corrective actions
- Knowledge of Sabsa framework.
- Knowledge of Saudi NCA regulations
- We take care of the important things that matter to contractors, for example, we guarantee on-time payment for your work. You will never have to chase us for payment.
- We always seek to have long term relationships with our team and we always seek to offer opportunities to extend cooperation beyond the first contract or project.
- Extelligence is a multicultural team, we have more than 15 different nationalities working with us.
- We also organize events to bring our team together including team building activities and social events.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
