Senior Cybersecurity GRC Consultant - ISO/NIST & Audits

Job summary

A Managed Cybersecurity Services Provider is hiring a Cybersecurity GRC Consultant to enhance their Information Security and Compliance function. The ideal candidate should possess extensive experience in risk management and cybersecurity frameworks. Responsibilities include conducting risk assessments, developing cybersecurity policies, and providing consultancy for GRC platforms. Certifications such as CISSP and CISM are preferred. This role is based in Riyadh, Saudi Arabia.

Qualifications

• Minimum 10 years of advanced IT skills with experience in information security or compliance.
• 8+ years as a Cybersecurity GRC Specialist developing security policies.
• Hands-on experience with Saudi National Cybersecurity Authority requirements.

Responsibilities

• Maintain compliance with risk and security standards.
• Conduct technical risk assessments and communicate results.
• Develop cybersecurity controls and policies for governance.