Enable job alerts via email!
Senior Information Security GRC Specialist
Applicable Limited
Riyadh
On-site
SAR 60,000 - 100,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
Join a forward-thinking company as a Senior Information Security Governance, Risk and Compliance Specialist, where you'll oversee critical aspects of the information security program. This role emphasizes governance, risk management, and compliance, allowing you to lead risk assessments and develop robust security policies. With a focus on fostering a culture of security awareness, you will collaborate with various stakeholders while providing guidance to junior team members. This position offers an exciting opportunity to make a significant impact in a dynamic environment, ensuring the organization meets industry standards and regulations.
Qualifications
- Advanced experience in information security and GRC roles.
- Strong knowledge of NCA regulations and cybersecurity controls.
Responsibilities
- Lead risk assessments and develop security policies.
- Collaborate with legal teams to ensure regulatory adherence.
Skills
Education
Job description
Continue to make an impact with a company that is pushing the boundaries of what is possible. At NTT DATA, we are renowned for our technical excellence, leading innovations, and making a difference for our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can continue to grow, belong, and thrive.
Your career here is about believing in yourself and seizing new opportunities and challenges. It’s about expanding your skills and expertise in your current role and preparing yourself for future advancements. That’s why we encourage you to take every opportunity to further your career within our great global team.
Grow Your Career with NTT DATA
The Senior Information Security Governance, Risk and Compliance (GRC) Specialist is an advanced subject matter expert, responsible for playing a crucial part in overseeing the organization's information security program, with a focus on governance, risk management, compliance, security awareness, and policy management.This role involves leading risk assessments, developing security policies, ensuring alignment with industry standards and regulations, and fostering a culture of security awareness among employees.
This role may be required to guidance and support to junior members of the GRC team.
What you'll be doing
Please note that this role is based in Jeddah, KSA
Job Description
Key Responsibilities:
- Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies.
- Develops and maintains security policies, standards, and procedures.
- Collaborates with legal and compliance teams to ensure adherence to regulatory requirements.
- Provides guidance and support to junior GRC team members.
- Assists in the creation and delivery of security awareness and training programs.
- Participates in security incident response activities as needed.
- Contributes to the continuous improvement of the information security program.
- Assists in policy management and refinement.
- Performs any other related task as required.
- Closing gabs on key findings during internal audits and evidence validation.
Knowledge and Attributes:
- Strong knowledge and experience with NCA regulations.
- Strong experience in Essential Cybersecurity Controls (ECC).
- Advanced understanding of information security frameworks and standards.
- Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management.
- Excellent communication and interpersonal skills for collaborating with various stakeholders.
- Strong project management skills for handling security initiatives.
- Advanced familiarity with legal and compliance aspects related to information security.
Academic Qualifications and Certifications:
- Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
- Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred.
- Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred.
Required Experience:
- Advanced experience in information security, including GRC-related roles.
- Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management.
Workplace type:
On-site WorkingEqual Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Accelerate your career with us. Apply today
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
