GRC Consultant – Immediate Hiring
Securseed
Saudi Arabia
SAR 200,000 - 300,000
Job description
Job description
This role will specialize in all aspects of information security management and business and regulatory compliance using cloud services in large-scale computing environments.
Responsibilities
- Refine risk management strategies to ensure key security risks are captured and actioned.
- Identify gaps in technological architectures and systems controls, and develop solutions to remediate those gaps.
- Assess the risk from security deviations and exceptions.
- Dive deep with threat modeling and data flows.
- Oversee the execution of risk assessments for security and technology risks.
- Identify gaps in controls and processes.
- Develop and deliver risk and finding dashboards and reporting.
- Oversee and manage risk management tools.
- Implement automated risk scoring where possible.
- Continuously improve the program and recommend improvements to drive program efficiencies.
- Maintain subject matter expertise in security risk and control.
Qualifications
- Bachelor’s degree in Management Information Systems, Computer Science, or related field, or relevant industry experience.
- 3-6 years of information security, audit, risk management, compliance, or risk consulting experience.
- Excellent written and verbal communication skills.
- Subject matter expert in risk management, business risk analysis, and making complex business/risk trade-off recommendations and decisions.
- In-depth knowledge of security compliance, risk management, and technical frameworks.
- Maturity, judgment, and proven ability to lead and influence others.
- Independently driven, resourceful, and able to deliver results with minimal direction.
- High sense of ownership, urgency, and drive.
- Leadership-level communication (written and verbal).
Preferred Qualifications
- Master's degree in Business Administration, Information Systems, related field, or equivalent practical experience.
- Experience working with engineers and architects.
- Relevant industry certifications (CISSP, CISA, etc.).
- Experience working with IT-GRC tools.
- Experience implementing automated risk scoring.
- Experience working with IT-Risk Frameworks (NIST, ISO-27X, etc.).
Job Location: Saudi Arabia
No of Positions: 2
Note: The candidate would be expected to work in diverse consulting engagements and be willing to travel to Middle East countries for project execution at least 50% of their time.
Preference will be given to candidates who can join immediately or within 15 days at the maximum.
Employment Type: Full-time
Industry
- Information Technology & Services
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
