GRC Specialist - Information Security
- Riyadh
- Permanent
- Full-time
- Participate in various IT Risk Management & Business continuity initiatives.
- Ensuring that requirements in IT Audit, Standard, Policy, Compliance and Risk controls are met.
- Ensure external auditors have the access and information they need to complete their audit successfully.
- Conduct interviews and process walkthroughs with select personnel and document and assess business processes and information systems to determine the adequacy of the control environment.
- Demonstrate well IT auditing based on industry best practices and regulations.
- Demonstrates a high level of independence, integrity, and confidentiality, with the ability to independently develop and deliver presentations, as well as respond to inquiries.
- Shows an understanding and application of fundamental project management methodologies.
- Capable of documenting and articulating technical details clearly and succinctly. Exceptionally organized, with the ability to multitask, handle simultaneous deadlines, and effectively contribute to and lead teams.
- Skilled at engaging with clients, both internal and external.
- Possesses outstanding communication abilities.
- This job might require frequent traveling within Saudi Arabia and sometimes outside of Saudi Arabia
-Candidate should have 0-2 years of relevant experience in IT Risk & Compliance and knowledge of Risk Management, preferably with exposure to GRC tools.
-Experience in the assessment, development, and deployment of security policies, procedures, and standards is preferred.
-ISO27K Lead Implementer/Auditor, CISA, CISM, CRISC, CISSP, PMP, or similar certifications is advantageous.EducationBachelor's degree in Computer Science, Software Engineering, or a related field.