Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
Master Linux is requiritting for one of reputable companies in Saudi Arabia GRC & Security Consultant with the following :
Key Responsibilities
- Define and implement risk management and risk assessment framework according to international standards like ISO and NIST.
- Define, review and update the information security policies and procedures on periodic basis.
- Research and Understand the applicable compliance and regulatory requirements to be met by the organization.
- Define compliance assessment framework based on all the regulatory (NCA) and other international compliances to be met.
- Define KPI’s and KRI’s to measure, track and improve the overall security posture.
- Define data classification policies
- Conduct risk assessments / compliance assessment as per the defined process, identify and report the gaps along with mitigation recommendations.
- Conduct gap / maturity assessment as per NIST / regulatory cybersecurity frameworks.
- Report the findings from the assessments and explain the same to the relevant stakeholders along with clear recommendations to mitigate the identified risks.
- Work with / guide the relevant stakeholders in mitigating identified risks.
- Track and report the status of the identified risks on a periodic basis.
- Conduct regular sessions on building awareness about the organization’s information security polices and best practices to be followed.
Job Requirements
- Bachelor’s degree in Computer Engineering / equivalent
- 6 to 8 Years of relevant experience
- Experience in Information Security Governance, Risk Assessment, creating customized Risk Assessment framework
- Experience in conducting risk assessments of hybrid environments, mix of cloud and on-premise applications and systems.
- Experience in Business Continuity Management and Information Security Incident Management will be an added advantage
- Experience with GRC automation tools will be an added advantage
- Strong Written and Oral Communication skills.
- ISO 27001 Lead Implementer certification is a must and other relevant certifications like CISA/CISM/CISSP will be an added advantage
Featured Jobs
Similar Jobs
- Oracle Developer for Riyadh - ...Ascon Advanced Solutions & Consultant - Riyadh, Saudi Arabia8 days ago