GRC Junior Specialist - Information Security

Job description / Role

Role

GRC specialist job is to participate in information security governance, risk management, and compliance engagements within Jafeer and for Jafeer customers.

Responsibilities

• Participate in various IT risk management and business continuity initiatives.
• Ensure that requirements in IT audit, standards, policy, compliance, and risk controls are met.
• Ensure external auditors have the access and information they need to complete their audit successfully.
• Conduct interviews and process walkthroughs with select personnel and document and assess business processes and information systems to determine the adequacy of the control environment.
• Demonstrate strong IT auditing based on industry best practices and regulations.
• This job might require frequent traveling within Saudi Arabia and sometimes outside of Saudi Arabia.

Personal skills

Demonstrates a high level of independence, integrity, and confidentiality, with the ability to independently develop and deliver presentations, as well as respond to inquiries. Shows an understanding and application of fundamental project management methodologies. Capable of documenting and articulating technical details clearly and succinctly. Exceptionally organized, with the ability to multitask, handle simultaneous deadlines, and effectively contribute to and lead teams. Skilled at engaging with clients, both internal and external. Possesses outstanding communication abilities.

Technical skills

Familiarity with various information security standards and frameworks, including ISO27K, NIST, PCI DSS, and BCP/DR/Crisis Management, is essential. Candidates should have 0-2 years of relevant experience in IT risk and compliance and knowledge of risk management, preferably with exposure to GRC tools. Experience in the assessment, development, and deployment of security policies, procedures, and standards is preferred. ISO27K lead implementer/auditor, CISA, CISM, CRISC, CISSP, PMP, or similar certifications are advantageous.

About the Company

Giza Systems, a leading systems integrator in the MEA region, designs and deploys industry-specific technology solutions for asset-intensive industries such as the telecoms, utilities, oil and gas, hospitality and real estate among other market sectors. We help our clients streamline their operations and businesses through our portfolio of solutions, managed services, and consultancy practice. Our team of 1000 professionals are spread throughout the region with anchor offices in Cairo, Riyadh, Dubai, Doha, Nairobi, Dar-es-Salaam, Abuja, Kampala and New Jersey, allowing us to service an ever-increasing client base in over 40 countries.