GRC Specialist

Job description / Role

Job description

GRC specialist's job is to participate in information security governance, risk management, and compliance engagements within Jafeer and for Jafeer customers.

Responsibilities:

• Participate in various IT risk management and business continuity initiatives.
• Ensure that requirements in IT audit, standard, policy, compliance, and risk controls are met.
• Ensure external auditors have the access and information they need to complete their audit successfully.
• Conduct interviews and process walkthroughs with select personnel and document and assess business processes and information systems to determine the adequacy of the control environment.
• Demonstrate well IT auditing based on industry best practices and regulations.

Personal skills

• Demonstrates a high level of independence, integrity, and confidentiality, with the ability to independently develop and deliver presentations, as well as respond to inquiries.
• Shows an understanding and application of fundamental project management methodologies.
• Capable of documenting and articulating technical details clearly and succinctly. Exceptionally organized, with the ability to multitask, handle simultaneous deadlines, and effectively contribute to and lead teams.
• Skilled at engaging with clients, both internal and external.
• Possesses outstanding communication abilities.
• This job might require frequent traveling within Saudi Arabia and sometimes outside of Saudi Arabia.

Technical skills

• Familiarity with various information security standards and frameworks, including ISO 27000 series, NIST, PCI DSS, and BCP/DR/Crisis Management, is essential.
• Candidate should have 0-2 years of relevant experience in IT risk and compliance and knowledge of risk management, preferably with exposure to GRC tools.
• Experience in the assessment, development, and deployment of security policies, procedures, and standards is preferred.
• ISO 27000 lead implementer/auditor, CISA, CISM, CRISC, CISSP, PMP, or similar certifications is advantageous.

Education

Bachelor's degree in computer science, software engineering, or a related field.

About the Company

Giza Systems, a leading systems integrator in the MEA region, designs and deploys industry-specific technology solutions for asset-intensive industries such as the telecoms, utilities, oil and gas, hospitality and real estate among other market sectors. We help our clients streamline their operations and businesses through our portfolio of solutions, managed services, and consultancy practice. Our team of 1000 professionals are spread throughout the region with anchor offices in Cairo, Riyadh, Dubai, Doha, Nairobi, Dar-es-Salaam, Abuja, Kampala and New Jersey, allowing us to service an ever-increasing client base in over 40 countries.