Grc Expert

**Job Title - GRC Expert**

**Department** Governance, Risk, and Compliance

**Reports To** Director of GRC

**Job Summary** The GRC Expert is responsible for developing, implementing, and managing

comprehensive governance, risk, and compliance programs. This role ensures

adherence to legal standards and internal policies, mitigates risks, and enhances the

knowledgeable about regulatory environments.

**Key Responsibilities**
- Design and execute robust GRC frameworks tailored to organizational needs.
- Establishment of the function from ground zero.
- Conduct thorough risk assessments to identify and evaluate potential threats and

vulnerabilities. Develop risk mitigation plans and prioritize actions based on impact

and likelihood.
- Ensure that the organization’s activities align with its strategic goals and regulatory

requirements
- Draft, review, and refine GRC policies and procedures to align with best practices

and regulatory requirements. Ensure policies are effectively communicated and

implemented throughout the organization.
- Proficient in various regulatory frameworks

(ISO27001,27005,22301,31000,27701,NCA ,SAMA,NIST and PCI DSS)
- Develop and deliver comprehensive training programs to increase awareness of

GRC practices. Conduct workshops and seminars to educate employees on

compliance and risk management.
- Oversee the response to compliance breaches and risk incidents. Conduct root

cause analysis and implement corrective actions to prevent recurrence.
- Prepare and present detailed reports on GRC activities, risks, and compliance

status to senior management and the board. Develop dashboards and key

performance indicators (KPIs) to track and report on GRC performance.
- Work closely with various departments (IT, Legal, HR, etc.) to integrate GRC

efforts and ensure a unified approach. Foster a culture of compliance and risk

awareness throughout the organization.
- Advise key stakeholders and management on governance, risk, and

compliance issues.
- Help GRC department to design and implement SAP GRC solutions.
- Guide and train any other team members.
- Performing other related duties as assigned from time to time based on the

business requirement
- Stay abreast of changes in regulations and standards, assessing their impact on

the organization. Proactively update GRC programs to address new regulatory

requirements.

**Qualifications**
- Education: Bachelor’s degree in business, Finance, Industrial engineering IT, or a

related field. Advanced degrees preferred.
- Certifications: Professional certifications in GRC
- Experience: Minimum of 10 years of experience in GRC. Knowledge of GRC tool

techniques and best practices.

**Skills**
- Analytical Skills: Exceptional analytical and problem-solving skills to assess

complex issues and develop effective solutions.
- Communication: Strong written and verbal communication skills to articulate GRC

concepts clearly and persuasively.
- Interpersonal Skills: Excellent ability to build relationships and work

collaboratively with diverse teams.
- Technical Proficiency: Proficiency in GRC tools and software, with a solid

understanding of IT systems and processes.
- Leadership: Demonstrated leadership abilities to guide and mentor teams in GRC

best practices.

**Work Environment**
- Primarily office-based with occasional travel.

Pay: ﷼34.71 - ﷼41.80 per hour