Grc Specialist

2 days ago


الرياض, Saudi Arabia Lendo Full time

At Lendo, we are a fast-growing FinTech company on a mission to revolutionize the financial landscape in Saudi Arabia. With our innovative digital lending platform, we empower businesses by providing fast, secure, and transparent access to finance. As we continue to expand, we are seeking a detail-oriented and knowledgeable GRC Specialist to enhance our cybersecurity program by strengthening governance, risk management, and compliance practices. This role is pivotal in developing, implementing, and maintaining security frameworks, policies, and procedures to ensure compliance with regulatory requirements and industry standards. If you’re passionate about identifying and mitigating risks to protect organizational information assets and are ready to contribute to a robust cybersecurity strategy in a dynamic environment, we’d love to hear from you

**Key Responsibilities**:

- **Governance**:

- Develop, implement, and maintain cybersecurity policies, standards, and procedures in alignment with industry frameworks.
- Monitor the effectiveness of cybersecurity governance and provide regular updates to leadership.
- Establish and maintain a system for tracking, reporting, and addressing policy exceptions.
- ** Risk Management**:

- Conduct risk assessments to identify, analyze, and prioritize cybersecurity risks to organizational assets.
- Collaborate with business units to design and implement effective risk mitigation plans.
- Maintain a risk register and ensure continuous monitoring and reporting of risks.
- ** Compliance**:

- Ensure compliance with applicable laws, regulations, and standards.
- Conduct regular audits and assessments to verify adherence to internal policies and external requirements.
- Act as the primary point of contact for regulatory bodies, auditors, and other third-party assessors.
- ** Awareness and Training**:

- Design and deliver cybersecurity awareness and compliance training programs for employees.
- Promote a culture of compliance and risk awareness across the organization.
- ** Incident Response and Reporting**:

- Support incident response processes by ensuring governance and compliance aspects are addressed.
- Provide guidance on documentation and reporting requirements for incidents and breaches.
- ** Continuous Improvement**:

- Stay current on emerging regulatory requirements, security trends, and best practices.
- Recommend and implement improvements to governance, risk, and compliance programs.

**Qualifications**:

- Strong understanding of governance, risk management, and compliance principles.
- Knowledge of information security frameworks (e.g., ISO 27001, SAMA CSF, NCA ECC, NIST CSF, COBIT, etc.).
- Experience conducting risk assessments and developing mitigation plans.
- Familiarity with regulatory requirements (e.g., SAMA regulations).
- Proficiency in documenting policies, procedures, and reports.

**Preferred Skills**:

- Hands-on experience with GRC tools (e.g., RSA Archer, ServiceNow GRC, MetricStream).
- Knowledge of cloud security and compliance requirements.
- Understanding of audit processes and methodologies.
- Understanding of vulnerability management processes.

**Education and Certifications**:

- Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
- Relevant certifications such as CISA, CRISC, CGEIT, ISO 27001 Lead Implementer/Auditor, or similar are highly desirable.

**Personal Attributes**:

- Excellent organizational and time-management skills.
- Strong analytical and problem-solving abilities.
- Effective communication skills (Arabic and English) to present technical concepts to non-technical audiences.


  • Saudi Grc Specialist

    2 weeks ago


    الرياض, Saudi Arabia CCDS Full time

    CCDS is looking for a skilled and dedicated Saudi GRC Specialist to join our dynamic team. In this role, you will be responsible for guiding the organization in maintaining compliance with local regulations and industry standards while developing robust governance and risk management frameworks. You will collaborate with various departments to identify...


  • الرياض, Saudi Arabia CCDS Full time

    **Key Responsibilities**: - Develop and implement GRC policies, frameworks, and control practices for clients. - Conduct risk assessments and audits to evaluate the effectiveness of existing security controls. - Monitor compliance with regulatory requirements, industry standards, and internal policies. - Provide expert guidance on best practices in...


  • الرياض, Saudi Arabia Innovative Solutions Full time

    **Company Description**: Innovative Solutions (IS) is a leading pure-player Cyber security company in the GCC established in 2003, headquartered in Riyadh with presence in Al Khobar, Jeddah, Dubai, and Abu Dhabi. Our Cybersecurity Solutions and Services encompass Advisory Services, Technical Assurance, Solution Deployment, Professional Services, and Managed...


  • الرياض, Saudi Arabia Giza Systems EG Full time

    Responsible to ensure that CCC adheres to regulatory requirements, manages risks appropriately, and follow best practices in cybersecurity governance, risk and compliance and data privacy domain. **Personal Skills**: - Develop, implement, and maintain cybersecurity governance frameworks and policies that align with organizational goals and regulatory...

  • Sales Executive

    1 week ago


    الرياض, Saudi Arabia SEIDOR Full time

    About the job SEIDOR, recognized as a leading SAP, Corporater, Microsoft, Snowflake, and Dataiku partner in EMEA, is an independent, expert consultancy that provides industry-focused solutions for ERP, HCM, Enterprise Performance Management, Analytics, GRC and organizational alignment. Core Functions: - Manage an assigned territory to build solid pipeline...

  • Servicenow

    3 days ago


    الرياض, Saudi Arabia Cognizant Full time

    **Job Summary** **Responsibilities** - Lead the design and implementation of ServiceNow solutions to meet business requirements. - Oversee the integration of ServiceNow modules including ITSM ITAM HRSD FSM CSM GRC and ITOM. - Provide technical expertise in ServiceNow Strategic Port Mgmt to optimize project management processes. - Collaborate with finance...

  • Epmo Governance

    2 weeks ago


    الرياض, Saudi Arabia King Faisal Specialist Hospital and Research Centre Full time

    Posted on Wednesday, 23 October 2024, 20 Rabia Al Thani 1446 Monday, 21 April 2025, 23 Shawwal 1446 Location Riyadh Department/Section Admin Section R - Epmo Governance & Reporting Department Organizes overall activities and functions within Enterprise Project Management Office (EPMO) to achieve itsmission, goals, objectives and to enhance its...

  • Servicenow - Manager

    2 weeks ago


    الرياض, Saudi Arabia Cognizant Full time

    **Job Summary** **Responsibilities** - Lead the design and implementation of ServiceNow solutions across various modules including ITSM ITAM HRSD FSM CSM GRC and ITOM. - Oversee the integration of ServiceNow with other enterprise systems to ensure seamless data flow and process automation. - Provide technical guidance and support to the development team to...

  • Epmo Governance

    2 weeks ago


    الرياض, Saudi Arabia King Faisal Specialist Hospital and Research Centre Full time

    Posted on Wednesday, 23 October 2024, 20 Rabia Al Thani 1446 Monday, 21 April 2025, 23 Shawwal 1446 Location Riyadh Department/Section Admin Section R - Epmo Governance & Reporting Department Oversees the overall management of Enterprise Project Management Office (EPMO) overall activities andfunctions to achieve its mission, goals, objectives and to...


  • الرياض, Saudi Arabia Tabby Full time

    **Description**: Reporting directly to the Head of Information Security, you will play a pivotal role in safeguarding Tabby's information assets, managing risks, and driving the implementation of robust security frameworks in compliance with SAMA's guidelines. **Key Responsibilities**: Compliance and Governance: - Ensure adherence to SAMA requirements and...