GRC Lead
7 days ago
Role Purpose
The GRC Lead is responsible for establishing, managing, and continuously improving the company's Governance, Risk, and Compliance framework. The role ensures full adherence to KSA, U.S., and international regulations related to import, export, manufacturing, technology transfer, data handling, and defense-sector compliance.
This position leads enterprise-wide GRC activities, oversees trade-compliance programs (EAR, ITAR, OFAC), manages regulatory reporting, partners with cybersecurity to secure controlled data, and ensures the business operates in a fully audit-ready, risk-aware environment.
As the company's primary compliance authority, the GRC & Compliance Lead serves as a trusted advisor to management and internal stakeholders on all governance, policy, regulatory, and risk management matters.
Principal Accountabilities and Key Activities
- Governance & Compliance Framework: Lead the development, implementation, and maintenance of the company's GRC framework, including governance policies, compliance programs, and risk controls.
Ensure alignment with regulatory expectations from GAMI, HCIS, NCA, SFDA, MISA, and international authorities.
- Regulatory & Trade Compliance: Monitor and interpret KSA, U.S., and international export-control regulations (EAR, ITAR, OFAC) to ensure full adherence.
Oversee all import, export, reexport, and technology-transfer activities to maintain strict compliance.
Prepare, submit, and manage export licenses and related regulatory documentation.
- Risk Management: Conduct enterprise and functional risk assessments; identify exposure areas and implement mitigation plans.
Establish risk registers, track remediation, and escalate critical risks to leadership.
Lead compliance investigations and root-cause analysis.
- Policy Development & Enforcement: Develop, review, and roll out compliance and governance policies, SOPs, and internal controls.
Ensure consistent policy enforcement across teams through effective communication and monitoring.
- Audit & Assurance: Maintain an audit-ready environment by overseeing documentation, controls, and compliance validation.
Lead internal audits related to export control, data security, and regulatory compliance.
Coordinate with external auditors, regulators, and legal advisors as required.
- Training & Awareness: Design and deliver training programs on GRC, export controls, ethical conduct, cybersecurity handling of controlled data, and company policies.
Build a culture of compliance and risk awareness across all departments.
- Cross-Functional Collaboration: Partner with Operations, Supply Chain, HR, IT, Cybersecurity, and Legal to ensure compliance controls are embedded into business processes.
Collaborate with cybersecurity teams to secure data, digital assets, and export-controlled technical information.
- Issue Management & Corrective Actions: Lead incident response for compliance breaches or regulatory violations.
Develop corrective action plans and ensure timely closure.
Support teams in resolving compliance-related obstacles.
- Regulatory Monitoring & Reporting: Stay current with evolving local and international regulations.
Provide regular compliance and risk reports to senior management and regulatory authorities.
Support new business ventures by assessing regulatory and compliance impact.
-
GRC Manager
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia Aventus Full timeGRC Manager – Short-Term Engagement | Riyadh, Saudi ArabiaWe are seeking an experiencedGRC (Governance, Risk & Compliance) Managerfor a2-month consulting engagementwith a leading government organization in Riyadh.The ideal candidate will bring deep expertise inenterprise risk management, cybersecurity governance, and compliance frameworks, ensuring...
-
GRC Consultant
7 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia Security Matterz Full time 60,000 - 120,000 per yearAbout Security MatterzSecurity Matterz is a Saudi company Riyadh-based cybersecurity and Managed Security Services provider, helping organizations across government, financial, and private sectors to strengthen their security posture and comply with local and international regulations.We are looking for GRC Consultantsto support and lead cybersecurity...
-
GRC Executive Director-Capital Project
5 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia Little Kitchen Help Ltd Full timeRole OverviewThe GRC Executive Director is responsible for leading the development, execution, and continuous enhancement of governance, risk, and compliance frameworks across the organization. The role ensures regulatory adherence, ethical integrity, and robust cybersecurity protection while embedding GRC practices into strategic and operational processes....
-
ServiceNow GRC Consultant
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia Eleveight Group Full time 2,100,000 - 2,800,000 per yearPosition Position based in : RiyadhOperating mode : Remote (Occasional on-site presence)Type of contract : FreelanceStart date : ASAPLevel of education required : Bac+5 Job description Looking for a new challenge ? Join Eleveight We are hiring on behalf of our partner in the technology sector and are looking for a GRC ServiceNow Consultant to take on...
-
Senior Manager– GRC for Capital Projects
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia YO IT CONSULTING Full time 10,500,000 - 22,500,000 per yearLocation : Riyadh, Saudi ArabiaManager, GRC - Capital Projects (CPC Domain)Role OverviewWe have a challenging opportunity opened for the role of Manager in our GRC practice for Capital Projects (CPC Domain).The Manager role in CPC-GRC requires multi-dimensional capabilities. They are responsible for growing existing accounts, risk-based audit planning,...
-
Cyber Security GRC Lead
7 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia Foodics Full time 70,000 - 130,000 per yearWho Are WeWe Are Foodics a leading restaurant management ecosystem and payment tech provider. Founded in 2014 with headquarters in Riyadh and offices across 5 countries, including UAE, Egypt, Jordan and Kuwait. We are currently serving customers and partners in over 35 different countries worldwide. Our innovative products have successfully processed over 6...
-
GRC Manager
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia EjadTech - إيجاد التقنية Full time $100,000 - $150,000 per yearJob PurposeThe GRC Manager is responsible for developing, implementing, and continuously enhancing the company's Governance, Risk, and Compliance framework to ensure organizational integrity, operational efficiency, and regulatory adherence. The role oversees corporate governance structures, enterprise risk management, compliance obligations, internal...
-
Cybersecurity GRC Specialist
1 week ago
Riyadh, Ar Riyāḑ, Saudi Arabia Lendo | ليندو Full time 120,000 - 240,000 per yearAbout Us:At Lendo, we are a fast-growing FinTech company on a mission to revolutionize the financial landscape in Saudi Arabia. With our innovative digital lending platform, we empower businesses by providing fast, secure, and transparent access to finance. As we continue to expand, we are seeking a detail-oriented and knowledgeable GRC Specialist to enhance...
-
GRC Consultant
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia help AG Full timeHelp AG is looking for an experienced GRC Consultant who is responsible for compliance management and successful alignment with national cybersecurity regulations, including the National Cybersecurity Authority (NCA) Essential Cybersecurity Controls (ECC) and SDAIA data governance frameworks.This role involves conducting compliance assessments, policy...
-
Senior Cybersecurity GRC Specialist
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia Mozn Full time 120,000 - 240,000 per yearAbout the roleWe are seeking a highly skilled and motivated Cybersecurity GRC Specialist to join our Governance, Risk, and Compliance (GRC) team. This role is pivotal in ensuring our cybersecurity practices align with both Saudi regulatory frameworks and international standards. The ideal candidate will possess hands-on experience in conducting risk...
