img
Contract TypeFull-time
Workplace typeOn-site
LocationRiyadh

Job Description

About the Role

Tree is seeking a dedicated and experienced IT GRC Senior Specialist to join our team in Riyadh, Saudi Arabia. This role is crucial for supporting and enhancing the organization's IT governance, risk management, and compliance practices. The Senior IT GRC Specialist will play a key part in implementing robust governance frameworks, conducting thorough risk assessments, diligently monitoring compliance with regulatory requirements, and providing essential support for both internal and external audits. The ideal candidate will possess a strong background in information security governance, regulatory compliance, comprehensive risk management, and adherence to cybersecurity frameworks. This position offers a full-time opportunity to contribute significantly to the security and integrity of our IT operations.

Key Responsibilities

  • Support the organization's IT governance, risk, and compliance initiatives.
  • Conduct comprehensive risk assessments and maintain up-to-date risk registers.
  • Ensure adherence and compliance with internal policies and all relevant regulatory requirements.
  • Provide support for internal and external audits and meticulously track the remediation of identified issues.
  • Assist in the development, implementation, and maintenance of IT security policies, procedures, and standards.
  • Prepare clear and concise governance and compliance reports and dashboards for management review.

Qualifications and Requirements

  • 3-4 years of professional experience in IT GRC, Information Security, Risk Management, or a closely related field.
  • A Bachelor's degree in Information Technology, Information Security, Computer Science, or a comparable discipline.
  • Demonstrated familiarity with established IT governance and security frameworks and standards such as ISO 27001, NCA ECC, NIST, or COBIT.

Essential Skills

  • Strong analytical skills for evaluating risks and compliance status.
  • Excellent communication skills, both written and verbal, for effective reporting and collaboration.
  • Proficiency in stakeholder management to engage with various internal and external parties.
  • IT GRC
  • Information Security
  • Risk Management
  • ISO 27001
  • NCA ECC
  • NIST
  • COBIT

Additional Information

This is a full-time position based in Riyadh, Saudi Arabia. The role requires 2-5 years of relevant experience. Preferred certifications include TOGAF, NORA Framework, ISO 27001, CISA, and CRISC.


Requirements

  • Requires 2-5 Years experience

Similar Jobs