GRC Consultant

Al Nahiya Group

  • Abu Dhabi
  • Permanent
  • Full-time
  • 23 days ago
:GRC Consultant with CRISC certificationDuration: 6 Months (Extendable)PRIMARY DUTIES & RESPONSIBLITIES:
  • Develop and participate in implementation of ISO 27001:2013 initiatives
  • Implement and drive activities related to technology risk reduction, governance and compliance to policies and external regulatory compliance.
  • Evaluate IT risks and develop risk mitigation strategies, and corrective actions.
  • Provide recommendations to improve organizational security posture through process improvement, policy automation and continuous evolution of capabilities.
  • Document and report on security gaps and provide remediation guidance, prepare management reports, track remediation activities.
  • Conduct risk and exception assessments by assessing multiple inputs from internal/external sources
  • Conduct due diligence assessments on third party vendors using supply chain risk management practices.
  • Implement effective processes within the GRC function to automate and continuously monitor information security controls, exceptions, risks reporting metrics, dashboards and evidence artifacts.
  • Interviewing various stakeholders across the organization to determine security controls implementation and effectiveness by collecting and analyzing evidence and documenting findings and tracking to closure.
KEY SKILLS
  • Ability to conduct risk assessments on IT systems
  • Deep Knowledge of risk assessment methodologies, cyber security operations and InfoSec business processes
  • Experience of working on GRC technology enabled risk and compliance transformation programs required
  • Advanced proficiency in MS Office suite specifically Excel
  • Knowledge of Security best practice, methodologies, systems and third party providers
  • Proficiency in the English language,
RequirementsEXPERIENCE
  • Minimum 8-12 years of experience in Governance Risk and Compliance (InfoSec)
  • ​CRISC certification
  • Experience in the UAE or Middle East is desirable
  • Experience in deployment of GRC tools for a large enterprise
  • Experience implementing security controls such as ISO 27002, UAE IA, NIST controls
  • Proficient in conducting IT risk assessment
EDUCATION
  • Degree level qualification, preferably Bachelors or comparable, with strong emphasis in Management Information Systems (MIS), Computer Science, Governance, or a related field

Al Nahiya Group

Similar Jobs

  • Consultant

    Ventures Middle East

    • Abu Dhabi
    Who We Are Established in 2002, Ventures Middle East (VME) is an international management consulting company providing strategic business advisory services across the GCC and the…
    • 6 days ago
    • Apply easily

  • Cardiology Consultant

    • Abu Dhabi
    Cardiology Consultant Job Location: Abu Dhabi, United Arab Emirates Job Requirements: Must have relevant work experience. Good communication skills. Immediate joiners pref…
    • 1 month ago

  • Sales Consultant - Passenger Cars

    • Abu Dhabi
    Sales Consultant - Passenger Cars Job Location : UAE Job Details : High School Certificate/ Diploma (12 years of school education) Certified by a Luxury car Brand or any ot…
    • 28 days ago