56 Security Policies jobs in Riyadh
Compliance Officer
Posted 1 day ago
Job Viewed
Job Description
We have an urgent opening for Compliance cum Admin Executive for Riyadh location.
Job location: Riyadh.
Role Overview: The Compliance cum Admin Executive will be responsible for ensuring statutory and regulatory compliance across Data Center, Infrastructure, or Construction projects, while also handling key administrative operations. The role demands strong knowledge of compliance frameworks, vendor documentation, site permits, and effective office administration.
Responsibilities- Ensure adherence to statutory and regulatory compliances (labor laws, safety norms, local authority approvals, etc.) relevant to Data Center / Infra / Construction projects.
- Maintain updated compliance records, licenses, permits, and certifications for projects and corporate office.
- Support internal and external audits (legal, statutory, ISO, safety) and ensure timely closure of observations.
- Manage administrative functions including vendor coordination, procurement, facilities management, and asset tracking.
- Handle documentation for HSE (Health, Safety & Environment) compliance and liaise with site teams for permits/approvals.
- Ensure contractor/vendor compliance for statutory obligations (PF, ESI, insurance, safety training, etc.).
- Draft and implement internal compliance policies and SOPs to align with company standards.
- Provide compliance and administrative reports to senior management on a regular basis.
- Coordinate with project sites for smooth execution of compliance-related documentation and approvals.
- Good knowledge of compliance requirements in Data Center / Infra / Construction industry.
- Familiarity with labor laws, contract compliance, vendor documentation, and safety regulations.
- Strong administrative and organizational management abilities.
- Excellent documentation, reporting, and coordination skills.
- Proficiency in MS Office and compliance tracking tools.
- Graduate/Postgraduate in Business Administration, Law, or related discipline.
- 8-10 years of experience in compliance and administration within Data Center / Infra / Construction projects.
- Hands-on exposure to statutory compliances, vendor contracts, and safety audits is highly desirable.
- Seniority level: Mid-Senior level
- Employment type: Full-time
- Job function: Public Relations
- Industries: Construction and Data Infrastructure and Analytics
Compliance Officer
Posted today
Job Viewed
Job Description
We have an urgent opening for Compliance cum Admin Executive for Riyadh location.
Job location: Riyadh.
Role Overview: The Compliance cum Admin Executive will be responsible for ensuring statutory and regulatory compliance across Data Center, Infrastructure, or Construction projects, while also handling key administrative operations. The role demands strong knowledge of compliance frameworks, vendor documentation, site permits, and effective office administration.
Responsibilities- Ensure adherence to statutory and regulatory compliances (labor laws, safety norms, local authority approvals, etc.) relevant to Data Center / Infra / Construction projects.
- Maintain updated compliance records, licenses, permits, and certifications for projects and corporate office.
- Support internal and external audits (legal, statutory, ISO, safety) and ensure timely closure of observations.
- Manage administrative functions including vendor coordination, procurement, facilities management, and asset tracking.
- Handle documentation for HSE (Health, Safety & Environment) compliance and liaise with site teams for permits/approvals.
- Ensure contractor/vendor compliance for statutory obligations (PF, ESI, insurance, safety training, etc.).
- Draft and implement internal compliance policies and SOPs to align with company standards.
- Provide compliance and administrative reports to senior management on a regular basis.
- Coordinate with project sites for smooth execution of compliance-related documentation and approvals.
- Good knowledge of compliance requirements in Data Center / Infra / Construction industry.
- Familiarity with labor laws, contract compliance, vendor documentation, and safety regulations.
- Strong administrative and organizational management abilities.
- Excellent documentation, reporting, and coordination skills.
- Proficiency in MS Office and compliance tracking tools.
- Graduate/Postgraduate in Business Administration, Law, or related discipline.
- 8-10 years of experience in compliance and administration within Data Center / Infra / Construction projects.
- Hands-on exposure to statutory compliances, vendor contracts, and safety audits is highly desirable.
- Seniority level: Mid-Senior level
- Employment type: Full-time
- Job function: Public Relations
- Industries: Construction and Data Infrastructure and Analytics
Compliance Officer (Riyadh)
Posted 10 days ago
Job Viewed
Job Description
Career Opportunities with Avana Companies
A great place to work.
As a people-first organization, AVANA Companies is the sum of our team members. Our team is the heart of our organization, across all our brands. Given everything they bring to the table, our goal is to enrich their lives as much as we enrich the lives of our clients and partners. At the end of the day, our passion is our people, and our purpose is to deliver Capital for a Better Tomorrow. As a united team, we passionately pursue that purpose – ultimately creating a lasting impression on our own lives and the lives of people around the world. We’re lucky that every day we get to collaborate and work together to accomplish that. It’s one of the many factors that make us a family of companies .
Want to learn more about how you can join our family? View our openings below and be sure to check back often, as our family is constantly growing!
Mission:
The Compliance Officer will ensure the financial transactions, business activities and general operations adhere to the principles of Shariah law, including compliance oversight, policy development, auditing and risk management, stakeholder communication and ethical advocacy.
Key Performance Indicators:
• The % of the organization's assets that comply with Sharia principles, including investments, financing activities, and other financial instruments that align with Islamic finance guidelines.
• The amount of time taken to obtain approval from authorities for new financial products, contracts, or business activities.
• Drafting, implementing and training of business operations procedures for new staff within 60 days of onboarding.
• The # of findings from compliance audits or assessments and the % time taken to remediate any issues identified.
• The accuracy and timeliness of regulatory reports submitted by the organization.
Responsibilities:
• Ensures that the organization complies with all relevant laws, regulations, and industry standards applicable to its operations including AML, KYC requirements
• Acts as primary liaison between the organization and regulatory authorities, industry associations, and other external stakeholders.
• Scrutinizes contracts, agreements, and business practices to ensure they are free from interest (riba), uncertainty (gharar), speculation (maisir), and unethical investments.
• Develops and implements policies and procedures that align with Shariah principles and regulatory requirements. This will involve creating guidelines for permissible investments, ethical business practices, and customer interactions that adhere to Islamic finance principles.
• Monitors the organization's activities to detect any violations of laws, regulations, or internal policies. Investigates potential breaches, documenting findings, and reporting them to senior management and regulatory authorities as required.
• Provides training and educational sessions to employees to ensure they understand Shariah compliance requirements and their implications for business operations.
• Audits and monitoring activities to assess the organization's compliance with Sharia principles. This involves reviewing financial records, conducting on-site inspections, and investigating any potential breaches of Sharia compliance.
Qualifications:
• Bachelor's degree in Business, Finance, or a related field. Master's degree preferred.
• Professional Certificate in Islamic Finance (PCIF) Certification
• Proven experience in a similar leadership role, with a track record of successfully implementing technology strategies.
• Strong technical compliance and lending knowledge and understanding of legal requirements, regulations and Sharia Lending practices
• Excellent leadership and management skills, with the ability to motivate and inspire a team.
• Strong business acumen and the ability to align technology initiatives with organizational goals.
• Exceptional problem-solving and decision-making skills, with a strong attention to detail.
• Excellent communication and interpersonal skills, with the ability to effectively collaborate and communicate with stakeholders at all levels.
• Proven ability to manage multiple projects and priorities in a fast-paced, dynamic environment.
• Strong strategic thinking and planning skills, with the ability to anticipate and mitigate potential risks and challenges.
Note: This job description is not intended to be all-inclusive. The Compliance Officer may be required to perform other related duties as requested by the management team.
#J-18808-LjbffrTax Compliance Officer
Posted 22 days ago
Job Viewed
Job Description
Description
Established in the region for 40 years, PwC has around 8,000 people in 12 countries across the region: Bahrain, Egypt, Iraq, Jordan, Kuwait, Lebanon, Libya, Oman, the Palestinian territories, Qatar, Saudi Arabia and the United Arab Emirates. Our regional team operates across the Middle East bringing international experience delivered within the context of the region and its culture. We can bring the collective knowledge and experience of more than 328,000 people across the entire global PwC network in advisory, assurance and tax to help you find the value you are looking for.Job Description & Summary
The Firm Tax team is a part of the PwC Middle East Group’s OneFinance function. The team supports on all levels of the firm’s tax activity and is organized into three (3) subfunctions: Compliance & Audit; Governance & Risk; and Legal & Tax Advisory. This role is intended to support the Compliance & Audit subfunction.
The ME Firm Tax Compliance & Audit Senior Associate’s role is for a tax accountant who is responsible for handling tax activities for the PwC ME Group entities under the supervision of the ME Firm Tax Compliance & Audit (Subfunction) Lead and working together with the wider Firm Tax team as well as finance tax specialists across the ME region.
The main focus of the tax accountant is to support the Compliance & Audit subfunction in all tax compliance and audit related matters for the region. This includes optimising PwC’s tax position, minimising tax leakage, managing tax risks, and understanding the tax implications of cross border transactions and the business operating model.
Specifically, this will require data collection, validation and preparation of various tax compliance and reporting requirements across the region. Activities and responsibility will include: preparation of corporate income tax, withholding tax (WHT) and value added tax (VAT) returns; preparation of responses to tax authority audits and inquiries; responding to tax related questions posed by other internal firm services (IFS) functions as well as, at times, client facing (Line of Service (LoS)) teams on tax issues encountered in their day to day operations.
Primary Duties and Responsibilities:
Compliance
- Prepare corporate income tax returns for the PwC ME Group entities for review by the Firm Tax Compliance & Audit (subfunction) Lead, ensuring submission deadlines are adhered to.
- Prepare WHT returns for the PwC ME Group entities for review by the Firm Tax Compliance & Audit (subfunction) Lead, ensuring submission deadlines are adhered to.
- Prepare VAT returns for the PwC ME Group entities for review by the Firm Tax Compliance & Audit (subfunction) Lead, ensuring submission deadlines are adhered to.
- Reconcile tax to statutory accounts.
- Reconcile and validate accounts and accounting entries as required (including payroll taxes, customs and excise duties, stamp duty, etc).
- Deliver internal analysis/reports to Firm Tax Compliance & Audit (subfunction) Lead, flagging key risks, exposures etc., as well as tax opportunities.
- Works with the wider Firm Tax team and local Tax LoS Specialists to understand tax laws and regulations in various jurisdictions within the Middle East.
- Responsible for guiding transactions within the wider OneFinance team to optimise the management of tax liabilities.
Audit
- Provide inputs for all tax audits conducted by Firm Tax/Global Team/External Auditors.
Other
- Organize and conduct special analysis as required.
- Assist with effective tax training and appropriate support for the business.
- Consolidate, analyse and challenge tax report inputs from LoS/local teams/other finance teams as appropriate.
- Be actively involved in business development activities to help identify and solve complex tax challenges.
- Refine tax policy and procedure documentation and ensure proper implementation and adherence across the ME Group.
- Develop strong working relationships and interface with all stakeholders across the ME Group.
- Be actively involved in and a positive influence on team recruiting, development, training and retention.
Education
- Bachelor’s Degree in Business Administration, Accounting, Finance, Law or a related field required.
- Certified Tax Accountant, Certified Practicing Accountant or similar.
Language
- Bi-lingual English/Arabic. Fluency in written and spoken English & Arabic.
Overall Experience
- 2- 4 years of tax experience.
- Previous experience with corporate tax, withholding tax, VAT and payroll is required.
- An understanding of other taxes would be an advantage.
Specific Experience
- Must have tax corporate income tax accounting and compliance experience.
- Experience in the Professional Services industry in a top tier (Big 4) firm would be an advantage.
Knowledge and Skills
- Understanding of general/international accounting standards and practices.
- High level of analytical and quantitative ability required to perform complex financial and transactional tax and accounting functions and ad hoc reporting functions, including proficiency with computer based modelling and analytic techniques.
- Ability to adhere to procedures, controls and policies for functional areas of responsibility.
- Organization, thoroughness, eye for detail, time management skills and proactivity required.
- Excellent people management skills required.
- Strong verbal and written communication skills required to effectively work with professional resources in accounting areas.
- Ethical conduct.
Required Skills
- Audits Compliance, Income Taxation, Income Tax Return, Tax Withholding, VAT Returns
Optional Skills
Accepting Feedback, Accepting Feedback, Accounting Practices, Active Listening, Communication, Corporate Tax Planning, Drafting Tax Documents, Emotional Regulation, Empathy, Financial Audit, Financial Review, Financial Statement Analysis, Inclusion, Intellectual Curiosity, Monitoring and Analyzing Financial Trends, Optimism, Preparing Tax Documents, Project Management, Regulatory Compliance Consulting, Regulatory Submissions Filing, Tax Accounting, Tax Auditing, Tax Compliance, Tax Credit, Tax Preparation {+ 4 more}
Travel Requirements
Up to 20%
Available for Work Visa Sponsorship?
No
Government Clearance Required?
No
For further information, and to apply, please visit our website via the “Apply” button below.
#J-18808-LjbffrTax Compliance Officer
Posted 21 days ago
Job Viewed
Job Description
Established in the region for 40 years, PwC has around 12,000 people in 12 countries across the region: Bahrain, Egypt, Iraq, Jordan, Kuwait, Lebanon, Libya, Oman, the Palestinian territories, Qatar, Saudi Arabia and the United Arab Emirates.
Our regional team operates across the Middle East bringing international experience delivered within the context of the region and its culture. We can bring the collective knowledge and experience of more than 370,000 people across the entire global PwC network in advisory, assurance and tax to help you find the value you are looking for.
Line of Service: Internal Firm Services
Industry/Sector: Not Applicable
Specialism: IFS - Finance
Management Level: Associate
Job Description & Summary:
The Firm Tax team is a part of the PwC Middle East Group’s OneFinance function. The team supports on all levels of the firm’s tax activity and is organized into three (3) subfunctions: Compliance & Audit; Governance & Risk; and Legal & Tax Advisory. This role is intended to support the Compliance & Audit subfunction.
The ME Firm Tax Compliance & Audit Senior Associate’s role is for a tax accountant who is responsible for handling tax activities for the PwC ME Group entities under the supervision of the ME Firm Tax Compliance & Audit (Subfunction) Lead and working together with the wider Firm Tax team as well as finance tax specialists across the ME region.
The main focus of the tax accountant is to support the Compliance & Audit subfunction in all tax compliance and audit related matters for the region. This includes optimising PwC’s tax position, minimising tax leakage, managing tax risks, and understanding the tax implications of cross border transactions and the business operating model.
Specifically, this will require data collection, validation and preparation of various tax compliance and reporting requirements across the region. Activities and responsibility will include: preparation of corporate income tax, withholding tax (WHT) and value added tax (VAT) returns; preparation of responses to tax authority audits and inquiries; responding to tax related questions posed by other internal firm services (IFS) functions as well as, at times, client facing (Line of Service (LoS)) teams on tax issues encountered in their day to day operations.
Primary Duties and Responsibilities:
Compliance:
- Prepare corporate income tax returns for the PwC ME Group entities for review by the Firm Tax Compliance & Audit (subfunction) Lead, ensuring submission deadlines are adhered to.
- Prepare WHT returns for the PwC ME Group entities for review by the Firm Tax Compliance & Audit (subfunction) Lead, ensuring submission deadlines are adhered to.
- Prepare VAT returns for the PwC ME Group entities for review by the Firm Tax Compliance & Audit (subfunction) Lead, ensuring submission deadlines are adhered to.
- Reconcile tax to statutory accounts.
- Reconcile and validate accounts and accounting entries as required (including payroll taxes, customs and excise duties, stamp duty, etc).
- Deliver internal analysis/reports to Firm Tax Compliance & Audit (subfunction) Lead, flagging key risks, exposures etc., as well as tax opportunities.
- Work with the wider Firm Tax team and local Tax LoS Specialists to understand tax laws and regulations in various jurisdictions within the Middle East.
- Responsible for guiding transactions within the wider OneFinance team to optimise the management of tax liabilities.
Audit:
- Provide inputs for all tax audits conducted by Firm Tax/Global Team/External Auditors.
Other:
- Organize and conduct special analysis as required.
- Assist with effective tax training and appropriate support for the business.
- Consolidate, analyse and challenge tax report inputs from LoS/local teams/other finance teams as appropriate.
- Be actively involved in business development activities to help identify and solve complex tax challenges.
- Refine tax policy and procedure documentation and ensure proper implementation and adherence across the ME Group.
- Develop strong working relationships and interface with all stakeholders across the ME Group.
- Be actively involved in and a positive influence on team recruiting, development, training and retention.
Education:
- Bachelor’s Degree in Business Administration, Accounting, Finance, Law or a related field required.
- Certified Tax Accountant, Certified Practicing Accountant or similar.
Language:
- Bi-lingual English/Arabic. Fluency in written and spoken English & Arabic.
Overall Experience:
- 2-4 years of tax experience.
- Previous experience with corporate tax, withholding tax, VAT and payroll is required.
- An understanding of other taxes would be an advantage.
Specific Experience:
- Must have tax corporate income tax accounting and compliance experience.
- Experience in the Professional Services industry in a top tier (Big 4) firm would be an advantage.
Knowledge and Skills:
- Understanding of general/international accounting standards and practices.
- High level of analytical and quantitative ability required to perform complex financial and transactional tax and accounting functions and ad hoc reporting functions, including proficiency with computer based modelling and analytic techniques.
- Ability to adhere to procedures, controls and policies for functional areas of responsibility.
- Organization, thoroughness, eye for detail, time management skills and proactivity required.
- Excellent people management skills required.
- Strong verbal and written communication skills required to effectively work with professional resources in accounting areas.
- Ethical conduct.
Travel Requirements: Up to 20%
Available for Work Visa Sponsorship? No
Government Clearance Required? No
#J-18808-LjbffrRegulatory Compliance Officer
Posted today
Job Viewed
Job Description
**Regulatory Compliance Officer**
- Ensure that the organization has an engagement framework with the regulator (CITC).
- Work hand in hand with management and staff to identify and manage regulatory compliance risks.
- Maintain and coordinate an open line of communication with all relevant decision makers and stakeholders to keep all parties informed of regulatory communication and impact.
- Organize regular training sessions for employees to efficiently communicate key regulatory changes and updates.
- Support in creating and implementing organizational policies, standards, and procedures to comply with applicable regulations.
- Research industry compliance regulations and policies.
- Evaluate internal operational and procedural compliance.
- Maintain regulatory compliance internally through communicating requirements, obtaining approvals, and training stakeholders.
- Develop and maintain a compliance recordkeeping system.
- Keep up with compliance requirements and amendments to regulations.
- Identify roadblocks and propose process improvements.
- Maintain compliance communication register and documentation.
- Create and manage action plans in response to regulatory compliance audit discoveries and compliance violations.
- Remediate any regulatory audits, periodic reviews, and compile gaps and action plan.
- Hands-on 3+ years of experience as a compliance analyst or specialist within an enterprise-level organization.
- Strong experience in both reviewing and drafting policies and documentation in both Arabic and English.
- Compliance management or project management certification is a plus.
- Experience in international standards and local regulatory requirements related to telecommunications, data protection, and data localization.
- Higher Education/Bachelor’s Degree in Technology or Management field.
- Excellent communication skills, both written and oral.
- Ability to effectively plan, manage and complete projects in line with stakeholders’ needs and expectations, and organizational strategic objectives.
- Diligent attention to detail and advanced analytical abilities.
- Fluent in English and Arabic with excellent writing/editing and verbal communication skills.
Cybersecurity Governance & Compliance Officer "GRC"
Posted today
Job Viewed
Job Description
Cybersecurity Governance & Compliance Officer "GRC"
Responsibilities- Maintain Cybersecurity Governance: refresh and align cybersecurity governance with regulatory requirements and best practices.
- Ensure Cybersecurity Risk Management: identify and assess cybersecurity risks to improve security posture and reduce impact.
- Uphold Cybersecurity Compliance: assure cybersecurity compliance requirements are audited and remediated accordingly.
- Improve Cybersecurity GRC Operations: enhance various GRC assessments and activities and be more agile in a fast-paced enterprise.
- 5 Years of Experience as a GRC
- The candidate should be aware of the following frameworks:
- NCA - ECC National Cybersecurity Authority - Essential Cybersecurity Controls - ECC-1:2018
- NCA - CCC National Cybersecurity Authority - Cloud Cybersecurity Controls - CCC-1:2020
- NCA - TCC TCC-1:2021
- NCA - OSMACC National Cybersecurity Authority - Organization's Social Media Accounts Cybersecurity Controls - OSMACC-1:2021
- NCA - DCC National Cybersecurity Authority - Data Cybersecurity Controls - DCC-1:2022
- NDMO National Data Management Office Regulations and Standards
- ISO27001: 2022 ISO (International Organization for Standardization) 27001 SO/IEC 27001:2022 standard for Information Security Management Systems (ISMS)
- Mid-Senior level
- Full-time
- Information Technology
- IT Services and IT Consulting
Be The First To Know
About the latest Security policies Jobs in Riyadh !
Cybersecurity Governance & Compliance Officer "GRC"
Posted 2 days ago
Job Viewed
Job Description
Maintain Cybersecurity Governance: To refresh and align cybersecurity governance with regulatory requirements and best practices.
Ensure Cybersecurity Risk Management: To identify and assess cybersecurity risks to improve security posture and reduce impact.
Uphold Cybersecurity Compliance: To assure cybersecurity compliance requirements are audited and remediated accordingly.
Improve Cybersecurity GRC Operations: To enhance various GRC assessments and activities and be more agile in a fast-paced enterprise
Cybersecurity Compliance Tasks
- Perform assessments based on NCA regulations (such as ECC and OSMACC) and the client standards.
- Track findings, communicate with internal stakeholders, and validate evidences.
- Support in internal audit activities.
- Support in external audit activities (ISO27001).
- Prepare weekly and monthly status report for compliance status.
Cybersecurity Risk Management Tasks
- Perform risk assessments for new solutions and third parties, as well as major technology changes.
- Maintain risk register, follow up on mitigation plane with stakeholders and validate evidences.
- Represent cybersecurity in IT demand management and IT change management.
- Participate and develop Root Cause Analysis corrective actions resulting from Cybersecurity incidents.
- Prepare weekly and monthly status report.
Cybersecurity Governance Tasks
- Review and update cybersecurity documentation such as standards and policies, as well as other documents part of cybersecurity governance framework.
- Develop new standards, processes, and procedures.
- Monitor cyber practices and operational KPIs.
- Create a governance review plan.
5 Years of Experience s a GRC
The candidate should be aware of the following frameworks
- NCA – ECC National Cybersecurity Authority - Essential Cybersecurity Controls – ECC–1:2018
- NCA – CCC National Cybersecurity Authority - Cloud Cybersecurity Controls –CCC–1:2020
- NCA – TCC TCC–1:2021
- NCA – OSMACC National Cybersecurity Authority – Organization’s Social Media Accounts Cybersecurity Controls –OSMACC–1:2021
- NCA – DCC National Cybersecurity Authority - Data Cybersecurity Controls – DCC–1:2022
- NDMO National Data Management Office Regulations and Standards
- ISO27001: 2022 ISO (International Organization for Standardization) 27001 SO/IEC 27001:2022 standard for Information Security Management Systems (ISMS)
Senior Compliance Officer Capital Markets
Posted 23 days ago
Job Viewed
Job Description
Job Title : Compliance Officer – Capital Markets
Location : Riyadh, Saudi Arabia
Industry : Financial Services / Investment Banking
Overview :
A leading international financial institution is seeking a Compliance Officer to join its Riyadh office. The successful candidate will play a critical role in overseeing compliance matters across capital markets operations, ensuring full adherence to local and international regulatory frameworks, including CMA regulations.
Key Responsibilities :
- Lead the implementation, review, and enhancement of compliance frameworks and internal controls in alignment with CMA and global regulatory standards.
- Serve as the primary point of contact with the Capital Market Authority (CMA) for compliance matters.
- Monitor regulatory changes and assess their impact on business operations.
- Provide advisory support to front-office and operational teams on compliance-related topics including trading, licensing, and reporting.
- Manage regulatory filings, license applications, and ongoing reporting requirements.
- Conduct compliance training and promote a culture of compliance awareness across the organization.
- Perform internal reviews and investigations where required.
- Coordinate with global compliance teams to ensure consistency with global policies and procedures.
Requirements :
What’s on Offer :
Application Instructions :
Interested candidates are invited to submit their CV and a brief cover note highlighting relevant experience and regulatory exposure. You can email me at
#J-18808-LjbffrCybersecurity Governance & Compliance Officer "GRC"
Posted 1 day ago
Job Viewed
Job Description
Maintain Cybersecurity Governance: To refresh and align cybersecurity governance with regulatory requirements and best practices.
Ensure Cybersecurity Risk Management: To identify and assess cybersecurity risks to improve security posture and reduce impact.
Uphold Cybersecurity Compliance: To assure cybersecurity compliance requirements are audited and remediated accordingly.
Improve Cybersecurity GRC Operations: To enhance various GRC assessments and activities and be more agile in a fast-paced enterprise
Cybersecurity Compliance Tasks
- Perform assessments based on NCA regulations (such as ECC and OSMACC) and the client standards.
- Track findings, communicate with internal stakeholders, and validate evidences.
- Support in internal audit activities.
- Support in external audit activities (ISO27001).
- Prepare weekly and monthly status report for compliance status.
Cybersecurity Risk Management Tasks
- Perform risk assessments for new solutions and third parties, as well as major technology changes.
- Maintain risk register, follow up on mitigation plane with stakeholders and validate evidences.
- Represent cybersecurity in IT demand management and IT change management.
- Participate and develop Root Cause Analysis corrective actions resulting from Cybersecurity incidents.
- Prepare weekly and monthly status report.
Cybersecurity Governance Tasks
- Review and update cybersecurity documentation such as standards and policies, as well as other documents part of cybersecurity governance framework.
- Develop new standards, processes, and procedures.
- Monitor cyber practices and operational KPIs.
- Create a governance review plan.
5 Years of Experience s a GRC
The candidate should be aware of the following frameworks
- NCA - ECC National Cybersecurity Authority - Essential Cybersecurity Controls - ECC-1:2018
- NCA - CCC National Cybersecurity Authority - Cloud Cybersecurity Controls -CCC-1:2020
- NCA - TCC TCC-1:2021
- NCA - OSMACC National Cybersecurity Authority - Organization's Social Media Accounts Cybersecurity Controls -OSMACC-1:2021
- NCA - DCC National Cybersecurity Authority - Data Cybersecurity Controls - DCC-1:2022
- NDMO National Data Management Office Regulations and Standards
- ISO27001: 2022 ISO (International Organization for Standardization) 27001 SO/IEC 27001:2022 standard for Information Security Management Systems (ISMS)