Cybersecurity GRC Engineer

Saudi Networkers Services

Saudi Arabia

3-5 Years

Save

Posted 16 hours ago
Be among the first 10 applicants

Early Applicant

Job Description

Job ID SNS-1004

Posted On

14-Oct-2025

(75 days ago)

Job type

Contract

Sector

Technology

Develop, implement, and maintain the organization's cybersecurity governance, risk, and compliance (GRC) framework.
Conduct risk assessments, vulnerability assessments, and security audits to identify gaps and ensure mitigation plans.
Monitor compliance with regulatory requirements, internal policies, and industry standards (e.g., ISO 27001, NIST, GDPR, SOC 2).
Collaborate with IT, operations, and business units to ensure security controls are implemented effectively.
Assist in the development and maintenance of information security policies, standards, procedures, and guidelines.
Provide technical guidance on security controls, risk treatment plans, and mitigation strategies.
Conduct awareness programs and training sessions on cybersecurity policies and compliance requirements.
Liaise with external auditors and regulatory bodies for security audits and compliance assessments.
Track and report on key risk indicators (KRIs), compliance metrics, and GRC program performance.
Support incident response and investigations from a compliance and governance perspective.
Bachelor's degree in Computer Science, Information Security, or related field.
Minimum 35 years of experience in cybersecurity, risk management, or GRC roles.
Strong knowledge of information security standards and frameworks (ISO 27001, NIST, COBIT, ITIL).
Experience with GRC tools and platforms (e.g., RSA Archer, ServiceNow GRC, MetricStream) is highly desirable.
Familiarity with regulatory requirements (e.g., GDPR, HIPAA, SOC 2, PCI-DSS) and industry best practices.
Strong analytical, problem-solving, and documentation skills.
Excellent communication and stakeholder management abilities.
Risk assessment and mitigation.
Policy development and enforcement.
Compliance management.
Security awareness and training.
Audit coordination and reporting.
Collaboration and cross-functional communication.