IT GRC Specialist (Governance, Risk, and Compliance)
Cairo, Cairo Governorate, Egypt - Remote
CEQUENS
Empower your business with CEQUENS! Experience innovative CPaaS & omnichannel business solutions. Bridge communication gaps between businesses & Customers.The IT GRC Specialist will be responsible for developing, implementing, and maintaining the IT governance, risk management, and compliance framework within CEQUENS. This role requires a deep understanding of IT security principles, regulatory requirements, and risk management practices. The ideal candidate will possess strong analytical skills, attention to detail, and the ability to communicate effectively with stakeholders at all levels.
Key Roles and Responsibilities:
1. Governance:
- Develop and maintain IT governance policies, procedures, and standards in alignment with industry best practices and regulatory requirements.
- Implement governance frameworks such as COBIT, ISO 27001, NIST, SOC 2, PCI etc., to ensure effective IT governance across the organization.
- Coordinate with key stakeholders to establish IT governance committees and facilitate regular meetings to review IT policies and procedures.
2. Risk Management:
- Conduct risk assessments and identify potential threats and vulnerabilities within the IT infrastructure.
- Develop risk mitigation strategies and action plans to address identified risks.
- Monitor and track risk mitigation activities to ensure timely resolution and compliance with established policies and procedures.
3. Compliance:
- Stay current on relevant laws, regulations, and industry standards related to IT security and compliance in align with SAUDI Arabia CITC and SAMA, Egypt NTRA and Central bank, Europe .
- Conduct compliance assessments to evaluate adherence to regulatory requirements and internal policies.
- Prepare compliance reports and documentation for regulatory audits and reviews.
4. Security Awareness:
- Collaborate with the IT security team to develop and deliver training programs on IT governance, risk management, and compliance.
- Promote a culture of security awareness and compliance throughout the organization.
5. Continuous Improvement:
- Monitor industry trends and emerging technologies to identify opportunities for improving IT GRC practices.
- Proactively recommend enhancements to IT policies, procedures, and controls to strengthen the overall security posture of the organization.
Requirements
- Bachelor's degree in Information Technology, Computer Science, or a related field. (Master's degree preferred)
- Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or similar certification preferred.
- Minimum of 4 years of experience in IT governance, risk management, and compliance roles.
- In-depth knowledge of IT governance frameworks, regulatory requirements, and best practices.
- Strong analytical and problem-solving skills with attention to detail.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
- Proficiency in risk assessment methodologies and tools.
- Experience with IT audit processes and procedures.
- Knowledge of relevant laws and regulations such as GDPR, HIPAA, SOX, etc.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISA CISM COBIT Compliance Computer Science GDPR Governance HIPAA ISO 27001 IT infrastructure NIST Risk assessment Risk management SOC SOC 2 SOX Vulnerabilities
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs