NOZOM is one of the leading consultancy firms within Saudi Arabia. We're looking to hire the best talented resources over the region to provide a unique services to a variety of clients.
Job description:
We’re looking for a Cybersecurity GRC consultant role. As an integral member of the Cyber security Advisory team, reporting to the Director, the responsibility of the GRC Consultant is to carry out the engagements related to policy compliance, security requirements governance, as well as risk management. The ideal candidate will have knowledge of risk management, security and privacy practices and be an effective communicator, both written and verbal.
Roles & Responsibilities:
- Playing a lead role in client engagements is preferred.
- Should be delivery-focused.
- Sound experience in Implementing ISMS, performing internal reviews, and drafting and enforcing policies in accordance with SAMA Cyber Security Framework, ISO 27001, and PCI-DSS.
- Sound experience in PCI-DSS, SAMA Cyber Security Framework remediation, and certification audit.
- Knowledge and understanding of Information Security related risk assessments framework such as SAMA, OCTAVE, COBIT, ISO 27005, and NIST 800-30.
- Ability to perform internal information security reviews and face external audits.
- Sound understanding and knowledge of firewall rules, security architecture, infrastructure, and application hardening.
- Thorough understanding and knowledge of current industry-accepted best practices in information security.
- Excellent communication skills and attention to detail.
- Experience in information security and application security controls
- Exposure to methodologies, such as OWASP preferred.
- Exposure to the financial Sector Is preferred.
Application URL
Source : www.bayt.com