Grc consultant - saudi arabia, riyadh

Job title: grc consultantlocation: saudi arabia (riyadh)experience: 5+ yearsjob description:we are seeking an experienced grc consultant to join our dynamic team in saudi arabia. the ideal candidate will have a strong background in governance, risk, and compliance, coupled with expertise in data governance, information management, business integrity management, and regulatory compliance. the role involves working closely with clients to assess their grc needs, develop tailored solutions, and support the implementation of grc initiatives across various domains.key responsibilities:conduct comprehensive assessments of clients' governance structures, risk management processes, and compliance frameworks, spanning areas such as data governance, business integrity management, and enterprise risk management.analyze clients' business objectives, regulatory requirements, and industry standards to develop customized grc strategies aligned with best practices and international standards.collaborate with clients to design and implement effective governance frameworks, risk management systems, compliance programs, and business process management initiatives.provide guidance on data governance, data information management, and data transformation strategies to ensure the integrity, quality, and security of organizational data assets.assist clients in managing various risks, including cyber risks, project risks, enterprise risks, and business continuity risks, through proactive risk assessment, mitigation, and monitoring measures.support clients in achieving regulatory compliance across multiple domains, including anti-money laundering (aml), general data protection regulation (gdpr), international data warehouse (idw), and other relevant regulations.facilitate incident management processes, including incident detection, response, investigation, and remediation, to mitigate the impact of security breaches, compliance violations, and other incidents.ensure adherence to iso compliance standards, such as iso 27001 (information security management) and iso 31000 (risk management), through policy development, implementation, and audit activities.conduct it audits and information security assessments to identify vulnerabilities, assess controls, and recommend remediation measures to enhance security posture and regulatory compliance.provide expert advice on policy management, including the development, review, and enforcement of policies, procedures, and guidelines related to grc, information security, and data privacy.collaborate with cross-functional teams, including it, legal, compliance, and business units, to drive grc initiatives, promote a culture of compliance, and foster continuous improvement.skillsqualifications:bachelor's degree in business administration, finance, information technology, or a related field. master's degree or professional certifications (e.g., cisa, cissp, crisc, cism, cgeit) are preferred.minimum of 5 years of experience in grc consulting, with demonstrated expertise in governance, risk management, and compliance, particularly in the saudi arabian context.strong knowledge of data governance principles, data information management practices, and data transformation strategies to support business objectives.experience in business integrity management, business process management, and integrated risk management across various domains.in-depth understanding of cyber risks, project risks, enterprise risks, and business continuity management principles and practices.familiarity with regulatory compliance requirements, including aml, gdpr, idw, and other relevant regulations impacting organizations in saudi arabia.proven track record in incident management, iso compliance, policy management, it audit, and information security management.excellent communication skills, with the ability to engage with stakeholders at all levels, present findings, and provide actionable recommendations.strong analytical and problem-solving skills, with the ability to analyze complex issues, identify root causes, and develop pragmatic solutions.fluency in arabic and english languages is required.

More jobs