Submitting more applications increases your chances of landing a job.

Here’s how busy the average job seeker was last month:

Opportunities viewed

Applications submitted

Keep exploring and applying to maximize your chances!

Looking for employers with a proven track record of hiring women?

Click here to explore opportunities now!
We Value Your Feedback

You are invited to participate in a survey designed to help researchers understand how best to match workers to the types of jobs they are searching for

Would You Be Likely to Participate?

If selected, we will contact you via email with further instructions and details about your participation.

You will receive a $7 payout for answering the survey.


User unblocked successfully
Thank you. Your report has been submitted and will be reviewed shortly.
https://bayt.page.link/c7PdCGqRuJyVy1TN9
Back to the job results

Specialist- Information Security GRC

8 days ago 2026/11/04 ·Application closes in 111 days
500 Employees or more · Other Business Support Services
Create a job alert for similar positions
Job alert turned off. You won’t receive updates for this search anymore.

Job description

MAIN OBJECTIVE OF ROLE
To support the organization’s cybersecurity governance, risk management, and compliance activities by coordinating and executing Governance, Risk, and Compliance (GRC) processes to ensure alignment with regulatory requirements, industry standards, and internal policies, ultimately strengthening the organization's security posture.
KEY RESPONSIBILITIES
  • Develops, implements, and maintains information security governance frameworks, policies, and procedures.
  • Conducts risk assessments and facilitate risk management activities, including identification, evaluation, and mitigation of security risks.
  • Supports compliance efforts with relevant regulations and standards such as DESC ISR, ISO 27001, NIST, GDPR, PCI-DSS, and others.
  • Manages and coordinates internal and external audits related to information security and compliance.
  • Maintains the organization's risk register and track remediation plans to closure.
  • Collaborates with IT, legal, and business units to embed GRC best practices across the organization.
  • Prepares and presents risk and compliance reports for senior management and key stakeholders.
  • Facilitates training and awareness programs to promote understanding of information security policies and compliance requirements.
  • Supports the assessment, monitoring, and mitigation of vendor and third-party risks to ensure compliance with organizational policies and regulatory requirements.
  • Monitors emerging regulations, standards, and industry trends related to cybersecurity governance and compliance.
  • Coordinates and documents business impact assessments (BIAs) and support the development of security risk treatment plans.
  • Participates in the design and implementation of security metrics and KPIs to measure compliance and control effectiveness.
  • Assists in the evaluation and implementation of GRC tools and automation solutions.

QUALIFICATIONS
  • Bachelor's Degree (3+ years)
  • Bachelor’s degree in Information Security, Cybersecurity, Information Technology, or a related field.
  • Fluent in English
  • Minimum of 7 years experience in information security governance, risk management, and compliance, preferably in regulated industries such as aviation or banking. Proven skills in risk assessments, audit support, policy implementation, and hands-on third-party risk management. Familiarity with standards such as DESC ISR, ISO 27001, NIST, and GDPR is essential.
  • Years with qualifications: 7 - 9 years
  • Relevant certifications preferred (e.g., CISM, CRISC, CISA, CISSP).

COMPETENCIES
  • Customer Focus
  • Teamwork
  • Effective Communication
  • Personal Accountability & Commitment to achieve
  • Resilience & Flexibility (Can do attitude)

ISR REQUIREMENTS
Reads and complies with the ISR policies of the Company and diligently reports any weakness or incidents to the respective Line Manager or the Information Security team. Completes all required ISR awareness sessions and follows associated guidelines in the day-to-day business operations.
This job post has been translated by AI and may contain minor differences or errors.
You’ve reached the maximum limit of 15 job alerts. To create a new alert, please delete an existing one first.
Job alert created for this search. You’ll receive updates when new jobs match.
Are you sure you want to unapply?

You'll no longer be considered for this role and your application will be removed from the employer's inbox.