- 경험
- 2–4 yrs
- 샐러리
- —
- 채용 공고
- 1
- 게시됨
- 3시간 전
- Work mode
- 사무실에서
- 교육
- Bachelor’s degree in Computer Science, Information Security, or related field
- Eligibility
- Professionals with 2–4 years of experience in cybersecurity governance, risk, and compliance, a bachelor’s degree in a relevant field, and familiarity with UAE information security regulations can apply. Candidates with certifications or exposure to privacy, financial services, or government-sector…
- Resume
- Required to apply
Where you'll work
직무 설명
About the Role
This opportunity is for a Cyber GRC Analyst based in the United Arab Emirates. The position focuses on strengthening the organisation’s information security and compliance framework so it aligns with both local and global standards. You will partner with multiple stakeholders to build, monitor, and improve governance, risk, and compliance processes using established tools and industry practices.
Key Responsibilities
- Run periodic risk reviews and identify control gaps across ISO 27001, NIST CSF, NCA ECC, and SAMA CSF requirements.
- Create, revise, and maintain security policies, procedures, and control mapping documents.
- Set up, administer, and improve GRC systems such as ServiceNow, OneTrust, and Archer.
- Assist with both internal and external audits, as well as regulatory reviews and inspections.
- Monitor compliance indicators and report progress on remediation actions related to identified risks.
- Work with IT, legal, and business teams to resolve compliance concerns and close audit findings.
- Keep up to date with UAE information security regulations and market developments, and recommend updates where needed.
Required Qualifications
- Between 2 and 4 years of experience in Cybersecurity GRC or a closely related function.
- Practical experience working with ISO 27001, NIST CSF, NCA ECC, and SAMA CSF.
- Ability to configure and use ServiceNow GRC, OneTrust, and Archer effectively.
- A bachelor’s degree in Computer Science, Information Security, or a similar discipline.
- Strong skills in analysis, communication, and problem-solving.
- Capability to work on your own while also coordinating with cross-functional teams.
- Good understanding of the UAE regulatory environment for information security.
Preferred Profile
- Professional credentials such as CISA, CISSP, CRISC, or ISO 27001 Lead Implementer are an advantage.
- Exposure to data privacy requirements and frameworks such as PDPL or GDPR is desirable.
- Experience supporting GRC needs in financial services or government settings is a plus.
- Familiarity with additional GRC systems or automation solutions is beneficial.
- Strong report drafting and presentation abilities are preferred.
Additional Information
This is a full-time, onsite role in the United Arab Emirates. The role is intended for a professional with hands-on cybersecurity governance, risk, and compliance experience. No salary, benefits, joining date, application deadline, or number of openings were specified in the source.