IT Grc Specialist

**Key Roles and Responsibilities**:
**1. Governance**:

- Develop and maintain IT governance policies, procedures, and standards in alignment with industry best practices and regulatory requirements.
- Implement governance frameworks such as COBIT, ISO 27001, NIST, SOC 2, PCI etc., to ensure effective IT governance across the organization.
- Coordinate with key stakeholders to establish IT governance committees and facilitate regular meetings to review IT policies and procedures.

**2. Risk Management**:

- Conduct risk assessments and identify potential threats and vulnerabilities within the IT infrastructure.
- Develop risk mitigation strategies and action plans to address identified risks.
- Monitor and track risk mitigation activities to ensure timely resolution and compliance with established policies and procedures.

**3. Compliance**:

- Stay current on relevant laws, regulations, and industry standards related to IT security and compliance in align with SAUDI Arabia CITC and SAMA, Egypt NTRA and Central bank, Europe.
- Conduct compliance assessments to evaluate adherence to regulatory requirements and internal policies.
- Prepare compliance reports and documentation for regulatory audits and reviews.

**4. Security Awareness**:

- Collaborate with the IT security team to develop and deliver training programs on IT governance, risk management, and compliance.
- Promote a culture of security awareness and compliance throughout the organization.

**5. Continuous Improvement**:

- Monitor industry trends and emerging technologies to identify opportunities for improving IT GRC practices.
- Proactively recommend enhancements to IT policies, procedures, and controls to strengthen the overall security posture of the organization.

**Requirements**:

- Bachelor's degree in Information Technology, Computer Science, or a related field. (Master's degree preferred)
- Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or similar certification preferred.
- Minimum of 4 years of experience in IT governance, risk management, and compliance roles.
- In-depth knowledge of IT governance frameworks, regulatory requirements, and best practices.
- Strong analytical and problem-solving skills with attention to detail.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
- Proficiency in risk assessment methodologies and tools.
- Experience with IT audit processes and procedures.
- Knowledge of relevant laws and regulations such as GDPR, HIPAA, SOX, etc.