Senior Cyber Grc Manager

5 months ago


مصر, Egypt Careem Full time

Cairo, Egypt

Careem is building the Everything App for the greater Middle East, making it easier than ever to move around, order food and groceries, manage payments, and more. Careem is led by a powerful purpose to simplify and improve the lives of people and build an awesome organisation that inspires. Since 2012, Careem has created earnings for over 2.5 million Captains, simplified the lives of over 50 million customers, and built a platform for the region’s best talent to thrive and for entrepreneurs to scale their businesses. Careem operates in over 70 cities across 10 countries, from Morocco to Pakistan.

Careem is looking for a Senior GRC Manager who will work with the Engineering and other technical teams and business stakeholders across the global organization to execute the Information Security, Governance, Risk, and Compliance strategy, extending processes as necessary to help business partners identify information security risks and manage risks to an acceptable level.

**Roles and Responsibilities**:

- Support the influence and socialization of Information Security controls, standards, policies, procedures, and communications across the organization.
- Define and support the development of Information Security strategy within Careem.
- Drive the implementation of overall Information Security and GRC strategy.
- Communicate Information Security requirements to leadership to gather support and sponsorship for information security projects.
- Lead a team of experienced GRC Analysts and support their activities and professional development.
- Lead and support wider teams in defining plans for programs and projects and become a quality gate for all deliverables within the GRC department.
- Collaborate with DevOps and DevSecOps teams: Foster collaboration and understanding between GRC and DevOps teams, promoting a "security as code" mentality throughout the software development lifecycle (SDLC), embed GRC controls within the DevOps pipeline, automating compliance checks and risk assessments.
- Be a Cloud Security Champion: Deep dive into cloud security best practices and ensure cloud deployments adhere to strict security standards and compliance regulations, including IAM, Encryption and Key Management, Logging and Monitoring, and attack surface management.
- Support and Lead External Audit Activities: Prepare for and actively participate in external audits, ensuring all necessary documentation and evidence is readily available.
- Support external due diligence by collecting and archiving the needed security artifacts.
- Lead and work with the GRC analysts and advise process owners globally on Information Security controls needed for the mitigation of risks in accordance with the Information Security Process, Risk & Controls framework, and compliance with regulatory requirements and industry standards as appropriate.
- Act as a guiding force in brainstorming sessions with GRC analysts and support teams in making key program decisions.
- Reviewing and aligning deliverables from GRC analysts to ensure that they are aligned with management expectations.
- Ensure adequate information security contractual protections are included in third party vendor contracts by working with the Procurement, Compliance and the Legal teams.
- Support the coordination of Information Security awareness and training efforts across the global business units and subsidiaries.

**Skills Required**:

- A degree in Computer Science, Computer Engineering or Electrical Engineering or obtained relevant security certifications.
- Certification preferred e.g., CISSP, CISM, CISA, CCSP, AWS Security Speciality.
- 10+ years of experience in Information Security Governance, Risk and Compliance.
- 5+ years of experience in managing multiple security-related projects simultaneously.
- Excellent understanding of regulatory and industry standards, including NIST Cybersecurity Framework (CSF), Payment Card Industry Data Security Standard (PCI DSS), ISO27001 framework and Cloud Security Alliance CSM.
- Proven experience in Security Management, Audit, Governance & Risk Management.
- Excellent understanding of Information Security risk registers to ensure that all Information Security risks are accurately represented and actively managed.
- Solid knowledge of cloud security principles and their implementation, especially on AWS.
- Good understanding of virtualization, containerization, and SDN.
- Solid knowledge of SDLC, CI/CD, and DevSecOps and how GRC can be integrated at every phase.
- Ability to lead and perform third-party risk assessments and manage the risk resulting from the supply chain.
- Proven understanding of how to create comprehensive and various levels of Information Security metrics and reporting (reporting and slide decks) for leadership.
- Experience in creating detailed Information Security policies and standards.
- Experience in working with multiple stakeholders in a variety of functions at multiple levels, including exe


  • Senior Grc Consultant

    5 months ago


    مصر, Egypt Cyber Force Full time

    **Job Code**: [T24-003-GRC-Senior] **Job Type**: Hybrid (Office and Remote) **Location**: HQ, Cairo, Egypt Cyber Force, an established Managed Security Service Provider (MSSP) and Managed Detection and Response (MDR) provider, is on the lookout for an adept Senior GRC Consultant. This role is pivotal for steering our global clientele through the intricate...


  • مصر, Egypt Cyber Force Full time

    **Job Code**: [T24-002-GRC-Mid] **Job Type**: Hybrid (Office and Remote) **Location**: HQ, Cairo, Egypt Cyber Force, a leading Managed Security Service Provider (MSSP) and Managed Detection and Response (MDR) provider, is seeking a proactive and knowledgeable Mid-Level Cybersecurity Governance, Risk, and Compliance (GRC) Analyst. In this pivotal role,...


  • مصر, Egypt Cyber Force Full time

    **Job Code**: [T24-005-CDO-Senior] **Job Type**: Hybrid (Office and Remote) **Location**: HQ, Cairo, Egypt Cyber Force, a leader in Managed Security Service Provision (MSSP), is in search of a Senior Cyber Defense Operations Consultant to architect and enhance our Cybersecurity Operations Center (CSOC) activities. This pivotal role focuses on refining SOC...

  • Grc Senior Consultant

    5 months ago


    مصر, Egypt MigrationIT Full time

    **Job Information**: Industry - IT ServicesSalary - 40000Field - Security & GRCField / Area - GRCJob Category - Security Consultant GRCWork Experience - 4-5 yearsCity - CairoState/Province - AI QahirahCountry - EgyptZip/Postal Code - 11311- This is a full-time role Based in Egypt office for a GRC (Governance, Risk, and - Compliance) / Senior Consultant.- The...


  • مصر, Egypt AXA Egypt Full time

    Implements security controls, risk assessment framework, and program that align to regulations requirements, ensuring documented and sustainable compliance that aligns with AXA Group Security Standards. - Manage the cyber and information security risk management lifecycle, including gaining assurance of all existing and relevant cyber and information...


  • مصر, Egypt RSA Full time

    **RSA - Senior Manager, **GRC & Customer Assurance** RSA provides trusted identity and access management for 12,000 organizations around the world, managing 25 million enterprise identities and providing secure, convenient access to millions of users. RSA specializes in empowering security-first organizations in financial services, healthcare, energy,...


  • مصر, Egypt Cyber Force Full time

    **Job Code**: [T24-007-EMT-Senior] **Job Type**: Hybrid (Office and Remote) **Location**: HQ, Cairo, Egypt Cyber Force, a leading Managed Security Service Provider (MSSP), is seeking an experienced Senior Exposure Management Consultant to spearhead our exposure management programs for high-profile clients, including regional banks and ISPs across Europe....


  • مصر, Egypt Cyber Force Full time

    **Job Code**: [T24-004-CDO-Mid] **Job Type**: Hybrid (Office and Remote) **Location**: HQ, Cairo, Egypt Cyber Force, a pioneering Managed Security Service Provider (MSSP), is seeking a Mid-Level Cyber Defense Operations Specialist to join our dynamic Cybersecurity Operations Center (CSOC) team. This role is crucial for deploying and managing a broad array...


  • مصر, Egypt Vodafone Full time

    **Role Purpose**: - Governance, Risk and compliance of Cyber Security initiatives across Vodafone Egypt environments. - Manage related Identity and Access Management streams and activities. - Regular reviews and updates Cyber Security policies and procedures across business entities - Technical implementation of identity and access management related...

  • Grc Specialist

    6 months ago


    مصر, Egypt ITS Information Technology Solutions Full time

    **Job Title: GRC Specialist** **Company Overview**: ITS Information Technology Solutions is a leading provider of innovative IT solutions and services in Giza, Egypt. We specialize in delivering cutting-edge technology solutions to businesses of all sizes, helping them to stay ahead in today's fast-paced digital world. **Job Overview**: We are seeking a...


  • مصر, Egypt Interact Technology Solutions Full time

    Job Description: - Implementing complicated Network Security and Cyber Security solutions from different vendors. - Planning, coordinating and distributing tasks, priorities and approaches to team members and stakeholders. - Technical support for escalations of customers to achieve their SLAs. - Troubleshoot Network and Cyber security systems issues -...


  • مصر, Egypt Advansys Full time

    Manage end-to-end delivery of complex cyber security infrastructure projects for high-profile clients, ensuring successful execution within budget, timeline, and quality standards. - Collaborate closely with stakeholders, including clients, internal teams, and third-party vendors, to gather requirements, define project scope, and develop detailed project...


  • مصر, Egypt Vodafone Full time

    **What you’ll do**: Role Purporse: - Manage all related cyber security compliance programs - Manage cyber security related risk - Responsible for the implementation and effectiveness of Cyber Prevent Controls. - Identify risk triggers, and corresponding risk responses strategy. - Governance of all inherited cyber security programs and work streams (i.e.:...


  • مصر, Egypt Cyber Force Full time

    **Job Code**: A24-001-JOA **Location**: Cyber Force HQ, Cairo, Egypt **Job Type**: Full-time **Responsibilities**: - Assist with the day-to-day operations of the office, including file management, answering phones, and greeting visitors. - Manage office supplies inventory and place orders as necessary. - Support senior administrative staff with scheduling...


  • مصر, Egypt Cyber Force Full time

    **Job Code**: [O23-001] **Location**: Remote **Job Type**: Full-time or Part-time [20 hrs per week] Cyber Force is a Managed Security Service Provider and Managed Detection and Response provider. We are committed to providing our clients with the highest level of security and protection. We are looking for experienced Angular developers to join our team...


  • مصر, Egypt Cyber Force Full time

    **Job Code**: A24-002-ACC **Location**: Cyber Force HQ, Cairo, Egypt **Job Type**: Full-time Cyber Force is looking for an Accountant / Bookkeeper who will be responsible for managing the financial bookkeeping of our company. This individual will handle all financial transactions, keep accurate records, and ensure our financial records, including invoices,...

  • Head of Cyber Security

    5 months ago


    مصر, Egypt اورنچ مصر Full time

    About the job Head of Cyber Security **Purpose of the job** - Setting the Security governance policy according to local regulations in compliance with the security Group requirements & Group security Standards. - Developing strategy & evolving Security Architecture to support business needs. - Leading Cyber Security professionals, consultants & managers,...

  • Head of Cyber Security

    5 months ago


    مصر, Egypt Orange Full time

    **Purpose of the job** - Setting the Security governance policy according to local regulations in compliance with the security Group requirements & Group security Standards. - Developing strategy & evolving Security Architecture to support business needs. - Leading Cyber Security professionals, consultants & managers, with a high level of expertise, in...


  • مصر, Egypt Cyber Force Full time

    **Job Code**: [T24-006-EMT-Mid] **Job Type**: Hybrid (Office and Remote) **Location**: HQ, Cairo, Egypt Cyber Force is seeking a dynamic Mid-Level Exposure Management Specialist to join our team. This role is critical for managing and mitigating cybersecurity risks through Penetration Testing, Vulnerability Management, and assessment of benchmarks such as...


  • مصر, Egypt Careem Full time

    Cairo, Egypt Careem is building the Everything App for the greater Middle East, making it easier than ever to move around, order food and groceries, manage payments, and more. Careem is led by a powerful purpose to simplify and improve the lives of people and build an awesome organisation that inspires. Since 2012, Careem has created earnings for over 2.5...