Grc Specialist

**Job Description**:

- Develop and enhance cyber security documents including policies, processes and such documents.
- Conduct a comprehensive risk assessment in accordance with the Risk Management Framework (ISO 27005 / NIST) to identify potential risks and propose mitigating solutions.
- Ensure that the requirements of internal policies, standards, laws, compliance and risk controls are met.
- Investigate assessments and exceptions to cyber security risks.
- Implementation of an cyber security awareness program.
- Manage cyber security programs in various areas including data classification, data privacy, change management, identity and access management based on leading practices such as NIST, PCI, ISO27K and others.
- Ability to deliver complex projects to client expectations under executed deadline.
- Work collaboratively with other cyber security experts to shape the future of our clients and bring about positive change.

Technical Skills:

- Knowledge of cyber security standards such as (PCI-DSS, ISO 27001, GDPR, NIST, etc.)
- Knowledge of cyber security risk management processes and assessment (ISO27005 / NIST).
- Knowledge of network security standards and hardening guidelines.
- Knowledge of business continuity plan and disaster recovery plan is an added advantage.
- Ability to present and communicate a security topics/risks to a non-technical audience.
- Strong understanding of IT technologies, networking and access management concepts.

Qualifications:

- Bachelor's degree in Computer and Information Science, Cyber Security Engineering or a related field.
- Years of Experience: 1-2 years of experience in the field of cyber security.
- Excellent written and verbal communication skills in English.
- Excellent in presentation and negotiation skills.
- Attention to personal details.