ecurity Consultant

1 week ago

Cairo, Cairo, Egypt CareersTech Full time

Job Overview:

We are seeking a highly skilled
Governance, Risk, and Compliance (GRC) Consultant
with a strong background in cybersecurity governance and regulatory compliance across multiple jurisdictions. The ideal candidate will have at least
5 years of experience
in managing enterprise-wide GRC frameworks, regulatory alignment, and security governance programs for multinational organizations operating across
EU, NAM, and LATAM
.

Key Responsibilities:

  • Develop, implement, and enhance GRC frameworks, policies, and controls aligned with global standards.
  • Advise on compliance and regulatory requirements across EU, NAM & LATAM jurisdictions.
  • Support and oversee cybersecurity domains including:
  • Security Operations Centre, Cyber Incident Response, and Digital Forensics
  • OT Monitoring and Vulnerability Management
  • End-User Security Governance
  • Cloud and Network Security Governance
  • Risk and Compliance Oversight
  • Data Protection Governance (including GDPR alignment)
  • Security Awareness and Training Programs
  • Identity and Access Governance
  • Security Engineering and Architecture Alignment
  • Application Security Governance
  • Third-Party Risk Management
  • Conduct risk assessments, audits, and compliance reviews.
  • Collaborate with cross-functional teams to ensure integration of GRC processes across business and IT.
  • Monitor emerging laws, regulations, and frameworks impacting cybersecurity and data protection.
  • Prepare management reports and recommendations for continuous improvement.

Job Requirements:

  • Bachelor's degree in information security
    or a related discipline (master's preferred).
  • 5+ years of experience
    in GRC, cybersecurity governance, or risk management roles.
  • Proven knowledge of
    global regulatory frameworks
    (EU, NAM, LATAM).
  • Familiarity with standards and frameworks such as
    ISO 27001, NIST, COBIT, SOX, and GDPR
    .
  • Strong understanding of cybersecurity domains including SOC, cloud, identity, and application security.
  • Excellent analytical, communication, and stakeholder management skills.
  • Certifications such as
    CISA, CRISC, CISSP, ISO 27001 Lead Implementer
    , or equivalent are an advantage.