GRC Consultant

GRC Consultant

Company: Cyber50 Defence Services

Location: Zaid City, Giza, Egypt

Employment Type: Full-time & On-Site

Position Overview

·       Level: Entry-Level 3,4 years.

·       We are seeking a motivated Governance, Risk, and Compliance (GRC) Consultant with 3–4 years of professional experience in the field of information security, compliance, and risk management. The GRC consultant will be responsible for supporting the design, implementation, and maintenance of GRC frameworks, ensuring compliance with regulatory requirements, and advising clients on risk mitigation strategies.

Key Responsibilities

·       Assist in the development, implementation, and continuous improvement of GRC frameworks, policies, and procedures.

·       Conduct risk assessments, control testing, and compliance reviews across different business processes and IT systems.

·       Support organizations in achieving compliance with standards such as ISO 27001:2022, NIST, PCI DSS, HIPAA, GDPR, and other relevant regulations.

·       Perform gap analysis and recommend remediation strategies to close compliance or security gaps.

·       Facilitate risk workshops and stakeholder meetings, documenting risks, controls, and treatment plans.

·       Prepare audit and compliance documentation and support clients during external audits and regulatory reviews.

·       Monitor emerging threats, intelligent reports, vulnerability reports, and regulatory changes, and provide recommendations for proactive risk management.

Qualifications & Requirements

·       Bachelor's degree in information security, Computer Science, IT, or a related field.

· –4 years of hands-on experience in GRC, risk management, or information security consulting.

·       Solid knowledge of information security standards, frameworks, and regulatory requirements (ISO 27001, NIST, SOC 2, GDPR, etc.).

·       Experience in risk assessments, control testing, audit readiness, and compliance projects.

·       Excellent communication and presentation skills with the ability to work with both technical and non-technical stakeholders.

·       Relevant certifications such as ITI (9 months or 3 months), ISO 27001 LA/LI, CISA, CRISC, CISM, or CGEIT are preferred.

Soft Skills

·       Strong organizational and time-management abilities.

·       Ability to work independently and in teams.

·       Client-focused with strong consulting and advisory skills.

·       Adaptability to dynamic regulatory and technology environments.

Successful story

·       At least two cybersecurity projects were delivered on time.

·       Project deliverables mapped to ISO 27001 controls/SoA, audit findings closed.

How to Apply

·       Send your CV and a brief cover letter to

·       Preferring living in Zaid City, Giza, Egypt.