Our client is a very reputed and growing name in the Cyber Security-System Integration business domain in the global market operation its presence across UAE, Qatar, Singapore and India region who is looking for a GRC Manager in Dubai, UAE.  To expedite send your resume at [email protected]

Main Duties and Responsibilities

• Owns and drives implementation of a fit for purpose cyber security policy & cyber governance framework aligned with industry best practice. Own the liaison of Technology to align with STC cyber security
• Develop, implement and monitor reporting mechanisms for governance, security and risk practices to support compliance and highlight areas of exposure
• Review identified security risks and breaches to ensure the organization’s assets and information are appropriately secured at all times Monitor and review compliance with risk management strategies and practices to ensure Technology-related activities are meeting minimum standards Collaborate with broadcast network & other teams to implement and operate security policies and procedures
• Provides, on an as-needed basis, 4th level escalation for network outages and application troubleshooting
• Ensure “exception” and “security change” management is in place for violations/deviations of policy
• Own 3rd party cybersecurity governance to oversee 3rd parties’ compliance
• Own Business & End-user cyber security and risk awareness across the organization
• Oversee Customer’s cyber security risk posture and proactively drives remediation.
• Own a cyber security risk dashboard.
• Drive industry best practice research for cybersecurity risk in alignment with other risk functions in the organization such as e.g. group safety and internal audit.
• Owns the transformation program towards a risk culture, security & privacy by design, to support agile development and risk-based cybersecurity governance.
• Responsible for driving the organization cross functional cybersecurity strategy, risk based, catering for the different risk appetite across our businesses.

Technical Knowledge

• Good knowledge of various security standards like ISO 27001 and 27002 & implementation
• Technology audit risks, security risk assessment, assessing Technology risk, designing Technology controls, business process controls, general process controls
• Hands on experience in other IT/Cybersecurity & Risk Governance
• 6+ years of experience of which at least 3 years should be in IT risk / cyber security, within a dynamic operational environment. Able to achieve the desired level of risk appetite implemented by IT, and an improvement in the overall cyber security