Cybersecurity Risk & Compliance / GRC Manager
TAWANTECH
نشرت في 12 مارس
أرسل لي وظائف مثل هذه
الجنسية
أي جنسية
جنس
غير مذكور
عدد الشواغر
1 عدد الشواغر
الوصف الوظيفي
الأدوار والمسؤوليات
Responsibilities
- Identify, assess, and manage cybersecurity risks to protect information and technology assets in line with policies, laws, and regulations.
- Review, update, and develop the Third-Party Risk Management Framework to monitor and mitigate vendor-related cyber risks.
- Perform vulnerability assessments of systems and networks, identifying deviations from acceptable configurations or policies, and measure defense-in-depth effectiveness.
- Evaluate, design, implement, fine-tune, and enhance business continuity for digital services with complex interdependencies.
- Calculate, fine-tune, and align Business Impact Assessment (BIA) outputs, including Priority Tiers, RPOs, and RTOs.
- Develop and track risk treatment and mitigation plans.
- Analyze cybersecurity controls and assess effectiveness.
- Oversee vulnerability scans and implement cybersecurity technical controls.
- Monitor and test Security Operations Center (SOC) and incident response plans.
- Maintain cybersecurity aspects of the business continuity plan while tracking risk-related metrics.
- Perform security control assessments for compliance with company policies, ISO 27001, NIST, NCA, and regulatory requirements.
- Review and validate security configurations for critical systems (Active Directory, firewalls, servers, network devices).
- Evaluate and provide actionable recommendations to enhance system security configurations across on-premises and cloud platforms.
- Assess and improve the quality of security documentation, ensuring periodic technical assessments comply with governance requirements.
- Review technical and administrative security controls to identify gaps and recommend remediation measures.
- Collaborate with IT, compliance, and risk management teams to enhance security practices.
- Assist in preparing management and audit reports and presentations.
- Perform comprehensive assessments, configuration reviews, and documentation assessments to strengthen the organization s security posture.
- Configure and manage vulnerability assessment tools and perform technical assessments across systems including Active Directory, firewalls, databases, and cloud platforms.
الملف الشخصي المطلوب للمرشحين
Technical Requirements
- Bachelor s degree in Cybersecurity, Information Technology, or a related field.
- Minimum of 10 years of experience in cybersecurity risk management, technical controls, or incident response.
- Certifications such as:
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- Certified Information Security Manager (CISM)
- GIAC Security Essentials (GSEC)
- Certified Cloud Security Professional (CCSP)
- Strong technical expertise in:
- Vulnerability management
- SOC operations
- Incident response
القطاع المهني للشركة
- تكنولوجيا المعلومات - خدمات البرمجيات
المجال الوظيفي / القسم
- سوفت وير تقنية المعلومات
الكلمات الرئيسية
- Cybersecurity Risk & Compliance / GRC Manager
تنويه: نوكري غلف هو مجرد منصة لجمع الباحثين عن عمل وأصحاب العمل معا. وينصح المتقدمون بالبحث في حسن نية صاحب العمل المحتمل بشكل مستقل. نحن لا نؤيد أي طلبات لدفع الأموال وننصح بشدة ضد تبادل المعلومات الشخصية أو المصرفية ذات الصلة. نوصي أيضا زيارة نصائح أمنية للمزيد من المعلومات. إذا كنت تشك في أي احتيال أو سوء تصرف ، راسلنا عبر البريد الإلكتروني abuse@naukrigulf.com
وظائف مماثلة
Information Security Officer
INTALEQ
- 8 - 15 سنوات
- Doha - Qatar
Cyber Security Manager
Confidential Company
- 8 - 15 سنوات
- Umm Al Qaiwain - United Arab Emirates (UAE)
Head of Information & Cybersecurity
Innovo Build LLC
- 10 - 15 سنوات
- Dubai - United Arab Emirates (UAE)
رئيس البنية التحتية والأمن السيبراني
Nazih Trading Company LLC
- 4 - 6 سنوات
- الشارقة - الإمارات العربية المتحدة
أخصائي أمن المعلومات
Dicetek LLC
- 7 - 14 سنوات
- دبي - الإمارات العربية المتحدة