Cybersecurity Governance, Risk & Compliance (GRC) Specialist
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Lead cybersecurity governance initiatives, conduct risk assessments, ensure compliance, and develop security frameworks while collaborating with clients and stakeholders.
Key Skills for This Role
Responsibilities
- Develop, implement, and maintain cybersecurity governance programs
- Conduct enterprise cybersecurity risk assessments and maintain risk registers
- Perform compliance gap assessments and support internal/external audits
- Manage third party vendor security assessments and remediation
- Deliver cybersecurity awareness workshops and provide strategic guidance
Requirements
- Experience in cybersecurity governance, risk management, and compliance
- Knowledge of cybersecurity standards and regulatory requirements
- Experience with risk assessment methodologies
- Strong communication and stakeholder management skills
Full Job Posting
Role Overview
- Seeking an experienced Cybersecurity Governance, Risk & Compliance (GRC) Specialist to lead and support cybersecurity governance initiatives, risk management programs, compliance assessments, and security framework implementation across client environments.
- The ideal candidate will possess strong knowledge of cybersecurity standards, regulatory requirements, risk assessment methodologies, and information security governance practices.
- This role will work closely with clients, technical teams, and business stakeholders to ensure cybersecurity risks are effectively managed and compliance obligations are met.
Key Responsibilities
- Develop, implement, and maintain cybersecurity governance programs.
- Establish and manage Information Security Management Systems (ISMS).
- Support implementation and maturity assessments for frameworks such as ISO 27001, NIST CSF, NIST 800 53, CIS Controls, PCI DSS, GDPR, UAE Information Assurance Standards, NIS2, and other regional regulatory requirements.
- Develop cybersecurity policies, procedures, standards, and guidelines.
- Conduct enterprise cybersecurity risk assessments.
- Perform risk identification, analysis, treatment, and reporting.
- Maintain organizational risk registers and risk treatment plans.
- Facilitate business impact assessments and control effectiveness reviews.
- Present risk findings and recommendations to management and clients.
- Conduct compliance gap assessments and readiness reviews.
- Support internal and external audits.
- Coordinate evidence collection and remediation activities.
Additional Responsibilities
- Track compliance obligations and regulatory requirements.
- Develop compliance dashboards and executive reports.
- Perform vendor security assessments.
- Review supplier compliance and security controls.
- Manage third party risk remediation activities.
- Support procurement and due diligence security reviews.
- Deliver cybersecurity awareness and governance workshops.
- Provide strategic cybersecurity guidance to clients and stakeholders.
- Assist organizations in developing security roadmaps and compliance strategies.
- Support virtual CISO (vCISO) engagements when required.
- Prepare executive level risk and compliance reports.
- Develop and track cybersecurity KPIs and KRIs.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Client of ITHR 360° CONSULTING FZE
HR Administrator
Dubai, UAE
The HR Administrator will manage employee records, support recruitment, ensure compliance with labor laws, and require strong organizational and communication skills.
Head of Sales Enterprise SaaS / AI Video Platform
Dubai, UAE
Lead global revenue growth initiatives by executing sales strategy, driving enterprise customer acquisition, and building strategic partnerships in a high-growth environment.