GRC Consultant (Compliance)
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Help AG is seeking an experienced GRC Consultant to manage compliance with national cybersecurity regulations including NCA ECC and SDAIA frameworks. The role involves conducting compliance assessments, policy reviews, and developing compliance frameworks.
Key Skills for This Role
Responsibilities
- Conduct compliance assessments aligned with local (e.g., NCA, SDAIA) and international standards
- Perform gap analyses on internal controls and external regulatory requirements
- Review and update compliance related policies, procedures, and frameworks
- Promote GRC objectives to foster a compliance aware culture
- Engage stakeholders through structured interviews and validate findings collaboratively
- Establish workflows to track cybersecurity compliance, monitor compliance status, audit findings, and remediation efforts
- Facilitate the evidence collection for assessments, internal and external audits
- Develop gap analysis reports, mitigation plans, and resolution roadmaps
- Define and prioritize compliance and enhancement roadmaps based on strategic goals and budget
- Map regulatory controls to internal policies and standards for traceability and coverage
Requirements
- Currently residing in Saudi Arabia
- Minimum of 3 5 years of working experience in the KSA market in a similar capacity
- Hands on working experience in Compliance management, assessments and regulatory compliance
- Excellent working knowledge of NCA Controls Frameworks, SDAIA Regulations, SAMA CSF, CITC standards, ISO/IEC 270XX, ISO 22301, ISO/IEC 20000 1
- Hands on experience in delivery project activities related to the above
- Excellent consulting skills; strong customer and business focus
- University degree in a technical subject related to IT and/or Information Security
- Track record in implementing cybersecurity related frameworks
- Good communication and interpersonal skills
- Industry professional certifications such as CISSP, CISM, and CISA are desirable
Full Job Posting
Job Overview
- Help AG is looking for an experienced GRC Consultant who is responsible for compliance management and successful alignment with national cybersecurity regulations.
- This role involves conducting compliance assessments, policy assessments, developing compliance framework, evidence collection, reports and roadmaps.
- The Strategic Security Consultant will be expected to work independently and as part of a cross functional team.
Responsibilities
- Conduct compliance assessments aligned with local (e.g., NCA, SDAIA) and international standards.
- Perform gap analyses on internal controls and external regulatory requirements.
- Review and update compliance related policies, procedures, and frameworks.
- Promote GRC objectives to foster a compliance aware culture.
- Engage stakeholders through structured interviews and validate findings collaboratively.
- Establish workflows to track cybersecurity compliance, monitor compliance status, audit findings, and remediation efforts.
- Facilitate the evidence collection for assessments, internal and external audits etc.
- Develop gap analysis reports, mitigation plans, and resolution roadmaps.
- Define and prioritize compliance and enhancement roadmaps based on strategic goals and budget.
- Map regulatory controls to internal policies and standards for traceability and coverage.
Qualifications & Skills
- Currently residing in Saudi Arabia.
- Minimum of 3 5 years of working experience in the KSA market in a similar capacity.
- Hands on working experience in relation to Compliance management, assessments and regulatory compliance.
- Excellent working knowledge of the following: All NCA Controls Frameworks, SDAIA Regulations, SAMA CSF, and CITC standards/ regulations/ requirements, ISO/IEC 270XX, ISO 22301, ISO/IEC 20000 1
- Hands on experience in delivery project activities related to the above.
- Excellent consulting skills; strong customer and business focus.
- University degree in a technical subject related to IT and/or Information Security.
- Track record in implementing cybersecurity related frameworks.
- Good communication and interpersonal skills.
- Ability to understand complex business processes and activities.
- Flexible work approach, based on the job requirements.
- Industry professional certifications such as CISSP, CISM, and CISA are desirable.
Benefits
- Health insurance with one of the leading global providers for medical insurance.
- Career progression and growth through challenging projects and work.
- Employee engagement and wellness campaigns activities throughout the year.
- Excellent learning and development opportunities.
- Inclusive and diverse working environment.
- Flexible/Hybrid working environment.
- Open door policy.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Help AG, an e& enterprise company
Cybersecurity Specialist (Database Activity Monitoring)
Riyadh, KSA
Help AG is seeking a Cybersecurity Specialist to manage and optimize Imperva Database Activity Monitoring (DAM) for a client in Riyadh. The role involves deploying agents, tuning policies, integrating with SIEM, and ensu
Senior Infrastructure Engineer
Dubai, UAE
Help AG is seeking a Senior Infrastructure Engineer to maintain MSS infrastructure including Windows/Linux servers, switches, firewalls, and cloud environments. The role involves health management, troubleshooting, patch
Associate Cybersecurity Defense Analyst
Riyadh, KSA
Help AG is looking for a talented Associate Cybersecurity Defense Analyst to join their SOC team. The role involves monitoring security technologies and events using SIEM tools to detect and identify cybersecurity incide
Associate Cybersecurity Defense Analyst
Riyadh, KSA
Help AG is hiring an Associate Cybersecurity Defense Analyst for its SOC team. The role involves monitoring security technologies and events using SIEM tools to detect and identify cybersecurity incidents. Candidates nee
IT Support Technician
Dubai, UAE
Help AG is seeking an IT Support Technician to maintain infrastructure and support employees. The role involves endpoint support, user onboarding, and infrastructure monitoring. Requires 1+ years of IT support experience
Offensive Cybersecurity Consultant
Dubai, UAE
Help AG is hiring an Offensive Security Consultant to perform vulnerability assessments, penetration testing, red teaming, and security research. Candidates need 3-4 years of experience, OSCP/OSCE certification, and stro
Security Consultant - Integration
Abu Dhabi, UAE
Help AG seeks an experienced Security Consultant for post-sales integration and pre-sales activities. The role involves deploying security solutions, leading projects, designing architectures, and delivering proof of con
Cyber Automation Intern
Dubai, UAE
Help AG is seeking a Cyber Automation Intern to contribute to Automation & AI initiatives within the Cyber Automation Team. The intern will work on tools like FortiSOAR, Python, AI/ML models, and APIs to automate MSS ope
Cybersecurity Specialist (Database Activity Monitoring)
Riyadh, KSA
Senior Infrastructure Engineer
Dubai, UAE
Associate Cybersecurity Defense Analyst
Riyadh, KSA
Associate Cybersecurity Defense Analyst
Riyadh, KSA
IT Support Technician
Dubai, UAE
Offensive Cybersecurity Consultant
Dubai, UAE
Security Consultant - Integration
Abu Dhabi, UAE
Cyber Automation Intern
Dubai, UAE