GRC Senior Analyst/ Specialist
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
BSL is seeking a GRC Senior Analyst/Specialist to support governance, risk, and compliance frameworks aligned with national cyber regulations. The role involves managing cyber risks, ensuring compliance with Qatar Cyber Security Framework, and collaborating with government stakeholders.
Key Skills for This Role
Responsibilities
- Provide expert consultation on Governance, Risk, and Compliance (GRC) matters
- Review, assess, and enhance enterprise cybersecurity architecture
- Conduct reviews of QCSF evidence and provide compliance recommendations
- Deliver cybersecurity consultancy and practical security solutions to internal stakeholders
- Identify cybersecurity risks and recommend mitigation strategies
- Support the implementation of cybersecurity policies, standards, and best practices
- Collaborate with business and technical teams to improve cybersecurity posture
- Prepare reports, assessments, and recommendations for management
- Stay updated with emerging cybersecurity threats, technologies, and regulatory requirements
Requirements
- Bachelor's or Master's degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related discipline
- Minimum of 10 years' experience in cybersecurity, with strong expertise in Governance, Risk & Compliance (GRC), enterprise cybersecurity architecture and regulatory compliance
- CIIP (Certified Information Infrastructure Professional) certification
- CISM (Certified Information Security Manager) certification
- Strong knowledge of Governance, Risk & Compliance (GRC) frameworks
- Extensive experience with Enterprise Cybersecurity Architecture
- Thorough understanding of the Qatar Cyber Security Framework (QCSF)
- Proficiency in English & Arabic
Full Job Posting
Role Overview
- A GRC Senior Analyst / Specialist supports the governance, risk, and compliance framework to ensure alignment with national cyber regulations, security policies and government assurance standards.
- The role focuses on identifying, assessing and managing cyber and information security risks across systems and operations, while ensuring compliance with applicable regulatory frameworks, security controls and audit requirements.
- The position also works closely with security, IT, and government stakeholders to strengthen cybersecurity governance, support accreditation processes and ensure continuous compliance with national cybersecurity mandates.
Core Activities
- Provide expert consultation on Governance, Risk, and Compliance (GRC) matters.
- Review, assess, and enhance enterprise cybersecurity architecture.
- Conduct reviews of QCSF evidence and provide compliance recommendations.
- Deliver cybersecurity consultancy and practical security solutions to internal stakeholders.
- Identify cybersecurity risks and recommend mitigation strategies.
- Support the implementation of cybersecurity policies, standards, and best practices.
- Collaborate with business and technical teams to improve cybersecurity posture.
- Prepare reports, assessments, and recommendations for management.
- Stay updated with emerging cybersecurity threats, technologies, and regulatory requirements.
Key Responsibilities
- Act as a subject matter expert for cybersecurity governance, risk, and compliance.
- Review and improve enterprise cybersecurity architecture to ensure alignment with business and security objectives.
- Evaluate compliance against the Qatar Cyber Security Framework (QCSF) and recommend corrective actions.
- Provide strategic cybersecurity guidance to stakeholders across the organisation.
- Develop and recommend cybersecurity controls and solutions based on risk assessments.
- Support cybersecurity audits, assessments, and compliance activities.
- Ensure cybersecurity initiatives align with organisational policies and industry standards.
- Produce high quality documentation, reports, and technical recommendations.
- Mentor stakeholders on cybersecurity best practices where required.
Requirements
- Education: Bachelor's or Master's degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related discipline.
- Experience: Minimum of 10 years' experience in cybersecurity, with strong expertise in Governance, Risk & Compliance (GRC), enterprise cybersecurity architecture and regulatory compliance.
- Mandatory Certifications: CIIP (Certified Information Infrastructure Professional), CISM (Certified Information Security Manager).
- Preferred Certifications: GICSP (Global Industrial Cyber Security Professional), CCISO (Certified Chief Information Security Officer).
- Skills & Competencies: Strong knowledge of GRC frameworks, extensive experience with Enterprise Cybersecurity Architecture, thorough understanding of QCSF, strong consulting and advisory skills, excellent analytical and problem solving abilities, ability to assess risks and recommend effective secur
- Language Proficiency: Proficiency in English & Arabic is required.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at BSL
Technical Project Manager (ICT Network)
Doha, QAT
BSL seeks an experienced Technical Project Manager (ICT Network) to lead complex ICT and network infrastructure projects in Doha. The role manages planning, design, implementation, and delivery, coordinating multidiscipl
Technical Project Manager (Cybersecruity)
Doha, QAT
BSL seeks an experienced Technical Project Manager (Cybersecurity) to lead enterprise cybersecurity initiatives in Doha. The role manages complex projects, coordinates cross-functional teams, and ensures implementation o
Exams & Assessments Lead
Doha, QAT
The Examinations and Assessment Lead is responsible for managing the Examinations and Assessment team at a Technical Institute in Doha. The role ensures compliant delivery of examinations and assessments, manages student
Typhoon Avionics Operator
Umm Salal Muhammad, QAT
BSL is seeking an experienced Typhoon Avionics Operator to perform base maintenance activities on Typhoon aircraft in Qatar. The role involves detailed maintenance, inspection, fault rectification, and documentation of a
Armaments & AGE Team Lead
Dukhan, QAT
BSL seeks an Armaments & AGE Team Lead to oversee off-aircraft maintenance in Dukhan, Qatar. The role involves leading production, planning maintenance events, and ensuring quality standards. Requires an engineering appr
Senior Data Protection & Privacy Specialist
Doha, QAT
BSL seeks an experienced Senior Data Protection & Privacy Specialist to manage day-to-day privacy operations, conduct risk assessments, and ensure compliance with data protection regulations. The role requires a Bachelor
Senior Information Security / Senior Cyber Security Assessor (Certification)
Doha, QAT
BSL seeks a Senior Information Security/Cyber Security Assessor to lead certification and compliance assessment activities in Doha. The role requires 7+ years of experience, CISSP/CISA/CISM/CRISC certifications, and expe
Training Delivery Specialist
Doha, QAT
BSL is seeking a Training Delivery Specialist to design and deliver training programs, conduct Training Needs Analyses, and ensure quality standards. The role requires experience in instructional design, adult learning m
Technical Project Manager (ICT Network)
Doha, QAT
Technical Project Manager (Cybersecruity)
Doha, QAT
Exams & Assessments Lead
Doha, QAT
Typhoon Avionics Operator
Umm Salal Muhammad, QAT
Armaments & AGE Team Lead
Dukhan, QAT
Senior Data Protection & Privacy Specialist
Doha, QAT
Senior Information Security / Senior Cyber Security Assessor (Certification)
Doha, QAT
Training Delivery Specialist
Doha, QAT