Closed or Expired Job Posting This job posting is closed or has expired and is no longer open for applications.
Upload
Job Description
Transguard Group was established in 2001 and has diversified significantly, we lead in the fields of Cash Services, Security Services, Manpower Services, Facilities Management & Aviation. Transguard Group is the UAE’s most trusted business support and outsourcing provider and has a large, dynamic and culturally diverse workforce with 50,000 employees! We are currently recruiting for a Specialist-Governance, Risk, and Compliance to join our team at Transguard Group. The candidate is to be based out of UAE.
Scope
The IT GRC (Governance, Risk, and Compliance) Specialist is responsible for ensuring that TRANSGUARD's IT operations are aligned with its overall business goals, comply with regulatory requirements, and effectively manage risk. The following are some of the typical roles and responsibilities of an IT GRC Specialist:
Job Responsibility-
1. Develop and implement IT governance policies and procedures in accordance with ISO 27001, PCI-DSS, EU GDPR, and other best practices.
2. Collaborate with other IT and business units to establish and maintain a comprehensive IT risk management framework, including risk assessments, risk monitoring, and risk mitigation strategies.
3. Perform regular audits of IT systems, processes, and controls across all business units to identify potential risks and gaps in compliance.
4. Conduct risk assessments and develop mitigation plans for potential IT security breaches and other incidents that could affect the confidentiality, integrity, and availability of sensitive data.
5. Maintain up-to-date knowledge of regulatory requirements, standards, and guidelines related to IT governance, risk management, and compliance, and ensure that the organization is compliant with all applicable regulations.
6. Develop and maintain strong relationships with internal and external stakeholders, including IT and business units, auditors, regulators, and other industry experts.
7. Act as a subject matter expert on IT governance, risk management, and compliance issues, and provide guidance and advice to IT teams and other stakeholders.
8. Develop and deliver training and awareness programs on IT governance, risk management, and compliance topics to ensure that all employees understand their roles and responsibilities.
9. Ensure that all IT-related incidents and risks are appropriately documented, tracked, and reported, and work with relevant teams to implement corrective actions.
10. Manage and oversee third-party service providers and vendors to ensure compliance with all relevant regulations and standards.
11. Collaborate with IT teams and business units to develop and maintain disaster recovery and IT business continuity plans to ensure that critical IT systems and data can be recovered in the event of a disruption.
12. Conduct business Impact analysis (BIA) and data privacy impact analysis (DPIA) regularly.
13. Continuously monitor and evaluate the effectiveness of IT governance, risk management, and compliance programs, and recommend changes or improvements as needed.
Skills
Skills – Technical
- Reporting Skills
- Information Security and IT – Governance, Risk Management and Compliance Management
- Information security standards and best practices (ISO 27001
- ADSIC, NIST, SANS, ISO 31000, OCTAVE, SABSA, NESA, DUBAI ISR,
- PCI DSS, etc.)
- Implementation and auditing of ISO 27001:2013, 22301:2012 and ISO 20000:2011
- Information security policies, procedures, processes
- Data classification and Data Governance
- Information security awareness program management
Skills- Hard
- Competent English speaking and writing level
- Computer literate
- Logical thinker
Skills- Soft
- Communication, interpersonal, work Ethic
- Teamwork, Problem Solving, good vision, self-discipline.
- Flexibility, Adaptability
Extra Pre-Requisites
- Proven work experience as ISO 27001 lead auditor and implementer
- Solid ability to perform risk assessment
- Hands on experience with various technology, including application development tools.
- Excellent communication and interpersonal skills
- Excellent writing skills
- Strong decision-making skills