Job Openings Cyber Security Specialist: GRC

About the job Cyber Security Specialist: GRC

Role title: Specialist – Cyber Security GRC

Duration: 12 months

Key Accountabilities and Decision Ownership:

  • Continually review and update security policies, standards, and guidelines in response to the everchanging cyber threats in coordination with Enterprise Risk Management team
  • Monitor and drive compliance to internal and global cyber security related policies and standards

Core competencies, knowledge and experience:

  • Demonstrated ability to work effectively with 3rd party suppliers and internal stakeholders
  • Strong analytical, problem-solving, and communication skills.
  • Good communication skills and team player.
  • Proactive approach to staying ahead of potential security threats.
  • Superb report writing skills.
  • Coordinate stakeholders to deliver on targets or agreed business outcomes.
  • Coordinate periodic independent assurance of critical products and services.
  • Coordinating implementation of recommendations from independent assessments.
  • Conduct cyber risk assessments to determine cyber risk profile and define treatment plans.
  • Recommend cyber security services improvement plans.
  • Coordinate projects handover process within the cyber security functions.
  • Continually review, implementation and improvements of the user access governance process.

Must have technical / professional qualifications:

  • Degree in Electrical Engineering, Computer Science, Information Technology, or equivalent technology-related degree.
  • At least one professional Information Security Qualification:
  • CISM/CISA/CISSP/CEH.
  • At least 2+ years proven experience with Cyber Security related Standards (ISO 27001, PCI-DSS, etc.).
  • Proven experience with GDPR, Data Protection laws, guidelines on Cyber Security amongst others.
  • At least 2+ years of hands-on experience in managing Cyber Security technologies and operations.
  • Coordinate periodic cyber security knowledge transfer, awareness sessions and phishing simulations to staff in line with strategy.
  • Participate actively in cyber security events and trade shows, reporting and presentations.
  • Communications, reporting and presentations skills.
  • Implement actions to close risks, audits, and reviews (internal and external).

Or refer someone