ZAK SERVICES IS A LEADING SERVICE PROVIDER IN KUWAIT, LOOKING TO FILL THIS POSITION.
FULL RELOCATION COST COVERAGE WILL BE PROVIDED FOR CANDIDATES TO MOVE AND LIVE IN KUWAIT, THIS IS AN ONSITE POSITION.
ALL CERTIFICATES MENTIONED IN THE JOB POST WILL BE REQUESTED BY ZAK HR.
Working as part of the information security office within the IT department, the GRC analyst will be responsible for leading the day-to-day IT compliance, data governance, and IT risk management functions. The role will include primary responsibility for defining, creating, and managing IT and organizational policies and standards in support of legal and regulatory compliance needs as well as general IT and organizational information security practices.
GRC Analyst
Full-time
Kuwait
Salary: $9,000/Mo
Master (>10 yrs)
English
Responsibilities
- Collaborate to define IT security standards and develop supporting organizational policies.
- Perform security and compliance assessments on new and existing systems, processes, technology.
- Support vendor due-diligence process and help to lead and define overall third party risk management efforts.
- Work with various business units to ensure controls are adequate, appropriate, and effective.
- Support internal and external audit process for relevant compliance concerns including PCI-DSS, SOX, GDPR.
- Participate in disaster recovery and business continuity planning.
- Perform business impact analysis and assist with development of IT/InfoSec risk register.
- Interface with global IT and business partners to provide guidance and support. Perform periodic gap assessments to validate compliance on an ongoing basis. Stay up to date and informed on developing regulatory concerns and changing IT and information security trends.
Qualifications
- Bachelor's degree in related field or equivalent work experience.
- Minimum 3 years of work experience.
- ISACA or (ISC)2 Certification.
- ITIL (Foundation as minimum)
- Significant experience with legal and regulatory compliance standards such as PCIDSS, SOX, GDPR, HIP AA, CaCPA, etc.
- Familiarity with ISMS and security frameworks, particularly NIST Cybersecurity Framework.
- Strong understanding of fundamental information security concepts and technology.
- Experience with IT GRC/IRM platforms (Oracle, RSA Archer, MetricStream, etc.).
- Experience with IT governance, risk, and compliance management in a large global environment.
Benefits
- Bachelor's degree in related field or equivalent work experience.
- Minimum 3 years of work experience.
- ISACA or (ISC)2 Certification.
- ITIL (Foundation as minimum)
- Significant experience with legal and regulatory compliance standards such as PCIDSS, SOX, GDPR, HIP AA, CaCPA, etc.
- Familiarity with ISMS and security frameworks, particularly NIST Cybersecurity Framework.
- Strong understanding of fundamental information security concepts and technology.
- Experience with IT GRC/IRM platforms (Oracle, RSA Archer, MetricStream, etc.).
- Experience with IT governance, risk, and compliance management in a large global environment.
About the company
The smartest recruitment technology of 2024. Join a world-class team of innovators who are disrupting HR Tech field with the power of AI and creative designs.
182 Howard Street, San Francisco , 95121
San Francisco, California, United States
San Francisco, California, United States
Be vigilant about potential scams, phishing attempts, or fraudulent activities, and seek credible sources or reviews to assess the trustworthiness of the company. Remember, your personal and financial security is paramount, and taking preventive measures is crucial to safeguarding your information from potential risks and unauthorized use. SupportFinity is not responsible for any consequences that may arise from disclosing such information to unauthorized or fraudulent entities.
FT-FDF4A
Full-time
40 hrs/wk
Kuwait
On site
Master (>10 yrs)
Regular schedule
English