GRC / Cyber Security Specialist

Join us in building the region’s #1 digital lender for SMEs, committed to Islamic Banking principles. We are on a mission to re-invent finance in the Middle East and deliver secure, compliant, and trusted digital financing solutions to underserved SMEs. We are looking for an experienced GRC / Cyber Security Specialist to design, implement, and maintain our end-to-end cyber security framework across KSA & UAE. Your role will focus on developing cyber cybersecurity strategy, policy, governance processes, and ensuring ongoing readiness with regulatory expectations.Primary responsibility will be to develop and maintain the Company’s:1.cybersecurity strategy;2. cybersecurity policy;3. cybersecurity architecture; and4. cybersecurity risk management process. Other key responsibilities include:• Continuous review of the processes and standards, test implementation as per requirements and ensure cyber security readiness and awareness across the Company. • Developing and maintaining cyber security strategy, policy and architecture. • Develop and implement cyber security risk management process and conducting cyber security risk assessments.• Ensuring that detailed security standards and procedures are established, approved and implemented. • Delivering risk-based cyber security solutions that address people, process and technology. • Developing the cyber security staff to deliver cyber security solutions in a business context. • Managing day to day cyber security activities across the Company, including:• monitoring of the cyber security activities (SOC monitoring)• monitoring of compliance with cyber security regulations, policies, standards and procedures• managing, overseeing and investigation of cyber security incidents• gathering and analyzing threat intelligence from internal and external sources• performing cybersecurity reviews• Proactively supporting other functions on cyber security, including:• performing information and system classifications• determining cybersecurity requirements for important projects• performing cybersecurity reviews• Defining and conducting the cyber security awareness programs• Measuring and reporting the KRIs and KPIs on cyber security strategy, policy compliance, standards and procedures• Develop and implement cyber security programs (e.g., awareness program, data classification program, key cyber security improvements) Apply tot his job