Position Details

The GRC Cyber Security Specialist will ensure that our organization's cyber security policies, procedures, and practices comply with regulatory requirements and industry best practices. This role will involve managing risk assessment processes, developing and implementing security policies and standards, and ensuring all stakeholders know and adhere to security protocols.

Key Responsibilities

• Conduct risk assessments to identify potential security vulnerabilities and threats.
• Develop and implement cyber security policies, procedures, and standards following regulatory requirements and industry best practices.
• Monitor compliance with security policies and procedures and recommend corrective actions as necessary.
• Collaborate with cross-functional teams to ensure that security requirements are integrated into all aspects of the organization's operations.
• Provide guidance and support to stakeholders on security-related matters.
• Stay up-to-date on emerging cybersecurity threats and trends and make recommendations for enhancing security measures.
• Conduct regular audits and assessments to evaluate the effectiveness of security controls and make recommendations for improvement.
• Coordinate with external auditors and regulatory agencies during security audits and assessments.

Key Competencies

Skills

Education & Experience

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Minimum of 3 years of experience in cyber security, with a focus on GRC.
• Strong understanding of regulatory requirements such as GDPR,SOX,CFR Part11, etc.
• Experience conducting risk assessments and developing risk management strategies.
• Knowledge of cyber security frameworks such as NIST Cybersecurity Framework, ISO 27001, etc.
• Relevant certifications such as CISSP, CISA, CRISC, etc., are highly desirable.