Cyber Security Governance Consultant

Description:

Seeking an experienced Cyber Security GRC Consultant to manage Governance, Risk, and Compliance (GRC) initiatives, third-party risk management, and regulatory compliance.

Key Responsibilities:
GRC & Compliance: Implement and maintain frameworks (ISO 27001, SAMA, NCA), conduct risk assessments, and ensure regulatory compliance.
Third-Party Risk Management (TPRM): Assess and monitor vendor risks, enforce due diligence, and develop mitigation strategies.
Cyber & IT Risk Management: Identify, analyze, and mitigate cybersecurity risks, ensuring proactive defense.
Documentation & Reporting: Maintain policies, risk assessments, and compliance reports for stakeholders.
Training & Awareness: Conduct security training for teams and third-party partners.

Qualifications:
Bachelor’s in Cybersecurity, IT, or related field.
10+ years of experience in GRC, Cyber security Risk, or Compliance.
Strong knowledge of ISO 27001, SAMA, NCA, TPRM.
Certifications: CISA, CISSP, CRISC, or ISO 27001 Lead Implementer (preferred).