وظائف محلل ابحاث بشركة العربى جروب
شرح مهام الوظيفة
GRC Analyst
Abbasya, Cairo, EG
Posting End Date:10/15/2023
Since its establishment in 1964, ELARABY has grown from a joint stock family enterprise to one of the largest industrial and commercial corporations in Egypt, the Middle East and Africa. ELARABY operates through 16 commercial, industrial, medical, and service companies, in four different governorates with 35 industrial facilities, and 2 hospitals. In 2020, ELARABY’s workforce exceeded 40,000 employees. ELARABY’s brand portfolio consists of 17 global brands with 25 product categories and more than 4,000 variations. With regards to the domestic and international markets, ELARABY’s figures continue to grow by exporting to over 60 countries across the globe. In the domestic market, one of ELARABY’s strongest assets is the vast distribution network, that consists of more than 3,000 sales partners and 30 branded stores; backed by more than 550 after-sales service centers. In a society consisting of more than 100 Million Egyptians who trusted ELARABY over the years, ELARABY gives back to the community through implementing and adopting various developmental projects, in education, healthcare, environmental well-being, and social solidarity.
Job Purpose:
Responsible for performing professional level IT Security duties related to analyzing security related information produced by the operating environment against industry standards, and control frameworks. Produces policy, program, process, and procedure related documentation to support controls required by the organization. Reviews and incorporates controls frameworks enumerated control standards and procedures into the security programs as required based on risk management.
Job Responsibilities:
- Measure and manage the existing policies, programs, processes, and procedures to ensure that security controls remain operable and effective as implemented.
- Develop information security policies for the organization to enforce to ensure security controls required by management are implemented and operating effectively.
- Develop security programs according to the information security management program to ensure that the relevant functions of security are operationalized with people, process, and technology.
- Implement security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns and advances College business objectives.
- Evaluate risks and develops security standards, procedures, and controls to manage risks.
- Implement processes to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts.
- Define and documents business process responsibilities and ownership of the controls in GRC tool.
- Schedule regular assessments and testing of effectiveness and efficiency of controls and creates GRC reports.
- Report on any operational deficiencies noted during measurement and management of the existing policies and programs.
- Assist in the determination if gaps in security design or controls exist and provide recommendations for remediation or mitigating controls.
- Ensure clients, regulatory, and internal requirements are being met consistently and effectively.
Job Qualifications:
- Bachelor's degree in Engineering, or Information Systems.
- 2-4 years of experience in a relevant field.
- Experience in identifying, assessing, and managing risks within an organization.
- Knowledge of risk management methodologies, such as risk assessment, risk mitigation, and risk monitoring.
- Strong understanding of GRC principles, frameworks, and industry standards, such as ISO 27001, NIST Cybersecurity Framework.
- Ability to develop and implement compliance programs, policies, and controls to ensure adherence to relevant standards.
- Experience in creating policy frameworks and ensuring policy awareness and compliance across the organization.
- Experience in conducting internal or external audits and supporting audit activities.
- Excellent written and verbal communication skills to interact with stakeholders, senior management, auditors, and regulatory bodies.
- Ability to collaborate effectively with cross-functional teams, including IT, legal, compliance, and operations.
- Strong analytical skills to identify and assess risks, analyze compliance gaps, and develop appropriate solutions and mitigation strategies.
- Ability to think critically and solve complex problems related to GRC challenges.
- Understanding of business operations, processes, and objectives to align GRC activities with the organization's overall goals.
- Ability to translate technical GRC requirements into business terms and provide actionable recommendations to management.
Ads
ملخص الوظيفة
- تاريخ النشر : منذ سنة
- نوع الوظيفة : دوام كامل
- الخبرة : 2 year(s)
- المكان : القاهره, Egypt
- النوع : اى نوع
عن الشركة
- إسم الشركة : العربى جروب
وظائف مشابهة
+ كل الوظائفتاريخ النشر: منذ 3 أيام
تاريخ النشر: منذ 4 أيام
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع
تاريخ النشر: منذ أسبوع