Skills:
Risk Management, Compliance, Information Security, Policy Development, GRC Consultant, PCI DSS ISO 27001 ISO 22301 GDPR, cloud security AWS Azure, GitHub DeveOps CI CD Pipeline,
Greetings from Netsach - A Cyber Security Company.
We are looking for GRC Consultant with 5-8yrs of relevant work experience in Governance, Risk, and Compliance (GRC), with hands-on experience in industry standards such as SOC 2, PCI DSS, ISO 27001, ISO 22301, GDPR, and UAE NESA. The role demands strong technical skills, particularly in cloud security and GitHub, and a demonstrated ability to manage and implement security controls in a fast-paced environment.
Job Title: GRC Consultant
Exp: 5-8yrs
Job Location: Dubai Onsite
Job Type: 6 months Contract + Extendable
Interested candidates please share your updated resume at emily@netsach.co.in
Key Responsibilities
- Lead the implementation, maintenance, and continuous improvement of information security management frameworks (ISO 27001, SOC 2, PCI DSS, ISO 22301, etc.)
- Conduct ICS and Tech risk assessment and ensure compliance with global standards, including GDPR and UAE NESA regulations.
- Develop and manage policies, procedures, and controls to meet GRC requirements.
- Perform internal audits and manage external audits for certifications such as SOC 2, PCI DSS, and ISO 27001.
- Prepare and deliver reports on risk assessments, audit findings, and mitigation plans to senior management and stakeholders.
Required Qualifications
- 5-8 years of experience in Information Security and GRC roles.
- In-depth knowledge of SOC 2, PCI DSS, ISO 27001, ISO 22301, GDPR, and UAE NESA frameworks and compliance requirements.
- Hands-on experience with cloud security (AWS, Azure, GCP) and cloud-native security tools.
- Proficiency with GitHub and other DevOps tools for managing secure code repositories.
- Strong understanding of risk management and incident response practices.
- Demonstrated ability to manage audits, including internal/external assessments, and third- party vendor risk assessments.
- Excellent communication skills to engage with both technical and non-technical stakeholders.
Technical Skills
- Cloud Security (AWS, Azure, GCP)
- GitHub and DevOps pipeline security
Certifications (Preferred)
- Certified Information Systems Security Professional (CISSP)
- Certified Information Systems Auditor (CISA)
- ISO 27001 Lead Implementer or Auditor
- Certified Cloud Security Professional (CCSP)
Thank You
Emily Jha
emily@netsach.co.in
Netsach - A Cyber Security Company
www.netsach.co.in