CrawlJobs Logo

GRC Engineer

Ethics HR

Location Icon

Location:
Egypt , New Cairo

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Responsibility:

  • Perform security reviews, identify gaps in security architecture, and develop a security risk management plan
  • Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change
  • Plan and conduct security authorization reviews and assurance case development for new and existing installation of systems and networks to confirm that risk is within acceptable limits
  • Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials)
  • Verify and update security documentation reflecting the application/system security design features
  • Verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations
  • Develop security compliance processes and/or audits for external services (e.g., cloud service providers, data centers)
  • Participate in Risk Governance process to provide security risks, mitigations, and input on other technical risk
  • Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc
  • Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures that are consistent with the organization's mission and goals
  • Ensure that security design and cybersecurity development activities are properly documented (providing a functional description of security implementation) and updated as necessary
  • Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs)
  • Ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals
  • Conduct interactive training exercises to create an effective learning environment
  • Develop new or enhance existing awareness and training materials that are appropriate for intended audiences

Requirements:

  • Bachelor’s degree in engineering, Computer Science, Cyber Security, or any related field from a reputable university
  • Preferably have one of the following certifications: CCNA Security, CompTIA Security +, CISA, ISA27001
  • Fluency in Arabic and English
  • Fresh graduates with cybersecurity related certificate to 1 year experience in information security
  • Ability to: Identify systemic security issues based on the analysis of vulnerability and configuration data
  • Answer questions in a clear and concise manner
  • Ask clarifying questions
  • Communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means
  • Design valid and reliable assessments
  • Apply critical reading/thinking skills
  • Evaluate information for reliability, validity, and relevance
  • Function in a collaborative environment, seeking continuous consultation with others
  • Interpret and apply laws, regulations, policies, and guidance relevant to organization cyber objectives
  • Interpret and understand complex and rapidly evolving concepts
  • Monitor advancements in information privacy technologies to ensure organizational adaptation and compliance
  • Relate strategy, business, and technology in the context of organizational dynamics
  • Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
  • Knowledge of: Computer networking concepts and protocols, and network security methodologies
  • Risk management processes (e.g., methods for assessing and mitigating risk)
  • Laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
  • Cybersecurity and privacy principles
  • Cyber threats and vulnerabilities
  • Specific operational impacts of cybersecurity lapses
  • Authentication, authorization, and access control methods
  • Applicable business processes and operations of bank
  • Cyber defense and vulnerability assessment tools and their capabilities
  • Cryptography and cryptographic key management concepts
  • Data backup and recovery
  • Database systems
  • Business continuity and disaster recovery continuity of operations plans
  • Organization's enterprise information security architecture
  • Organization's Local and Wide Area Network connections
  • Security Assessment and Authorization process
  • Cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data
  • Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
  • Risk Management Framework (RMF) requirements
  • Current industry methods for evaluating, implementing, and disseminating IT security assessment, monitoring, detection, and remediation tools and procedures
  • Network access, identity, and access management (e.g., PKI, Oauth, OpenID, SAML, SPML)
  • New and emerging information technology (IT) and cybersecurity technologies
  • System and application security threats and vulnerabilities (e.g., buffer overflow,)
  • Systems diagnostic tools and fault identification techniques
  • Enterprise information technology (IT) architecture
  • Organization’s enterprise information technology (IT) goals and objectives
  • Supply Chain Risk Management Practices (NIST SP 800-161)
  • Organization's core business/mission processes
  • Information technology (IT) supply chain security and supply chain risk management policies, requirements, and procedures
  • Critical infrastructure systems with information communication technology that were designed without system security considerations
  • Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
  • Security architecture concepts and enterprise architecture reference models
  • Security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model)
  • Personally Identifiable Information (PII) data security standards
  • Payment Card Industry (PCI) data security standards
  • An organization's information classification program and procedures for information compromise
  • Controls related to the use, processing, storage, and transmission of data
  • Application Security Risks (e.g. Open Web Application Security Project Top 10 list)
  • Skills in: Applying confidentiality, integrity, and availability principles
  • Determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes
  • Discerning the protection needs (i.e., security controls) of information systems and networks
  • Recognizing and categorize types of vulnerabilities and associated attacks
  • Interfacing with customers
  • conducting reviews of systems
  • network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools
  • Integrating and applying policies that meet system security objectives
  • Assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, etc)
  • performing impact/risk assessments
  • Information prioritization as it relates to operations
  • Interpreting vulnerability scanner results to identify vulnerabilities
  • Managing client relationships, including determining client needs/requirements, managing client expectations, and demonstrating commitment to delivering quality results
  • Performing target system analysis
  • Preparing and presenting briefings
  • Preparing plans and related correspondence
  • Prioritizing target language material
  • Processing collected data for follow-on analysis
  • Providing analysis to aid writing phased after action reports
  • Reviewing and editing assessment products
  • Reviewing and editing plans
  • Tailoring analysis to the necessary levels (e.g., classification and organizational)
  • Target development in direct support of collection operations
  • Target network anomaly identification (e.g., intrusions, dataflow or processing, target implementation of new technologies)
  • Access information on current assets available, usage
  • Analyze strategic guidance for issues requiring clarification and/or additional guidance
  • Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)

Additional Information:

Job Posted:
March 05, 2026

Icon
Ethics HR - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for GRC Engineer

Senior Security GRC Engineer

The Senior Security GRC Engineer at Atlassian will be instrumental in implementi...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-7+ years experience in a similar role, preferably in a large-scale SaaS/Product environment
  • Expertise and experience working in security-focused roles
  • Experience with application security, especially web applications
  • Experience in cloud security architecture and infrastructure
  • Experience providing SME knowledge and guidance to stakeholders and engineering functions
  • Experience working with internal/external audit and leadership teams
  • Solid knowledge of cybersecurity principles, risk management strategies, and IT governance frameworks
  • Strong communication and interpersonal skills, with the ability to interact with stakeholders at all levels and explain complex security concepts in an understandable way
  • Relevant certifications such as CISSP, CISM, or CRISC would be beneficial
  • Scripting experience to automate recurring tasks (JQL, SQL, Python, Go)
Job Responsibility
Job Responsibility
  • Deliver technical expertise and innovation, providing security guidance to teams and promoting the adoption of industry-leading methodologies to build secure products by default
  • Drive technical solutions in security and risk management
  • Leverage data analytics and visualization, deriving actionable insights from security governance, risk, and compliance data
  • Promote automation and tooling, encouraging the use of the latest security tools to enhance product security processes
  • Proactively identify and mitigate risks, recognizing potential security threats or compliance concerns specific to product security
  • Collaborate with product security teams, implementing security controls and best practices
  • Regularly evaluate and report, assessing the effectiveness of security controls
  • Influence and align stakeholders, working with security engineers and stakeholders to drive alignment on security initiatives
  • Stay informed on regulatory awareness and compliance, keeping up with the latest developments in legislative, regulatory, and industry security requirements
What we offer
What we offer
  • health coverage
  • paid volunteer days
  • wellness resources
  • Fulltime
Read More
Arrow Right

Security GRC Engineer

The Security GRC Engineer at Atlassian will be instrumental in implementing and ...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years experience in a similar role, preferably in a large-scale SaaS/Product environment
  • Expertise and experience working in security-focused roles
  • Experience with application security, especially web applications
  • Experience in cloud security architecture and infrastructure
  • Experience providing SME knowledge and guidance to stakeholders and engineering functions
  • Experience working with internal/external audit and leadership teams
  • Solid knowledge of cybersecurity principles, risk management strategies, and IT governance frameworks
  • Strong communication and interpersonal skills, with the ability to interact with stakeholders at all levels and explain complex security concepts in an understandable way
  • Relevant certifications such as CISSP, CISM, or CRISC would be beneficial
  • Scripting experience to automate recurring tasks (JQL, SQL, Python, Go)
Job Responsibility
Job Responsibility
  • Develop and implement security risk and governance capabilities, policies, and operations, ensuring alignment with Atlassian's business objectives and compliance with relevant laws and regulations
  • Provide technical guidance, promote automation, review designs, and support security teams to equip engineering partner teams with the latest tools, techniques, and methodologies to build secure products by default
  • Security GRC data management, analysis and reporting
  • Identify potential security risks and threats, and develop strategies to mitigate them
  • Understand Atlassian’s security controls and how they mitigate our risks
  • Support other teams in implementing and maintaining security controls and best practices
  • Periodically evaluate and report on the effectiveness of Atlassian’s security posture
  • Stay informed on the latest developments in cybersecurity and risk management to ensure that Atlassian's security controls are always at the cutting edge
What we offer
What we offer
  • health coverage
  • paid volunteer days
  • wellness resources
  • Fulltime
Read More
Arrow Right

Senior GRC Tools and Automation Engineer

We are looking for a skilled Senior GRC Tools and Automation Engineer to join ou...
Location
Location
United States , San Francisco
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, or a related field
  • Advanced degree or relevant certifications (e.g., CRISC, CISSP, JIRA Certification) are a plus
  • A minimum of [X] years of experience in GRC tools implementation and automation
  • Strong expertise in developing JIRA workflows and configuring JIRA tools to meet organizational needs
  • Proficiency in data analysis and reporting tools, such as Power BI, Tableau, or similar platforms
  • Experience with API development and data integration techniques, ensuring seamless connectivity between systems
  • Solid understanding of cloud services (e.g., AWS, Azure, Google Cloud) and their implications for GRC
  • Familiarity with artificial intelligence and emerging technologies, with an ability to assess and integrate them into GRC processes
  • Excellent problem-solving skills, with a focus on innovation and process improvement
Job Responsibility
Job Responsibility
  • Lead the design, implementation, and maintenance of GRC tools to support compliance, risk management, and governance activities
  • Collaborate with cross-functional teams to gather requirements and ensure tools meet organizational needs
  • Design and develop custom JIRA workflows to streamline GRC processes
  • Ensure JIRA configurations align with best practices and organizational requirements
  • Utilize data analysis and reporting tools to generate insights and actionable reports for GRC activities
  • Create dashboards and visualizations to communicate risk and compliance metrics effectively to stakeholders
  • Develop and manage integrations between GRC tools and other enterprise systems using APIs
  • Ensure seamless data flow and integrity across platforms to enhance GRC operations
  • Stay informed about the latest developments in cloud computing, artificial intelligence, and emerging technologies
  • Assess the impact of these technologies on GRC practices and tools, and propose innovative solutions
What we offer
What we offer
  • Health and wellbeing resources
  • Paid volunteer days
  • Fulltime
Read More
Arrow Right

Software Engineer

Design roles for table specific transactions. Generate monthly user licenses rep...
Location
Location
United States , Piscataway, NJ and various unanticipated locations throughout the U.S.
Salary
Salary:
Not provided
ncsus.net Logo
National Computer Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • SAP GRC
  • Omega
  • SOLV
  • R/3 (Profile Generator)
  • Portal
  • BI
  • CRM
  • HANA
  • BOBJ
  • Master degree in Computer Science, Technology or Engineering (any) with 1 year of experience in the job offered or related job
Job Responsibility
Job Responsibility
  • Design roles for table specific transactions
  • Generate monthly user licenses report
  • Prepare reports to determine security violations in production systems
  • Develop new security policies and procedures
  • Create get-roids.org manual changes adhering to defined process
  • Modify function groups and transaction codes
  • Conduct risk analysis
What we offer
What we offer
  • Referring employee will be eligible to receive an award of $1,000.00 for the successful referral
Read More
Arrow Right

Product Security Engineer - Secure SDLC Analyst

HPE Aruba Networking is looking for a person excited to work at the intersection...
Location
Location
United States , San Juan
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Information Security, Computer Science, or related technical field
  • A background in software security, either academic or work experience, including reverse engineering, vulnerability classes such as buffer overflows and their prevention, web application security, and/or cloud security
  • Programming knowledge of at least one programming language with the ability to look at source code and figure out what it’s doing
  • Familiarity with the purpose of tools such as IDEs, compilers, source code revision control systems, ASPM, SCA and code scanners
  • Minimum 3 years of experience working directly in software engineering or in an adjacent field with exposure to the software engineering environment
  • Experience conducting risk assessments, threat modeling, and/or compliance assessments
  • Experience supporting the integration of security practices through the software development lifecycle
Job Responsibility
Job Responsibility
  • Assist in the execution of product compliance assessments against various frameworks (e.g. NIST SSDF, NIST SP 800-218, SP 800-53, CIS Benchmarks)
  • Assist in the development and/or maintenance of GRC and SDLC tooling implementations, including scripting and automation
  • Operate as a representative of HPE Aruba in working groups, with government representatives, and with auditors
  • Provide consulting, information, and advice to product teams around implementing and improving the maturity of our SDLC
  • Document known issues and provide information to product teams in a manner which allows for easy interpretation and corrective actions to be performed
  • Monitor worldwide government standards and communicate to management and product teams when changes are made that may impact an existing control or introduce new requirements
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We’re looking for an experienced security engineer to join our highly collaborat...
Location
Location
Canada; United States
Salary
Salary:
143000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of combined experience in security, GRC, risk, or a related space with hands-on technical work building automation solutions as they relate to compliance controls, evidence, GRC platforms, etc.
  • experience in effectively analyzing data and programs for security risk, compliance, and maturity
  • willingness to wear different hats and work on areas where needed
  • must excel in communication, and demonstrate the ability to explain technical security concepts to a non-technical audience
  • must have a highly collaborative and teamwork-focused approach, as well as a heart for mentoring and leveling up your teammates
  • must be able to assess and mitigate corporate risk within the organization
  • sophisticated program/project management abilities
Job Responsibility
Job Responsibility
  • Own, design and manage the continued enhancement of various GRC programs including but not limited to strategy, roadmap, and controls to address regulatory requirements across multiple jurisdictions
  • communicate our compliance framework and various program requirements to all relevant stakeholders (internal and external)
  • engage cross-functionally with groups such as Engineering, Finance, Legal, Product, and Sales to establish a thoughtful, strategic and tactical approach to multiple GRC programs and related processes
  • assist with analysis and preparation for internal and external audits
  • accurately and effectively communicate our compliance position and programs to auditors and customers
  • partner with other members of the security team to establish security guidelines that enable the organization to move fast in a safe and secure manner
  • operate as a technical leader by helping define the GRC roadmap and by leveling up junior employees
  • build strong relationships with partner and stakeholder teams in order to build a scalable GRC program
What we offer
What we offer
  • Maternity and parental leave top-up programs
  • wellness spending allowance
  • generous PTO policy
  • company-wide wellness days off scheduled throughout the year
  • wellness coach membership
  • comprehensive health coverage
  • company equity for all full-time employees
  • retirement matching program
  • training budget, 1Password University access, and learning sessions
  • free 1Password account (and friends and family discount!)
  • Fulltime
Read More
Arrow Right

Services Trust and Assurance Engineer

As HPE Aruba Networking's customers pivot to consume more of their networking ca...
Location
Location
United States
Salary
Salary:
101900.00 - 234500.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-10 years of relevant work experience
  • Background in Governance, Risk, and Compliance (GRC)
  • Bachelor’s degree from an accredited college or university, or equivalent broad-based experience in the workforce
  • Understanding of Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform
  • Certifications such as AWS Cloud Practitioner or AWS Certified Solutions Architect are highly desirable
  • A broad understanding of IT service accreditation, attestation, and certification frameworks such as CSA CCM, FedRAMP, PCI-DSS, SOC2, and ISO 27001
  • Excellent verbal and written communications skills
  • Understanding of privacy frameworks such as GDPR and CCPA
  • Certifications such as CISSP or CCSP are desirable
Job Responsibility
Job Responsibility
  • Working collaboratively with R&D teams developing software for Aruba services to ensure understanding and adoption of the NIST Secure Software Development Framework (SSDF / SP800-218) and achievement of desired maturity targets
  • Synchronize additional R&D requirements from other applicable assessment or regulatory frameworks such as SOC2, ISO 27001, FedRAMP, and PCI-DSS
  • Develop, plan, and execute a compliance and accreditation program for each customer-facing service based on customer needs
  • Engage third-party consultants, auditors, and assessors as necessary
  • Work with the HPE Privacy Office and the Chief Privacy Officer to ensure global privacy requirements are actively addressed
  • Interface regularly with HPE Global Security, SRE, and the HPE Transformation Office
  • Serve as a coordinating function if and when security incidents occur
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, GRC Automation

1Password is looking for a Senior Security Engineer – GRC to design and implemen...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in security engineering, DevSecOps, solutions engineering, or GRC automation roles
  • Proven experience working with GRC, compliance, or audit teams to build automation that supports evidence collection, control testing, or security monitoring
  • Direct experience implementing and integrating GRC platforms (e.g., Drata, Vanta, Tines, JupiterOne) into production environments
  • Strong scripting and integration skills using Python, JavaScript, APIs, webhooks, or workflow automation tools
  • Ability to work cross-functionally with security, compliance, legal, and infrastructure teams to translate policies into scalable technical systems
  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53, and how they map to real-world infrastructure and operations
Job Responsibility
Job Responsibility
  • Lead the implementation and integration of our GRC platform, ensuring it is fully operationalized across key systems and workflows
  • Build out automated workflows for control testing, evidence collection, and audit readiness
  • Develop and maintain integrations between the GRC platform and systems of record (e.g., ticketing systems, IAM, asset inventories, configuration management)
  • Design dashboards and reporting to track control health, trust signals, and audit performance
  • Collaborate with teams across Security, GRC, and Engineering to embed compliance into operational processes like employee onboarding, change management, and incident response
  • Shape the roadmap for automated, resilient internal assurance infrastructure that grows alongside the business
What we offer
What we offer
  • Health and wellbeing: Maternity and parental leave top-up programs
  • Competitive health benefits
  • Generous PTO policy
  • Growth and future: RSU program for most employees
  • Retirement matching program
  • Free 1Password account
  • Community: Paid volunteer days
  • Peer-to-peer recognition through Bonusly
  • Remote-first work environment
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy