CrawlJobs Logo

Senior Information Security GRC Specialist

nttdata.com Logo

NTT DATA

Location Icon

Location:
Saudi Arabia

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Join a leading company as a Senior Information Security GRC Specialist, where you will oversee the information security program, focusing on governance, risk management, compliance, and policy management. You will lead risk assessments, develop security policies, and foster a culture of security awareness. Strong knowledge of NCA regulations and security frameworks is essential.

Job Responsibility:

  • Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies
  • Develops and maintains security policies, standards, and procedures
  • Collaborates with legal and compliance teams to ensure adherence to regulatory requirements
  • Provides guidance and support to junior GRC team members
  • Assists in the creation and delivery of security awareness and training programs
  • Participates in security incident response activities as needed
  • Contributes to the continuous improvement of the information security program
  • Assists in policy management and refinement
  • Performs any other related task as required
  • Closing gabs on key findings during internal audits and evidence validation

Requirements:

  • Strong knowledge and experience with NCA regulations
  • Strong experience in Essential Cybersecurity Controls (ECC)
  • Advanced understanding of information security frameworks and standards
  • Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management
  • Excellent communication and interpersonal skills for collaborating with various stakeholders
  • Strong project management skills for handling security initiatives
  • Advanced familiarity with legal and compliance aspects related to information security
  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred
  • Advanced experience in information security, including GRC-related roles
  • Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management
What we offer:
  • Flexible, hybrid working model
  • Access to various wellness initiatives and health benefits tailored to individual needs
  • Competitive leave policies
  • Competitive salary plus a bonus or commission plan
  • Access to unrestricted courses, learning programs and professional certifications
  • Active mentorship program
  • World-class career platform

Additional Information:

Job Posted:
January 24, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
NTT DATA - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Information Security GRC Specialist

Senior Specialist, Customer Assurance

We’re looking for a Senior Specialist, Customer Assurance to help us manage and ...
Location
Location
Canada , Vancouver
Salary
Salary:
78400.00 - 109800.00 CAD / Year
hootsuite.com Logo
Hootsuite
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated years of experience in a security, privacy, customer assurance, or compliance related role (e.g., Security Specialist, Security Support Specialist, Privacy Specialist, GRC Specialist, Information Security or Compliance Auditor) and/or relevant experience in SaaS or technology industry
  • Bachelor’s degree or equivalent industry experience
  • Previous experience leading a high volume support request queue
  • Working knowledge of content management or content automation systems
  • Solid understanding of information security, privacy, risk, and compliance
  • Ability to work within tight deadlines and under pressure
  • Commitment to Results: consistently achieves results, demonstrating high performance, and challenging self and others to deliver result
  • Priority Setting: focuses time/energy on the most important issues/opportunities. Clearly understand how to assess the importance of tasks and decisions
  • Collaboration and Teamwork: works with others to deliver results, meaningfully contributing to the team and prioritizing group needs over individual needs
  • Accountability: holds self and others accountable to meet commitments
Job Responsibility
Job Responsibility
  • Communicate directly with internal stakeholders and external customers to understand and address their security, privacy, AI, and compliance concerns, acting as the primary point of contact on these matters for Hootsuite’s GNB and C&E Teams
  • Collaborate on the security, privacy and AI support process and build strong relationships with teams across the organization (e.g., Sales, Security, Privacy, Product and Technology, Legal), sharing best practices and learnings on what customers need to ensure they’re protected
  • Coordinate, qualify and prioritize a high volume queue of customer assurance review requests
  • Accountable for the accurate completion of customer assurance reviews (e.g., questionnaires) and similar customer requests (e.g., contracts) within tight deadlines
  • Provide expertise and support with RFPs (and similar documents) for Hootsuite’s GNB and C&E Teams
  • Maintain and further develop the capabilities of an AI-driven response automation tool and customer facing Trust Center to aid in driving process and response efficiency
  • Facilitate regular enablement sessions and knowledge sharing to update GNB and C&E teams on new security, privacy and AI support, processes and collateral
  • Manage Salesforce and other reports (e.g., Trust Center reports) that track Customer Assurance program metrics
  • share key data insights with stakeholders on successes, failure points and key learnings from customer review requests
  • Oversee the maintenance of security, privacy and AI collateral and certifications including Trust Center, CAIQ, SIG , etc
What we offer
What we offer
  • Canadian Benefits. Hootsuite offers comprehensive benefits to support the health and wellbeing of our owls and their families. The benefits cover health insurance including medical, dental, vision, life/disability insurances, an Employee and Family Assistance Program and more! Hootsuite provides a group RRSP plan with a company match of up to 4% of base salary. Benefits are available to permanent employees who meet minimum hours requirements without a waiting period
  • US Benefits. Hootsuite offers comprehensive benefits to support the health and wellbeing of our owls and their families. The benefits cover health insurance including medical, dental, vision, and life/disability insurances. Hootsuite also offers a 401k Plan with a company match (up to 4% of base salary), an Employee and Family Assistance Program and more! Benefits are available to employees who meet minimum hours requirements without a waiting period
  • Global Parental Leave. All permanent employees, including birthing, non-birthing and adoptive parents, who have been employed by Hootsuite for a minimum of 12 months are eligible for 26 weeks of full and partially paid leave in accordance with local government regulations
  • Fulltime
Read More
Arrow Right

Senior Specialist, Customer Assurance

We’re looking for a Senior Specialist, Customer Assurance to help us manage and ...
Location
Location
Canada , Vancouver
Salary
Salary:
78400.00 - 109800.00 CAD / Year
hootsuite.com Logo
Hootsuite
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated years of experience in a security, privacy, customer assurance, or compliance related role (e.g., Security Specialist, Security Support Specialist, Privacy Specialist, GRC Specialist, Information Security or Compliance Auditor) and/or relevant experience in SaaS or technology industry
  • Bachelor’s degree or equivalent industry experience
  • Previous experience leading a high volume support request queue
  • Working knowledge of content management or content automation systems
  • Solid understanding of information security, privacy, risk, and compliance
  • Ability to work within tight deadlines and under pressure
  • Commitment to Results: consistently achieves results, demonstrating high performance, and challenging self and others to deliver result
  • Priority Setting: focuses time/energy on the most important issues/opportunities. Clearly understand how to assess the importance of tasks and decisions
  • Collaboration and Teamwork: works with others to deliver results, meaningfully contributing to the team and prioritizing group needs over individual needs
  • Accountability: holds self and others accountable to meet commitments
Job Responsibility
Job Responsibility
  • Communicate directly with internal stakeholders and external customers to understand and address their security, privacy, AI, and compliance concerns, acting as the primary point of contact on these matters for Hootsuite’s GNB and C&E Teams
  • Collaborate on the security, privacy and AI support process and build strong relationships with teams across the organization (e.g., Sales, Security, Privacy, Product and Technology, Legal), sharing best practices and learnings on what customers need to ensure they’re protected
  • Coordinate, qualify and prioritize a high volume queue of customer assurance review requests
  • Accountable for the accurate completion of customer assurance reviews (e.g., questionnaires) and similar customer requests (e.g., contracts) within tight deadlines
  • Provide expertise and support with RFPs (and similar documents) for Hootsuite’s GNB and C&E Teams
  • Maintain and further develop the capabilities of an AI-driven response automation tool and customer facing Trust Center to aid in driving process and response efficiency
  • Facilitate regular enablement sessions and knowledge sharing to update GNB and C&E teams on new security, privacy and AI support, processes and collateral
  • Manage Salesforce and other reports (e.g., Trust Center reports) that track Customer Assurance program metrics
  • share key data insights with stakeholders on successes, failure points and key learnings from customer review requests
  • Oversee the maintenance of security, privacy and AI collateral and certifications including Trust Center, CAIQ, SIG , etc
What we offer
What we offer
  • Canadian Benefits: health insurance including medical, dental, vision, life/disability insurances
  • Employee and Family Assistance Program
  • group RRSP plan with a company match of up to 4% of base salary
  • US Benefits: health insurance including medical, dental, vision, and life/disability insurances
  • 401k Plan with a company match (up to 4% of base salary)
  • Employee and Family Assistance Program
  • Global Parental Leave: 26 weeks of full and partially paid leave for eligible employees
  • Fulltime
Read More
Arrow Right

Senior Information Security GRC Specialist

The Senior Information Security GRC Specialist is responsible for enhancing the ...
Location
Location
Saudi Arabia
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology or Computer Science
  • Certifications like CISA and CRISC
  • At least 5 years of experience in information security
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Enhancing the organization's information security program through risk assessments, compliance management, and policy development
What we offer
What we offer
  • Access to various wellness initiatives and health benefits tailored to individual needs
  • Competitive leave policies for vacations, illness, recovery or significant life events
  • Competitive salary plus a bonus or commission plan
  • Access to unrestricted courses, learning programs and professional certifications
  • Active mentorship program
  • World-class career platform
  • Fulltime
Read More
Arrow Right

Senior GRC specialist

At JFrog, we’re reinventing DevOps to help the world’s greatest companies innova...
Location
Location
Israel , Netanya/Tel Aviv
Salary
Salary:
Not provided
jfrog.com Logo
JFrog
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of direct experience in Information Security GRC, Risk Management, or Audit, preferably acquired within a high-growth SaaS or cloud-native environment
  • A proactive, self-starting mentality with strong analytical, project management, and problem-solving skills, with proven ability to validate your own work and drive tasks to completion independently
  • Demonstrable expertise in managing core compliance programs (SOC 2, ISO 27001)
  • Experience pursuing net-new compliance certifications and initiatives (e.g., R, C5, TISAX, IRAP)
  • Experience developing, drafting, and implementing security policies and standards from the ground up in a tech-focused environment, harmonizing controls across frameworks to create agile standards
  • Experience leading complex security audits, serving as a primary liaison and "in-the-room" lead during internal and external audits
  • Strong understanding of information security principles, risk management, and control frameworks in a cloud-first environment (AWS, GCP, Azure)
  • Exceptional communication and interpersonal skills, with a proven ability to build relationships and influence change across engineering, product, and business teams, and the ability to write concise, "Executive Ready" policies and risk reports
  • Hands-on experience with GRC platforms and a drive to automate manual GRC workflows
  • Bachelor’s degree in Cybersecurity, Information Technology, Law, or a related field, or equivalent practical experience
Job Responsibility
Job Responsibility
  • Drive Security Framework Adoption (New Markets): Lead the strategic adoption of net-new security frameworks to unlock business markets
  • Oversee the Security Certification Program: Oversee the end-to-end execution of our security assurance portfolio (ISO 27001, SOC 2)
  • Lead Security Audits: Serve as a primary GRC contact for internal and external audits. You'll coordinate evidence gathering, craft management responses, and drive the remediation of findings
  • Lead Governance Initiatives: Develop, maintain, and enhance the enterprise-wide security GRC framework, policies, standards, and procedures, ensuring they align with our cloud-native and SaaS environment
  • Risk Management & TPRM: Evolve our Third-Party (TPRM) and Internal Security Risk programs, including executing and documenting comprehensive risk assessments, ensuring that findings are remediated and clearly aligned with JFrog’s risk appetite
  • Collaborate Cross-Functionally: Partner with engineering, product, IT, and legal teams to embed security controls into daily business operations, ideally automated
  • Mentor & Advise: Act as a subject matter expert on governance and risk for the wider organization and provide mentorship to junior GRC team members
Read More
Arrow Right

Senior Information Security Governance, Risk and Compliance Specialist

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist...
Location
Location
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred
  • Advanced experience in information security, including GRC-related roles
  • Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management
  • Advanced understanding of information security frameworks and standards
  • Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management
  • Excellent communication and interpersonal skills for collaborating with various stakeholders
  • Strong project management skills for handling security initiatives
  • Advanced familiarity with legal and compliance aspects related to information security
Job Responsibility
Job Responsibility
  • Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies
  • Develops and maintains security policies, standards, and procedures
  • Collaborates with legal and compliance teams to ensure adherence to regulatory requirements
  • Provides guidance and support to junior GRC team members
  • Assists in the creation and delivery of security awareness and training programs
  • Participates in security incident response activities as needed
  • Contributes to the continuous improvement of the information security program
  • Assists in policy management and refinement
  • Performs any other related task as required
  • Fulltime
Read More
Arrow Right

Information Security GRC Specialist

As Information Security GRC Specialist (f/m/d) you will own and drive Awin's glo...
Location
Location
Germany; Spain; Poland; United Kingdom; Italy; Romania; Sweden; France , Berlin; Munich; Madrid; Warsaw; London; Milan; Iași; Stockholm; Paris
Salary
Salary:
Not provided
awin.com Logo
Awin Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven track record of owning and delivering risk management initiatives end-to-end
  • Experience driving risk remediation across teams without direct authority
  • Strong experience presenting and defending risk positions to senior leadership and boards
  • Hands-on experience within an ISO 27001-certified ISMS environment
  • Strong knowledge of frameworks such as ISO 27001
  • Experience designing, implementing, or improving control frameworks
  • Experience with GRC platforms (e.g. Hyperproof)
  • Confident communicator (with very good English skills) - able to build relationships and challenge/influence senior stakeholders
Job Responsibility
Job Responsibility
  • Lead enterprise-wide risk identification and assessment across strategic initiatives, technology, and third parties
  • Drive risk remediation to closure, holding risk owners accountable for delivery
  • Own and maintain the Information Security Risk Register
  • Define, embed, and maintain the organisation's risk appetite
  • Provide clear, opinionated, and actionable risk insights to senior management and the board
  • Confidently challenge and influence stakeholders to ensure risks are neither understated nor inappropriately accepted
  • Own and continuously improve Awin's global information security risk management framework
  • Embed risk management into business processes
  • Mentor and develop GRC team members
  • Lead horizon scanning across emerging threats, regulatory changes, and industry developments
What we offer
What we offer
  • Flexi-Week and Work-Life Balance: four-day Flexi-Week at full pay and with no reduction to annual holiday allowance
  • Remote Working Allowance
  • Flexi-Office and hybrid/remote work possibilities
  • Development: training suite Awin Academy
  • Appreciation: peer-to-peer voucher program
  • Fulltime
Read More
Arrow Right

Senior Cyber GRC Specialist

As a Senior Cyber Security Specialist, you will be responsible for driving Gover...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's and/ or Master's degree in Computer Science, Information Security, or a related field
  • Proven experience (typically 5+ years) in cyber security
  • Strong aptitude for staying updated with the latest cybersecurity trends and best practices
  • Effective communication skills to articulate complex technical concepts to both technical and non-technical stakeholders
  • Familiarity with relevant regulations and industry standards (i.e. ISO27001, NIST SP 800-53)
  • Capable of working collaboratively with cross-functional teams to implement and maintain robust cybersecurity measures
  • In-depth knowledge of cyber security principles, standards, and frameworks
Job Responsibility
Job Responsibility
  • Ensure Vodafone Greece complies with Group’s cyber security control framework
  • Support proper execution of the local cyber security processes
  • Support ISO 27001 certification compliance activities
  • Ensure cyber security control KPIs and relevant risk remediation actions are met
  • Support Group and Local Cyber Security Regulatory compliance activities
What we offer
What we offer
  • Award-winning work environment -certified #1 Top Employer in Greece
  • Competitive pay, bonus & remuneration package
  • Private Health & Medical Insurance
  • Hybrid way of working: a blend of remote and office-based working, including the option to work from abroad
  • Unlimited access to learning resources and trainings
  • Vodafone Parental Leave: 16 weeks of fully paid parental leave to all employees regardless of gender, sexual orientation or length of service
  • Spirit of Vodafone Day: one day each quarter dedicated to your personal development
  • Extra days off: Vodafone Day, Family Day, Volunteering Day
  • Office amenities (subject to the office location): such as restaurant, beauty corner, gym and parking
  • Special employee offers and discounts
  • Fulltime
Read More
Arrow Right

IT Security Specialist

We’re looking for a skilled IT Security professional to assess and strengthen se...
Location
Location
United States , Greenville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience with risk management and IT control frameworks
  • Bachelor’s degree in Information Assurance, Computer Science, Engineering, or a related technical field preferred but not required
  • 2+ years of hands-on experience in Information Security and/or enterprise GRC
  • Expertise in IT Risk assessment, evaluating technical control sets, and determining the effectives of IT policies, procedures, controls, and systems
  • Cybersecurity certifications such as CySA+
  • Identify weak points in IT Controls and implements plans of action to remediate and improve
  • Strong knowledge of risk frameworks (CRI, COSO, ISO, COBIT, NIST)
  • Familiarity with regulatory standards (PCI, FFIEC, SOX, GDPR, CCPA, GLBA)
Job Responsibility
Job Responsibility
  • Conduct reviews and document the effectiveness of security and technology controls
  • Assess control environments through interviews, documentation analysis, and workflow evaluations
  • Recommend and assist in implementing risk mitigation strategies through policies, procedures, and technical safeguards
  • Collaborate with risk management and security leaders to align controls with organizational risk appetite
  • Identify strengths and gaps in controls related to privacy, security, resilience, and compliance
  • Advocate for improvements that enhance security without compromising business operations
  • Support control development and implementation across testing, QA, and production environments
  • Prepare and present reports on control effectiveness to senior leadership
  • Stay informed on regulatory changes, internal policies, and industry best practices
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right