Cybersecurity Compliance Expert

Ejada Cybersecurity GRC team are seeking an experienced Cybersecurity Compliance Expert to join our team. The Compliance Expert will be responsible for ensuring that our organization and clients adhere to relevant cybersecurity regulations, standards, and best practices. The expert will work closely with internal teams and clients to assess compliance requirements, develop compliance strategies, and implement controls to mitigate risks.

Responsibilities

• Conduct comprehensive assessments of cybersecurity regulations, standards, and frameworks (NCA, SAMA) applicable to our organization and clients, including GDPR, HIPAA, PCI DSS, ISO/IEC 27001, NIST Cybersecurity Framework, and others.
• Collaborate with internal stakeholders and clients to identify compliance requirements and establish compliance objectives and priorities.
• Develop and implement cybersecurity compliance programs, policies, and procedures to ensure alignment with regulatory requirements and industry standards.
• Conduct gap assessments and risk analyses to identify areas of non-compliance and potential risks and vulnerabilities.
• Develop and maintain compliance documentation, including policies, procedures, standards, and control frameworks.
• Provide guidance and support to internal teams and clients on interpreting and implementing cybersecurity regulations, standards, and requirements.
• Coordinate and facilitate compliance audits, assessments, and certification activities with external auditors and regulatory authorities.
• Monitor and track compliance activities, including audit findings, remediation efforts, and compliance status, and report on compliance metrics and performance to senior management.
• Stay abreast of emerging cybersecurity regulations, trends, and best practices to ensure ongoing compliance and readiness.
• Serve as a subject matter expert on cybersecurity compliance matters, providing training, awareness, and guidance to internal teams and clients.
  
  

Qualifications

• Bachelor's degree in Information Security, Cybersecurity, Compliance, or related field. Master's degree or professional certifications (e.g., CISA, CISSP, CISM, CRISC) preferred.
• Minimum of 5-10 years of experience in cybersecurity compliance, regulatory compliance, or related roles.
• Strong knowledge of cybersecurity regulations, standards, and frameworks, including GDPR, HIPAA, PCI DSS, ISO/IEC 27001, NIST Cybersecurity Framework, and others.
• Experience developing and implementing cybersecurity compliance programs, policies, and procedures in complex organizational environments.
• Excellent understanding of compliance assessment methodologies, risk management principles, and control frameworks.
• Strong analytical and problem-solving skills with the ability to interpret and apply complex regulatory requirements.
• Effective communication and interpersonal skills with the ability to collaborate and influence stakeholders at all levels of the organization.
• Ability to work independently, manage multiple projects simultaneously, and meet deadlines in a fast-paced environment.
• Commitment to continuous learning and professional development in the field of cybersecurity compliance.