Senior Information Security Governance, Risk and Compliance (IS GRC) Officer
- Advansys
- مدينة نصر، محافظة القاهرة، مصر
- Full-time
وصف الوظيفة
- Alignment with Business Priorities: Sr. Manager IS GRC aligns his actions and those of his departments with the strategic objectives of the business.
- Ownership and Accountability: Sr. Manager IS GRC takes full responsibility for his activities and his department’s, holding himself and his team accountable for their outcomes.
- Driving Security Risk Reduction: Sr. Manager IS GRC proactively drives initiatives that reduce security risks.
- Focus on Outputs and Impact: Sr. Manager IS GRC focuses on delivering outputs that create meaningful impact such as enhanced security culture and security posture of the bank.
- Innovation and Automation: Sr. Manager IS GRC continuously seeks innovative solutions and automates processes for efficiency.
- Cost-Benefit Optimization: Sr. Manager IS GRC strives to optimize the cost-benefit ratio of his and his department’s actions.
- Continuous Learning and Improvement: Sr. Manager IS GRC is committed to learning from experience and continuously improving his processes and outcomes.
متطلبات الوظيفة
- A mid senior level officer with sound knowledge and expertise in information security risk management with experience of managing enterprise projects and of direct and in-direct relationship with senior and executive management.
- Strong experience with GRC platforms (e.g., RSA Archer, MetricStream, ...etc )including administration, configuration, and integration with other business systems.
- Strong experience and knowledge across the Information Security and Cyber Security domains including governance, policy procedures, compliance management, risk management and security incident response etc.
- Strong experience in Banking environment with strong understanding of key security frameworks such as ISO27001.XX, NIST 800.xx, PCI-DSS, SWIFT CSP, COBIT etc.
- Strong interpersonal, analytical, and technical skills with strong decision making and prioritization skills.
- Sound knowledge of evolving advanced tech stacks and related control and risk universe.
- Sound knowledge and expertise in conducting risk assessment.
- Have 10+ years of rich experience in information security domain and at least 2-3 years of dedicated experience in managing GRC solutions or in a similar role, with a strong background in governance, risk management, compliance
- Master’s degree in IT/Information Security
- Professional certifications : CISA, CISM, CISSP, CRISC, ISO27001 LA/LI etc.
