Job Title : GRC Consultant Cybersecurity

Location : Remote (India)

Job Type : 6 Months

Required Skills and Qualifications :

- The ideal candidate will have proven experience in D&T governance, cybersecurity, risk management, and compliance. Strong knowledge of UAEIA, ISO standards, and industry best practices is essential.

- Excellent communication and stakeholder management skills are required, along with the ability to work collaboratively with cross-functional teams, particularly in risk and internal audit.

- Experience in drafting policies and procedures and leading audit findings meetings is necessary.

- Proficiency in maintaining risk registers and developing effective mitigation strategies is also crucial.

Key Responsibilities :

Project Leadership and Delivery :

- Lead the development and implementation of D&T policies and procedures, ensuring alignment with Agthia Groups strategic goals. Oversee project timelines, deliverables, and resource allocation to ensure successful outcomes.

Stakeholder Management :

- Engage with key stakeholders to gather requirements and feedback on D&T and cybersecurity policies, ensuring clear and effective communication. Facilitate audit findings meetings, ensuring timely identification and closure of issues.

Technical Expertise :

- Provide technical support in creating and implementing both cybersecurity and D&T policies and procedures.

- Draft and design policies in accordance with UAEIA and ISO standards, ensuring comprehensive coverage across the organization.

- Maintain GRC Archer platform for keeping the risk register and audit findings up to date.

Cybersecurity and D&T Knowledge :

- Stay updated on industry trends in cybersecurity and digital transformation (D&T) to enhance Agthias capabilities and resilience.

Risk Management :

Risk Identification :

- Conduct thorough gap analysis to identify vulnerabilities and risks within D&T and cybersecurity domains.

Mitigation Strategies :

- Develop and implement tailored risk mitigation strategies to address identified vulnerabilities.

Risk Register :

- Maintain and regularly update the risk register, reflecting current statuses and action plans.

Compliance Assurance :

- Ensure all D&T and cybersecurity initiatives comply with relevant regulations and standards, including UAEIA and ISO 27001 and ISO 27002. Collaborate with risk and internal audit (IA) teams to establish key deliverables and align on a comprehensive risk roadmap.

Policy Deployment and Enforcement :

- Oversee the deployment and enforcement of D&T and cybersecurity policies across the organization, promoting understanding and compliance among all staff. Set smart objectives and measurable outcomes to evaluate the effectiveness of policies and procedures. Manage end-user awareness, ensuring acceptance and adherence to user policies.