Talent.com
Senior Information Security Analyst - Compliance & GRC

Senior Information Security Analyst - Compliance & GRC

AgilityAl Qatif, Saudi Arabia
8 days ago
Job description

Role Summary : We are seeking a highly experienced and results-driven Senior Information Security Analyst to serve as our central Governance, Risk, and Compliance (GRC) resource. This is a pivotal role responsible for the overall design, maintenance, and enhancement of the organization's security and resilience frameworks. The core purpose of this position is to ensure continuous compliance with all relevant international and local standards, with a specific focus on leading our audit readiness and certification efforts.

Your Responsibilities : Compliance and GRC Management

Establish, maintain, and enhance the organization's Information Security Management System (ISMS) and Business Continuity & Supply Chain Management (BCSM) frameworks

Ensure the organization's compliance with all relevant local, regional, and international regulations and standards, ISO 27001, ISO 22301)

Act as the primary auditee and point of contact for all internal and external information security audits

Proactively identify, assess, and manage information security and business continuity risks to protect the organization's information assets

Drive a culture of security and resilience across the organization

Security Controls & Technical Oversight

Conduct security assessments and audits of various IT platforms, including cloud infrastructure, on‑premise servers (Windows, Linux), databases, and network devices.

Utilize or interpret reports from vulnerability scanners and penetration testing tools to identify and prioritize security weaknesses

Evaluate and enforce robust Identity and Access Management (IAM) controls, including role-based access control (RBAC) and multi-factor authentication (MFA)

Review and ensure the security of cloud deployments (IaaS, PaaS, SaaS), including security groups, IAM policies, and logging

Apply strong knowledge of secure configuration baselines and hardening standards (CIS Benchmarks) for operating systems, web servers, and network equipment

#J-18808-Ljbffr

Create a job alert for this search

Security Analyst • Al Qatif, Saudi Arabia