{bc}
linkedin

Governance, Risk, and Compliance (GRC) Specialist

Starlink Qatar
Doha, QAT
Full Time
Senior
Today
ISO 27001PCI DSSNISTCIS BenchmarksRisk AssessmentCompliance Monitoring
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

ISO 27001PCI DSSNIST
Smart Apply

Full Job Posting

Job Overview

  • The IT Security Audit & Compliance Specialist manages information security audits, compliance programs, cybersecurity governance, and risk management.
  • The role ensures compliance with security standards, regulatory requirements, data protection policies, and internal governance frameworks.

Key Responsibilities

  • Develop and maintain comprehensive IT security audit and compliance programs.
  • Plan, coordinate, and execute information security audit activities.
  • Define audit scope, objectives, methodologies, and work plans.
  • Develop and implement audit test plans for systems, applications, infrastructure, and cloud environments.
  • Conduct security compliance audits for critical systems, networks, and applications.
  • Maintain audit schedules, documentation, evidence collection, and reporting processes.
  • Ensure timely closure of audit findings, non compliance issues, and remediation activities.
  • Ensure compliance with organizational policies, regulatory requirements, contractual obligations, and security standards.
  • Monitor cybersecurity maturity and compliance posture across operational and technical environments.
  • Build and maintain controls matrices aligned with multiple security and compliance frameworks.
  • Identify security risks, vulnerabilities, and compliance gaps, and recommend corrective actions.
  • Conduct vulnerability and compliance assessments and coordinate remediation activities.

Qualifications & Experience

  • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, Information Security, Risk Management, or related discipline.
  • 5–8 years of experience in Information Security Governance, Risk Management, Compliance, Internal Controls, Audit, or Cybersecurity.
  • Hands on experience in implementing, managing, or maintaining ISMS based on ISO/IEC 27001.
  • Experience in Qatar NIA framework implementation, compliance monitoring, control assessment, and audit readiness.
  • Experience in PCI DSS compliance and certification implementation.
  • Knowledge of Data Privacy and Protection requirements.
  • Proven experience conducting information security risk assessments, risk treatment planning, and maintaining risk registers.
  • Experience supporting or coordinating ICOFR reviews, audits, control testing, and remediation activities.
  • Experience coordinating internal audits, external audits, certification audits, and regulatory assessments.
  • Knowledgeable in reviewing audit evidence from various technology platforms.

Technical Knowledge

  • Strong understanding of information security frameworks and standards (ISO 27001/27002, NIST, CIS Benchmarks).
  • Mandatory hands on knowledge of cloud security environments, IAM and PAM technologies, DLP solutions, and enterprise productivity and collaboration platforms.

Preferred Certifications

  • CISA, CISSP, CISM, CGEIT, cloud security certifications, ISO 27001 Lead Auditor or equivalent.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Starlink Qatar