GRC Risk Manager

About the Role

Responsibilities

• Design, implement, and maintain enterprise-wide GRC frameworks in line with industry best practices
• Conduct comprehensive enterprise risk assessments, identify potential risks, and recommend mitigation strategies
• Monitor regulatory developments in the UAE and ensure ongoing compliance with applicable laws and regulations
• Lead internal audit planning, execution, reporting, and follow-up activities
• Develop, review, and update risk management policies, procedures, and guidelines
• Prepare and present regular risk and compliance reports to senior management and the board
• Collaborate with business stakeholders to embed risk awareness and deliver targeted training programs
• Manage relationships with regulators, external auditors, and other key stakeholders

Required Qualifications

• 5–12 years of hands-on experience in governance, risk management, compliance, internal audit, and enterprise risk assessment
• Bachelor’s degree in Finance, Business Administration, Risk Management, or a related field
• Proven track record implementing GRC frameworks and risk management processes
• In-depth knowledge of UAE regulatory environment and compliance requirements
• Experience managing internal audit programs and coordinating with external auditors
• Strong analytical, communication, and stakeholder management skills
• Professional certification such as CRISC, CISA, CIA, or equivalent

Preferred Qualifications

• Master’s degree in Risk Management, Business Administration, or related discipline
• Familiarity with global risk standards and frameworks (e.g., ISO 31000, COSO)
• Experience with GRC and risk management tools (e.g., RSA Archer, MetricStream)
• Fluency in Arabic and English
• Experience within the financial services or energy sectors