IT Governance, Risk Management, Compliance – Saudi Nationality
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Sanaam is looking for an IT GRC Specialist to support the development and implementation of IT Governance, Risk, and Compliance practices. The role involves establishing IT governance policies, assessing risks, ensuring compliance, and coordinating audits.
Key Skills for This Role
Responsibilities
- Develop, implement, and maintain the organization's IT Governance, Risk, and Compliance (GRC) framework
- Establish and monitor IT governance policies, standards, procedures, and controls
- Identify, assess, and monitor IT related risks, ensuring appropriate mitigation strategies are implemented
- Maintain the IT risk register and track remediation activities to closure
- Ensure compliance with applicable regulatory, legal, and organizational requirements
- Coordinate internal and external IT audits and facilitate the resolution of audit findings
- Monitor compliance with information security policies, standards, and control frameworks
- Develop and report IT governance, risk, and compliance metrics and Key Risk Indicators (KRIs) to management
- Support business continuity, disaster recovery, and operational resilience initiatives from a governance perspective
- Provide guidance and awareness on governance, risk management, and compliance requirements across the organization
- Continuously improve GRC processes in alignment with industry best practices and organizational objectives
Requirements
- Bachelor's degree in Information Technology, Computer Science, Information Security, Risk Management, Business Administration, or related field
- 2–4 years of experience in IT Governance, Risk Management, Compliance (GRC), Information Security, IT Audit, or related IT role
- Basic knowledge of IT governance frameworks such as COBIT, ISO/IEC 27001, NIST, and ITIL
- Experience supporting IT risk assessments, compliance activities, internal audits, and policy development
- Familiarity with regulatory requirements, internal controls, and risk management principles
- Experience preparing governance reports, maintaining risk registers, and tracking remediation activities
- Strong analytical, documentation, communication, and stakeholder coordination skills
- Professional certifications such as COBIT Foundation, ITIL Foundation, ISO/IEC 27001 Foundation, CISA (or working toward certification) are preferred
Full Job Posting
Key Responsibilities
- Develop, implement, and maintain the organization's IT Governance, Risk, and Compliance (GRC) framework.
- Establish and monitor IT governance policies, standards, procedures, and controls.
- Identify, assess, and monitor IT related risks, ensuring appropriate mitigation strategies are implemented.
- Maintain the IT risk register and track remediation activities to closure.
- Ensure compliance with applicable regulatory, legal, and organizational requirements.
- Coordinate internal and external IT audits and facilitate the resolution of audit findings.
- Monitor compliance with information security policies, standards, and control frameworks.
- Develop and report IT governance, risk, and compliance metrics and Key Risk Indicators (KRIs) to management.
- Support business continuity, disaster recovery, and operational resilience initiatives from a governance perspective.
- Provide guidance and awareness on governance, risk management, and compliance requirements across the organization.
- Continuously improve GRC processes in alignment with industry best practices and organizational objectives.
Qualifications And Experience
- Bachelor's degree in Information Technology, Computer Science, Information Security, Risk Management, Business Administration, or a related field.
- Professional certifications such as COBIT Foundation, ITIL Foundation, ISO/IEC 27001 Foundation, CISA (or working toward certification) are preferred.
- 2–4 years of experience in IT Governance, Risk Management, Compliance (GRC), Information Security, IT Audit, or a related IT role.
- Basic knowledge of IT governance frameworks such as COBIT, ISO/IEC 27001, NIST, and ITIL.
- Experience supporting IT risk assessments, compliance activities, internal audits, and policy development.
- Familiarity with regulatory requirements, internal controls, and risk management principles.
- Experience preparing governance reports, maintaining risk registers, and tracking remediation activities.
- Strong analytical, documentation, communication, and stakeholder coordination skills.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Sanaam
ITSM Specialist – Incident & Problem Management – Saudi Nationality
Riyadh, KSA
We are seeking a proactive ITSM Specialist to manage Incident and Problem Management processes, ensuring service stability and continuous improvement. The ideal candidate has 1-3 years of ITSM experience, ITIL Foundation
Senior Flutter Developer - Fintech & Digital Banking
Riyadh, KSA
Sanaam is seeking a Senior Flutter Developer in Riyadh to build high-scale, secure fintech/banking applications. Requires 5+ years of software development experience, 3+ years with Flutter & Dart, and expertise in mobile