2 Grc Intern jobs in Egypt
Cybersecurity And Technology GRC Manager
Posted today
Job Viewed
Job Description
• Develop, implement, and maintain the organization's cybersecurity governance framework, policies, standards, and procedures in alignment with business objectives and regulatory requirements.
• Lead the development and maintenance of cybersecurity awareness and training programs for all employees.
• Conduct comprehensive cybersecurity risk assessments to identify, evaluate, and prioritize risks to information assets and systems.
• Develop and manage a risk register, tracking identified risks, mitigation plans, and residual risk levels.
• Collaborate with business units and IT teams to implement risk treatment strategies and controls.
• Monitor the effectiveness of implemented controls and report on risk posture to senior management.
• Lead incident response planning and participate in post-incident analysis to identify GRC-related improvements.
• Ensure the organization's adherence to relevant cybersecurity laws, regulations, and industry standards such as NCA ECC and ISO.
• Manage internal and external cybersecurity audits, coordinating with auditors, providing necessary documentation, and tracking remediation efforts for findings.
• Prepare and present cybersecurity reports to management and relevant committees.
• Act as a primary point of contact for all GRC-related inquiries and initiatives.
• Communicate effectively with all levels of the organization, from technical teams to executive leadership, on GRC matters.
• Prepare clear, concise, and actionable reports on cybersecurity posture, risk status, and compliance adherence.
• Foster a culture of cybersecurity awareness and accountability across the organization.
• Collaborate with legal, internal audit, and other departments to ensure integrated GRC efforts.
• Minimum of 10+ years of experience in cybersecurity, with at least 3-5 years specifically in GRC roles.
• Good communication skills.
• In-depth knowledge of cybersecurity principles, technologies, and best practices.
• Familiarity with various operating systems, network protocols, and security technologies (e.g., firewalls, IDS/IPS, SIEM).
• Understanding of cloud security principles (AWS, Azure, GCP).
• Strong background in managing compliance initiatives related to major cybersecurity frameworks (e.g., ISO 27001, NIST CSF, PCI DSS, SOC 2).
• Experience in managing internal and external audits.
• Proven experience in developing and implementing cybersecurity policies, standards, and procedures.
• Demonstrated experience with cybersecurity risk assessment methodologies and tools.
Rsa - Senior Advisor, Grc & Customer Assurance
Posted today
Job Viewed
Job Description
As organizations across the globe transform to meet the rapidly evolving demands of the post-pandemic world, cybersecurity has become the bedrock of today’s digital economy. Nowhere is this more critical than in securing the identities of the employees, external users, and customers that drive the modern digital business. RSA SecurID is the most recognized and trusted brand in Identity Assurance with more than 12,000 customers, including 90% of the Fortune 500. For over 35 years, SecurID has pioneered many of the encryption, authentication and identity federation technologies that still power the Internet today. And now SecurID is transforming the industry yet again, paving the way for the future of digital Identity through next-generation SaaS-powered Identity Assurance and a frictionless, mobile-optimized experience for the modern workforce. If you are a self-motivated entrepreneur looking for a fast-paced challenge doing something that truly matters, come join our winning team!
Be part of the RSA Security & Risk Office (SRO) as we are seeking a Senior. Advisor Governance Risk & Compliance (GRC) & Customer Assurance. The role supports our security awareness program, policy & standard management, annual security audits and provides outbound assurance of RSA security practices to customers. This role will be accountable for the day-to-day management of our GRC practices reporting directly to the CISO. The Senior. Advisor will partner with cybersecurity, operations, sales, product management and engineering to maintain and facilitate the creation of customer facing security deliverables such as the Standard Information Gathering (SIG) and responses, a repository of standard responses, perform Security & Resiliency customer legal term reviews, and be knowledgeable regarding RSA’s controls framework.
**Principal Responsibilities**:
- Assist with the management of security policies, standards, and procedures in alignment with the NIST framework and customer contractual obligations
- Capture, document and manage information security risks, ensuring risk acceptance or risk remediation plans are documented
- Respond to RSA customer requests regarding security and resiliency posture and practices, supporting new business and customer retention
- Enhance the portfolio of sales / customer consumable materials that describe the security and resiliency posture within RSA
- Develop tools and processes and contribute to a library of responses to respond to customer security questionnaires, ensuring accurate and effective responses are provided in a timely manner to customer requests
- Act as an expert resource in the negotiation of acceptable Information Security contract provisions/language with customer and internal legal teams
- Facilitate audit activities with external audit firms and internal resources for SOC 2 Type II, ISO 27001/2and customer audit engagements
- Effectively manage, track and resolve findings and issues arising from external or customer audits alongside accountable service delivery teams
- Facilitate annual business continuity plan maintenance and exercises, creating a customer facing executive summary
- Partner with corporate communications to publish regular SRO companywide security awareness campaigns, general department news and security advisories
- Update and maintain Security Program content on internal SRO intranet site
- Support SRO KPI Metrics program for cross functional metric reporting and analysis
**Technical Requirements**:
- Ability to interpret, translate and negotiate with both technical and non-technical personnel information security control modifications and/or remediation progress plan milestones.
- Possess strong customer service skills, with the ability to work well independently, with mínimal oversight.
- Ability to interpret security contract legal terminology, with the assistance of legal resources to determine appropriate responses or modifications to standard security terms.
- Strong verbal and written communications skills in English are
- Given the diverse locations of our team members, the ability to work effectively globally and cross-functionally is critical.
- Professional certifications in governance, risk & compliance, security, or resiliency such as CISA, CRISC, CISM, ISA/QSA, PCIP, CISSP are preferred but not required
**Education and Experience**:
- Bachelors degree or equivalent experience in Information Security, Cyber Security, Risk Management, 3rd Party Risk or similar disciplines preferred
- 5+ years overall professional experience, ideally in a technology setting.
- 2+ years of current IT Audit, IT Risk Management and/or Governance Risk & Compliance experience
- Working knowledge of some of the following control frameworks NIST 800-53, NIST CSF, ISO 27001/27002, EU GDPR, PCI-DSS
- Hands-on experience performing security control assessments utilizing established industry frameworks.
RSA is
Be The First To Know
About the latest Grc intern Jobs in Egypt !