The role reports to GRC director in Egypt and coordinate with all GRC managers in Egypt to ensure great integration between KSA and Egypt with a strong focus on KSA regulatory requirement.
Coordinate and be the integration point of the whole department to ensure all GRC function is working in an integrated manner and delivering value to overall business.
The role has a strong focus on Subsidiaries GRC where the lead is within this role’s responsibility.
The role is responsible completely to lead the coordination with Solutions by STC team alongside adopting and implementing the mother company requirement.
Adapt and implement the existing corporate governance framework, policies, and procedures to the KSA business, ensuring alignment with local regulations and cultural considerations.
Collaborate with the Governance and Policy Manager in Egypt to ensure consistency and alignment in governance practices across both locations.
Monitor compliance with governance policies within the KSA business, identify gaps, and recommend improvements to enhance governance effectiveness.
Work closely with senior management and the board of directors of the KSA business to provide regular updates on governance issues and advise on corporate governance best practices relevant to the KSA context.
Oversee the implementation of governance policies for any subsidiaries or branches within the KSA business and conduct governance reviews to ensure compliance and fitness to the organizational context.
Report on KSA governance-related activities and performance metrics to relevant stakeholders, including the GRC Director in Egypt, via established governance venues.
Identify, assess, and prioritize risks that could impact the KSA business objectives, considering local and global risk factors.
Develop and monitor risk management strategies and mitigation plans specific to the KSA business to reduce the likelihood and impact of risks, in alignment with the overall risk management framework.
Collaborate with the Risk and Business Continuity Manager in Egypt to ensure consistent risk management practices across both locations.
Oversee the implementation of risk management processes across all departments within the KSA business.
Ensure that risk management policies for the KSA business align with industry standards, regulatory requirements, and the overall GRC framework.
Oversee the creation, management, and execution of risk and controls assessments within the KSA business, including vendor risk assessments and system authorization-to-operate (ATO) assessments.
Conduct comprehensive risk assessments of administrative controls to report and consult on mitigations of the risk in accordance with Giza Systems risk management framework.
Perform management and execution of system assessments, risk assessments, or vulnerability assessments, including the resolution of discovered issues and development of POAM documentation (“Plan of Action and Milestones”).
Develop specific plans to mitigate risks according to the risk level within the KSA business.
Contribute to the development and maintenance of the organization's risk appetite statement, providing input specific to the KSA business.
Implement and oversee Internal Control Reviews (ICR) to evaluate and improve the effectiveness of internal controls within the KSA business.
Promote a culture of risk awareness throughout the KSA organization by providing ongoing training and awareness for employees.
Develop and implement a comprehensive anti-fraud and anti-corruption program for the KSA business, including policies, procedures, training, and awareness initiatives, to mitigate fraud and corruption risks across the organization.
Ensure the KSA business's compliance with relevant local laws, regulations, and standards, including those specific to the KSA market.
Collaborate with the Compliance Manager in Egypt to ensure alignment and consistency in compliance practices across both locations.
Design and implement compliance programs tailored to the KSA business to prevent violations and manage regulatory risks.
Conduct regular audits and assessments to monitor adherence to compliance policies within the KSA business.
Collaborate with legal and internal audit teams to address potential compliance issues specific to the KSA business.
Establish a mechanism for receiving, tracking, recording, investigating, and responding to all issues about the company policies and practices within the KSA business.
Investigate and resolve compliance issues, gaps, and incidents within the KSA business
Lead the KSA business's efforts in achieving and maintaining GRC related certifications (e.g., ISO 27001, SOC 2, etc.) relevant to the KSA market.
Oversee the implementation and adaptation of internal policies to ensure continuous compliance within the KSA business.
Stay updated on changing regulations in KSA and advise the organization on necessary adjustments.
Collaborate with the Risk and Business Continuity Manager in Egypt to ensure alignment and consistency in business continuity practices across both locations.
Adapt and implement the existing business continuity management policy, strategies, and processes to the KSA business, considering local requirements and specific risks.
Contribute to the development and maintenance of the Disaster Recovery and Business Continuity plan, including procedures for testing and exercising the plan (TTX), with a focus on the KSA business.
Support management in identifying and assessing business continuity risks specific to the KSA business, maintaining risk registers, and identifying appropriate treatment plans.
Determine critical assets, identify potential threats and vulnerabilities, and assess the potential business impact of disruptions to the KSA business.
Plan an effective response for the KSA business, identify roles and responsibilities, and ensure effective communication throughout the organization.
Conduct regular training and awareness programs to ensure that employees within the KSA business understand their roles and responsibilities in business continuity situations.
Lead the KSA GRC team, providing direction and support to ensure effective performance.
Develop the organization’s GRC strategy, aligning it with the broader business goals.
Report regularly to the executive team and board on GRC performance and initiatives.
Promote a culture of compliance, risk awareness, and ethical behaviour across the organization.
Provide training and guidance to employees on governance, risk, and compliance matters.
Serve as a liaison between the organization and KSA regulatory bodies, ensuring open communication and timely reporting.
Promote awareness of company policy and strategy as appropriate among management and ensure sound principles are reflected in the organization's mission, vision, and goals.
Maintain updated on the way company standards, practices, and procedures are used while developing and managing services.
Review, conduct, or perform audits and reviews of company programs and projects.
Prepare and present regular reports to senior management and the board of directors.
Collaborate with various departments to integrate GRC practices into business operations.
