Bayt.com
https://bayt.page.link/QTB7S36SFcFgCsaj9
Create a job alert for similar positions

Job Description

Role Title: Cybersecurity Strategy and GRC


Location:  Riyadh, Saudi Arabia
 



About Accenture


Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Song, Technology and Operations services — all powered by the world’s largest network of Advanced Technology and Intelligent Operations centers. Our 744,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities. Visit us at www.accenture.com.


About Accenture Security


Join Accenture Security to pioneer security solutions that blend risk strategy, digital identity, cyber defense, application security and managed services. Using the coolest next-gen tech, you’ll have every chance to stay one step ahead of cybercrime and out-hack the hackers.    


Accenture Security provides comprehensive security services – from security strategy development, to business transformation, to managed security services – on demand and at a global scale to help mitigate risks and take full advantage of advanced technologies and proven risk management models. Our experienced team of global security professionals helps businesses understand their risks and build resilience from the inside out, giving them the confidence to focus on what matters most: innovation and business growth. 
 


Responsibilities and Accountabilities:


Risk Management:


  • Effectively communicate Cybersecurity risks and posture to senior management.
  • Develop risk mitigation strategies to effectively manage risk in accordance with organizational risk appetite
  • Ensure that decisions relating to Cybersecurity are based on sound risk management principles
  • Perform risk analysis whenever an application or system undergoes a major change
  • Provide input to the risk management framework and related documentation
  • Ensure Cybersecurity risks are identified and managed appropriately through the organization's risk governance process.
  • Carry out a Cybersecurity risk assessments
  • Work with others to implement and maintain a Cybersecurity risk management program
  • Identify and assign individuals to specific roles associated with the execution of the Risk Management Framework
  • Establish a risk management strategy for the organization that includes a determination of risk tolerance
  • Conduct an initial risk assessment of stakeholder assets and update the risk assessment on an ongoing basis
  • Work with organizational officials to ensure continuous monitoring tool data provides situation awareness of risk levels
  • Use risk management related tools such as eGRC and monitoring tools to assess risks
  • Develop methods to effectively monitor and measure risk, compliance, and assurance efforts.
  • Determine and document supply chain risks for critical system elements, where they exist.

Compliance & Regulation:


  • Analyze the organization's Cybersecurity policies and configurations to evaluate compliance with regulations and organization compliance frameworks
  • Recognize patterns of non-compliance with Cybersecurity policies and related documentation to identify ways to improve the documentation
  • Periodically review Cybersecurity strategy, policies, and related documents to maintain compliance with applicable legislation and regulation
  • Work with stakeholders to resolve Cybersecurity incidents and vulnerability compliance issues
  • Develop methods to effectively monitor and measure risk, compliance, and assurance efforts
  • Develop specifications to ensure that risk, compliance, and assurance efforts conform with Cybersecurity requirements.
  • Monitor and evaluate a system's compliance with Cybersecurity, resilience, and dependability requirements
  • Develop Cybersecurity compliance processes and audits for services provided by third parties
  • Maintain knowledge of applicable legislation, regulation, and accreditation standards and regularly review these to ensure continued organizational compliance
  • Cooperate with relevant regulatory agencies and other legal entities in any compliance reviews or investigations.

Skills and Qualifications:


  • Excellent communication (written and oral) and interpersonal skills
  • Ability to work creatively and analytically in a problem-solving environment
  • Flexibility to travel
  • Consulting, stakeholder engagement and relationship management skills.
  • Fluent in Arabic and English language
  • Ability to effectively communicate insights relating to an organization’s threat environment to improve its risk management posture.
  • Ability to work with the organization's leadership to provide a comprehensive, organization wide approach to address Cybersecurity risk and compliance.
  • Ability to work with the organization's leadership to develop a risk management strategy to address Cybersecurity related risks.
  • Ability to develop and maintain Cybersecurity policies, standards and related documentations to support business strategy and maintain compliance with legislative, regulatory, and contractual obligations.
  • Ability to communicate technical and planning information at the same level as a stakeholder’s understanding.
  • Knowledge and understanding of risk assessment, mitigation, and treatment methods.
  • Knowledge of relevant Cybersecurity aspects of legislative and regulatory requirements, relating to ethics and privacy.
  • Knowledge of Cybersecurity threats and vulnerabilities posed by new technologies and malicious actors.
  • Knowledge and understanding of risk assessment, mitigation, and management methods.
  • Knowledge of the likely operational impact on an organization of Cybersecurity breaches.
  • Knowledge of Cybersecurity authentication, authorization, and access control methods.
  • Knowledge of vulnerabilities in applications and their likely impact.
  • Knowledge of national Cybersecurity laws and regulations such as SAMA CSF, NCA ECC, etc.
  • Knowledge of common information security standards, such as: ISO 27001/27002, NIST, PCI DSS, ITIL, etc.

Preferred Qualifications:


  • Bachelor’s degree in information security, Cybersecurity or relevant.
  • 5+ years of experience in similar position
  • Should be Certified in CRISC, GRCP, ISO 27001 LI or equal certifications

Why join us?


  • We offer a transparent, fast paced approach career progression, with a focus on your strengths and continuous coaching from senior colleagues
  • You will benefit from working alongside Accenture experts who are solving some of the biggest industry challenges with innovative thinking and pioneering tools
  • Flexible work arrangements and a range of benefits including competitive rewards
  • You will have access to state-of-the-art technology that will give you the opportunity to deepen your existing skills even as you help create the latest business trends
  • You will also have opportunities to make a difference to the communities in which we work and live 

Next Steps


If this sounds like the ideal role, career and company for you, click below to apply. 
To learn more about life @AccentureMiddleEast, follow us on social media and keep up with our latest news.
Accenture Middle East: LinkedInInstagramFacebookTwitterYouTube


About Accenture


Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent- and innovation-led company with 750,000 people serving clients in more than 120 countries. Technology is at the core of change today, and we are one of the world’s leaders in helping drive that change, with strong ecosystem relationships. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. We are uniquely able to deliver tangible outcomes because of our broad range of services, solutions and assets across Strategy & Consulting, Technology, Operations, Industry X and Song. These capabilities, together with our culture of shared success and commitment to creating 360° value, enable us to help our clients reinvent and build trusted, lasting relationships. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities. Visit us atwww.accenture.com


Equal Employment Opportunity Statement


All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.


Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.


Accenture is committed to providing veteran employment opportunities to our service men and women.


Job Details

Job Location
Riyadh Saudi Arabia
Company Industry
Other Business Support Services
Company Type
Employer (Private Sector)
Employment Type
Unspecified
Monthly Salary Range
Unspecified
Number of Vacancies
Unspecified
Apply on company site Email to Friend Add a Cover Letter Complete Questionnaire

Do you need help in adding the right mix of strong keywords to your CV?

Let our experts design a Professional CV for you.

Get Help
You have reached your limit of 15 Job Alerts. To create a new Job Alert, delete one of your existing Job Alerts first.
MANAGE
Similar jobs alert created successfully. You can manage alerts in settings.
MANAGE
Similar jobs alert disabled successfully. You can manage alerts in settings.
MANAGE