Governance, risk and compliance specialist (GRC specialist)
Saudi Commission for Health Specialties
الرياض ، المملكة العربية السعودية
معلنة منذ نوفمبر ۱۱, ۲۰۲۰ 10 مشاهدة
Cyber security governance and operations, managing cybersecurity risks, and ensuring that cybersecurity and risk management requirements are met for all information systems and technology. As well as developing and updating cyber security policies within the organization.
Knowledge and Skills:
- Bachelor's or Master's degree in Information Technology, Information Security, or a related field.
- Professional certification such as CEH, ISO 27001 Lead Implementer, ISO 27001 Lead Auditor etc.
- Minimum 4 years in information security field with experience in risk management, compliance and information security management.
- The skill of applying basic cybersecurity principles.
- The skill of developing emergency and recovery plans for network infrastructure, testing and implementing them.
- Proficiency in identifying and classifying the types of vulnerabilities and related attacks
- The skill of conducting investigations or security reviews of technical systems.
- Damage assessment skill.
- The skill of conducting cybersecurity impact and risk assessments.
- The skill of communication to express the impact of the lack of control knowledge or proactive information of threats on the effectiveness of the cybersecurity strategy.
- The skill of communicating with all levels of employees.
- The skill of applying the principles of cybersecurity and privacy to fulfill the requirements of the organization.
- The skill of identifying privacy and cybersecurity issues related to communication with internal and external parties and their supply chain.
- The skill of planning and implementing administrative activities related to cybersecurity.
- Skill of preparing relevant plans and documents.
- The skill of creating and maintaining cybersecurity policies in line with the organization's privacy goals.
- Excellent knowledge of information security concepts, methodologies and leading best practices. Knowledge of cybersecurity standards and policies such as (ISO 27001, NCA and NIST SP 800-82 requirements).
- Knowledge of risk assessment procedures and policy formation.
- Good organizational and coordination skills.
- Excellent work pressure management skills.
- Good reporting skills.
- Excellent communication skills.
تفاصيل الوظيفة
Saudi Commission for Health Specialties
In 1403 AH, a Royal order was issued approving the Statute of the Saudi Commission for Health Specialties (SCFHS). SCFHS is responsible for supervising and evaluating training programs, as well as setting controls and standards for the practice of health professions. SCFHS launched its work through its competent supervisory, executive and specialist boards and committees. To date, the number of adopted programs exceeded 37. Based in Riyadh, SCFHS was established by Royal Decree No. M/2, dated 6/2/1413 AH. SCFHS is a scientific Commission which has legal personality, and its Headquarter is located in the Diplomatic Quarter, Riyadh, with several branches across the Kingdom (Commission branches). SCFHS aims to improve professionall performance, develop and encourage skills, and enrich scientific theory and practice in the different health-related fields, by:
