Senior Information Security Governance, Risk and Compliance (IS GRC) Officer

Advansys is a dynamic solutions provider focused on delivering smart, modular, and sustainable technology solutions that enhance operations, improve customer experiences, and drive business modernization. With over 400 skilled engineers, we serve 100+ enterprise customers across 14 countries. Specialized in a wide array of premium services including Business Automation, Industrial Digitization, Low code Development, Cloud Services, Warehouse Automation & Strategic Outsourcing.

Founded in 2014, Advansys is part of the INTRO Group, a private conglomerate established in 1980 with diverse investments across different business areas, oil and gas, real estate, specialized engineering, financial investment, Food & manufacturing.

• Alignment with Business Priorities: Sr. Manager IS GRC aligns his actions and those of his departments with the strategic objectives of the business. 
• Ownership and Accountability: Sr. Manager IS GRC takes full responsibility for his activities and his department’s, holding himself and his team accountable for their outcomes.  
• Driving Security Risk Reduction: Sr. Manager IS GRC proactively drives initiatives that reduce security risks.  
• Focus on Outputs and Impact: Sr. Manager IS GRC focuses on delivering outputs that create meaningful impact such as enhanced security culture and security posture of the bank.  
• Innovation and Automation: Sr. Manager IS GRC continuously seeks innovative solutions and automates processes for efficiency. 
• Cost-Benefit Optimization: Sr. Manager IS GRC strives to optimize the cost-benefit ratio of his and his department’s actions. 
• Continuous Learning and Improvement: Sr. Manager IS GRC is committed to learning from experience and continuously improving his processes and outcomes. 

Requirements

• A mid senior level officer with sound knowledge and expertise in information security risk management with experience of managing enterprise projects and of direct and in-direct relationship with senior and executive management. 

• Strong experience with GRC platforms (e.g., RSA Archer, MetricStream, ...etc )including administration, configuration, and integration with other business systems. 

• Strong experience and knowledge across the Information Security and Cyber Security domains including governance, policy procedures, compliance management, risk management and security incident response etc. 

• Strong experience in Banking environment with strong understanding of key security frameworks such as ISO27001.XX, NIST 800.xx, PCI-DSS, SWIFT CSP, COBIT etc.    

• Strong interpersonal, analytical, and technical skills with strong decision making and prioritization skills.  

• Sound knowledge of evolving advanced tech stacks and related control and risk universe.  

• Sound knowledge and expertise in conducting risk assessment.  

• Have 10+ years of rich experience in information security domain and at least 2-3 years of dedicated experience in managing GRC solutions or in a similar role, with a strong background in governance, risk management, compliance 

• Master’s degree in IT/Information Security 

• Professional certifications : CISA, CISM, CISSP, CRISC, ISO27001 LA/LI etc.