We are looking for Mid-Senior Level professionals who can work with us as Consultants in each of the following domains under our GRC professional services:
- IT Governance
- IT Service Management
- Information & Cybersecurity Management
- Business & ICT Continuity
Core requirements
- Conduct formal gap/maturity assessments against the requirements of international standards / frameworks including (but not limited to) COBIT 2019, ISO 38500, ITIL/ISO 20000:2018, ISO 27001 & other standards within 27000 family covering both information & cybersecurity, ISO 22301/ISO 27031, NIST, and other country specific regulatory frameworks like SAMA, NESA etc. and prepare their compliance roadmaps.
- Facilitate and work with clients to identify assets, services, and business processes & use them to fulfill standard requirements.
- Conduct formal risk & business impact assessments by using recognized methodologies.
- Design policies, procedures, structures, roles & responsibilities by using relevant standards/frameworks.
- Conduct awareness & coaching sessions for senior management & other staff.
- Work in close coordination with technology partners/vendors to provide functional consultancy for implementing processes in tools as & where needed.
- Conduct systems' audit as & where needed. Support in documentation, follow-ups and closure of non-compliances.
- Perform above tasks as routine business operations in cases of managed services/resource placement arrangements.
Requirements
- Bachelor/Master’s degree in Computer Science (or IT) from a recognized & reputable University.
- Excellent oral & written communication skills in English/Urdu. Proficiency in Arabic language would be a definite advantage.
- Good knowledge of international standards & frameworks and their implementation approach.
- Good knowledge of IT environment and modern tools being used to automate IT business processes.
- Good presentation designing, and delivering skills.
- Technical writing skills including designing of policies, procedures, roles & responsibilities, process & workflows, assessment reports etc.
- Good problem solving and analytical thinking skills.
- Proficient in using MS Office specially Word, Excel, PowerPoint.
- Should be able to work in a multi-tasking environment.
Professional Certifications:
Candidates having following certifications in their relevant domains will be preferred:
IT Governance
- COBIT (Foundation)
- CGEIT / CISA
ITSM
- ITIL 4 (Foundation)
- ITIL v3 (Foundation / Intermediate)
- ISO 20000: 2018 (Lead Implementer / Lead Auditor)
InfoSec & Cybersecurity
- CISM / CISSP
- ISO 27001 (Lead Implementer / Lead Auditor)
Business & ICT Continuity
- ISO 22301 (Lead Implementer / Lead Auditor)
Any other relevant trainings/ courses in the above domains.
•
Last updated on Aug 9, 2023