Cybersecurity & Technology GRC

We are seeking a Cybersecurity GRC Specialist to support our cybersecurity governance, risk, and compliance activities with strong technical expertise. The role will also oversee managed cybersecurity service providers such as Managed SOC and Managed Email Security.

Key Responsibilities:

• Support the development and implementation of cybersecurity policies, standards, and compliance frameworks (ISO 27001, NIST).
• Conduct cybersecurity risk assessments and internal control reviews.
• Oversee and manage cybersecurity service providers (managed SOC, managed email security).
• Monitor vendor performance and validate service levels (SLAs/KPIs).
• Coordinate cybersecurity audits and support audit readiness.
• Follow up on incident response and threat monitoring activities handled by service providers.
• Assist in security awareness and compliance training initiatives.
• Occasional interaction with regional cybersecurity teams and vendors is required.

• Bachelor’s degree in computer science, cybersecurity, information technology, or a related field.
• Minimum of 3 to 6 years of experience in cybersecurity GRC roles with technical exposure.
• Good understanding of security operations, incident response, and email security technologies.
• Vendor management skills (monitoring, reporting, issue escalation).
• Strong communication skills in English (Arabic is a plus).
• Good analytical thinking and problem-solving skills.
• Experience working in a cybersecurity role within Egypt or the Middle East region is a plus.

• Strong understanding of cybersecurity frameworks such as ISO 27001 and NIST CSF.
• Experience managing or working closely with cybersecurity managed services providers.
• Experience with SIEM, email security, and vulnerability management tools is preferred.

• At least two of the following certifications are required:
• ISO 27001 Lead Implementer or Auditor
• CISA (Certified Information Systems Auditor)
• CISM (Certified Information Security Manager)
• CISSP (Certified Information Systems Security Professional)