GRC Managing Consultant (RE)

Company Description

Innovative Solutions (IS) is a leading Cybersecurity company established in 2003, with its headquarters in Riyadh and additional offices in Al Khobar, Jeddah, Dubai, and Abu Dhabi. We specialize in delivering Comprehensive Cybersecurity Solutions and Services encompassing Advisory Services, Technical Assurance, Solution Deployment, Professional Services, and Managed Security Services.

Our mission is "Delivering secure and intelligent digital services that empower organizations"

Role Description

As a Managing Consultant, you will lead governance, risk, and compliance initiatives, ensuring alignment with organizational objectives and regulatory requirements. You will oversee teams delivering GRC solutions, manage client relationships, and drive the continuous improvement of cybersecurity posture and compliance across client organizations.

Key Responsibilities

• Lead the implementation and management of cybersecurity risk management and compliance programs.
• Ensure full coverage and effective day-to-day execution of cybersecurity risk and compliance services.
• Conduct annual cybersecurity risk assessments and identify threats, vulnerabilities, and risk exposure.
• Develop, implement, and monitor risk treatment and mitigation plans.
• Perform continuous risk monitoring and provide regular reporting to stakeholders and management.
• Manage third-party cybersecurity risks, including assessment, onboarding, and continuous monitoring.
• Support and enhance the cybersecurity compliance program across the organization.
• Conduct annual compliance assessments and ensure ongoing compliance tracking and reporting.
• Ensure alignment with regulatory requirements and frameworks (e.g., NCA).
• Collaborate with internal stakeholders to strengthen cybersecurity governance and risk posture.

Requirements

• Bachelor’s degree in Cybersecurity, Information Security, Business Administration, or related field.
• Minimum of 6+ years of experience in cybersecurity risk management and compliance.
• Strong expertise in cybersecurity frameworks and standards (e.g., NCA, ISO 27001, NIST).
• Proven ability to manage complex GRC projects and lead consulting teams.
• Excellent communication, leadership, and stakeholder management skills.