Governance Risk & Compliance Lead

As the Governance Risk & Compliance Lead, you will be responsible for developing and maintaining the Governance, Risk, and Compliance (GRC) framework, ensuring alignment with industry standards such as COBIT, ISO, and NIST. Your role includes conducting comprehensive IT risk assessments for new initiatives, products, and third-party engagements. You will monitor and report on the effectiveness of risk management strategies and compliance programs, collaborating with IT and Cybersecurity teams to establish robust security policies and practices.

You will work closely with data privacy teams to ensure adherence to relevant local and international regulations, including GDPR. Additionally, you will manage the program for PCI DSS compliance and other industry-specific requirements, handling both internal and external audits and ensuring timely and effective resolution of audit findings. Acting as the primary liaison for regulatory bodies, auditors, and stakeholders regarding compliance matters, you will present regular updates to the head of department on compliance status, risk assessments, and audit findings.

Qualifications

• Bachelor’s or master’s degree in Information Technology, Cybersecurity, Risk Management, or related fields.
• 10+ years of experience in GRC, risk management, audits, and compliance within regulated industries.
• Strong knowledge of applicable regulations, standards, and frameworks.
• Proven experience managing compliance certifications and audits (e.g., ISO 27001, PCI DSS).
• Relevant certifications such as CISA, CISM, CRISC, CGEIT, or similar preferred.
• Solid analytical, communication, and leadership skills.

Location: Abu Dhabi Emirate, United Arab Emirates
Work Conditions: On-site, Full-time