Description
Job Summary
Careem is looking for a Cyber GRC Analyst. The candidate will work with business and technical teams across the global organization to execute the Information Security, Governance, Risk & Compliance strategy, extending processes as necessary to help business partners identify information security risks and manage risks to an acceptable level.
• Support the influence and socialization of Information Security controls, standards, policies, procedures, and communications.
• Collaborate and work with the GRC manager and advise process owners globally on Information Security controls needed for the mitigation of risks in accordance with the Information Security Process, Risk & Controls framework, and compliance with regulatory requirements and industry standards
• Understands how to create comprehensive and various levels of Information Security metrics and reporting for leadership.
• Support the coordination of Information Security awareness and training efforts across the global business units and subsidiaries.
What you'll need
• Good understanding of regulatory and industry standards, including NIST Cybersecurity Framework (CSF), Payment Card Industry Data Security Standard (PCI DSS) and ISO framework.
• Ensures that adequate information security contractual protections are included in third party vendor contracts by working with the Indirect Procurement, Data Privacy and the Legal teams.
• Good understanding of Information Security risk registers to ensure that all Information Security risks are accurately represented and actively managed.
• Ability to help and support business areas to recognizes IT/Security Risks
• A degree in Computer Science, Computer Engineering or Electrical Engineering or obtained relevant security certifications
• 3-5 years of experience in Information Security Governance, Risk and Compliance
• 1 years managing security-related projects
• In-depth familiarity with security policies based on industry standards and best practices
• Software development experience in at least 2 of these languages: (C/C++, Java, Python, Node, Rust, Go)
• Experience working with AWS services
• Ability to lead and communicate efficiently within a team environment
• Advanced technical writing skills
Where you'll be
• Even though we are working remotely, we are strong believers in collaboration and the power of building social connections with our teams. For that reason, our offices are still open and provide plenty of collaboration-friendly spaces at times when teams need it or if you need a quiet space to work outside of home.
• You’ll be working in the location you’re hired from. Due to legal and compensation considerations, you will need to be based out of the country you’re hired from as your primary work location.