Emplois en direct

Job Title: Senior Analyst – Risk and Compliance

Job Description: 
Core Duties:

• Perform risk assessments for new IT initiatives, vendors, and cloud deployments.
• Ensure compliance with ADNOC’s cybersecurity framework and regulatory mandates.
• Maintain and enhance the IT risk register and control library.
• Collaborate with IT, legal, and business units to ensure alignment on compliance requirements.
• Support business continuity and disaster recovery planning from a compliance perspective.

Preferred Certifications:

• CRISC, CISA, CISM, or ISO 27001 Lead Implementer/Auditor
• Microsoft certifications related to security and compliance (e.g., SC-400, SC-900)

Monthly Responsibilities & Reporting:
Prepare and present a Monthly Risk & Compliance Report including:

• Risk register updates and mitigation status
• Compliance scorecards (e.g., ISO 27001, NESA, NIST)
• Audit findings and remediation progress
• Policy review and exception tracking
• Regulatory compliance updates (e.g., ADGM, UAE Data Protection Law)
• Conduct monthly risk assessments and control effectiveness reviews.
• Lead monthly compliance awareness sessions or training refreshers.
• Update and maintain documentation for policies, procedures, and controls.

Daily Responsibilities:

• Monitor compliance dashboards and risk indicators across IT systems and cloud platforms (e.g., Azure, M365).
• Track and log incidents, policy violations, and exceptions.
• Review access control logs, privileged account activity, and audit trails.
• Coordinate with SOC and IT teams on security events and remediation actions.
• Conduct daily checks on compliance with data protection, backup, and encryption policies.
• Support internal and external audit requests with evidence gathering.