Key Responsibilities:
1. Conduct cybersecurity risk assessments, ISMS implementation, and GRC documentation
2. Manage compliance assessments, audits, and closure of internal & external audit actions
3. Perform third-party and contractor cybersecurity assessments
4. Maintain cybersecurity risk metrics, dashboards, and governance documents
5. Support IRM, IKRM step-out, and deviation management processes
Requirements:
Minimum 10 years experience in Cybersecurity Risk & Compliance / ISMS
Strong experience in GRC tools, audits, and regulatory compliance
Knowledge of ISO 27001, COBIT, and cybersecurity risk frameworks
Mandatory certifications:
ISO 27001:2022 Lead Implementer
CRISC
Excellent communication skills in English
Preferred:
Experience in Oil & Gas or critical infrastructure
Additional certifications such as CISM, ITIL, COBIT, or NIST Minimum 10 years experience in Cybersecurity Risk & Compliance / ISMS
Strong experience in GRC tools, audits, and regulatory compliance
Knowledge of ISO 27001, COBIT, and cybersecurity risk frameworks
Mandatory certifications: ISO 27001:2022 Lead Implementer, CRISC
Excellent communication skills in English
Preferred: Experience in Oil & Gas or critical infrastructure, Additional certifications such as CISM, ITIL, COBIT, or NIST
