Job Title: Authorization and GRC Specialist

Location: Saudi Arabia (Preference for candidates based in Saudi Arabia)

About Us:
Sada Thalate Gulf is a leading consultancy firm in Saudi Arabia, committed to delivering exceptional services to our diverse range of clients.
We are expanding our team and are on the lookout for talented professionals to join us in providing quality services.

Responsibilities:

  • Developement: Design / Develop and Implement solutions in alignment with business requirements.
  • Landscape: Installation / Configuration of Environement (Developement / Quality / Production and DR)
  • Operation: Run & Mnt. the Environement (Developement / Quality / Production and DR)
  • Staging: Testing and Debugging serivies in Developement / Quality / Production and DR Environement
  • Enhancements: Version update / Optimization / Fine-Tune and Customization of Systems & Services
  • Backup: High Availbility / Backup and Restore of Systems & Services.
  • Monitoring: Systems Alerts / Reports / Audit / Analytics
  • Security Platforms: Integration with SIEM & SOC systems
  • Collaboration: with stakeholders / cross-functional teams for change mgmt. and technical activities.
  • Documentation: Develop SOW, End-User Instructions, Operational / Troubleshooting Guide and Design Document.
  • Up to Date: Stay current with product updates and industry best practices to enhance the effectiveness of services.
  • Standards: use of Frameworks / Methodologies / Policies / Process & Procedures
  • Platforms: understanding of front-end and back-end systems.
  • Enforce security policies and best practices.
  • System Administration:
    • Oversee the day-to-day operation of systems and services, ensuring optimal performance and availability.
    • Perform routine system monitoring, tuning, and troubleshooting.
  • Upgrades and Patch Management:
    • Plan and execute system upgrades, updates, and patches.
    • Stay informed about the latest releases and features.
  • Backup and Recovery:
    • Develop and maintain backup and recovery strategies for systems.
    • Conduct regular backup tests to ensure data integrity.
  • Performance Optimization:
    • Identify and implement performance optimization measures.
    • Collaborate with other teams to improve overall system efficiency.
  • Interface and Integration Monitoring:
    • Monitor and manage interfaces between security soc and other systems.
    • Collaborate with integration teams to troubleshoot and resolve issues.
  • Access Management:
  • Administer and oversee user access provisioning, de-provisioning, and modifications.
  • Implement and enforce role-based access controls (RBAC) across the organization’s systems and applications.
  • Role Design and Segregation of Duties (SoD):
  • Design and maintain roles in accordance with business requirements and industry best practices.
  • Conduct regular SoD analyses to identify and remediate conflicts in access assignments.
  • Authorization Governance:
  • Establish and maintain authorization policies and procedures.
  • Conduct periodic reviews and audits to ensure compliance with security and access policies.
  • GRC Framework Implementation:
  • Implement and manage Governance, Risk, and Compliance (GRC) frameworks.
  • Collaborate with stakeholders to define and document risk profiles and mitigation strategies.
  • Policy Management:
  • Develop and enforce security policies related to access controls, data protection, and information security.
  • Ensure policies align with regulatory requirements and industry standards.
  • Incident Response:
  • Collaborate with the IT security team to investigate and respond to access-related security incidents.
  • Develop and implement measures to prevent unauthorized access.
  • Training and Awareness:
  • Conduct training sessions for end-users and IT personnel on access management best practices and security awareness.
  • Foster a culture of security and compliance throughout the organization.
  • Documentation and Reporting:
  • Maintain accurate and up-to-date documentation related to access management and GRC activities.
  • Generate regular reports for management on access compliance and security metrics.

Qualifications:

  • Bachelor’s degree or a related field.
  • Proven experience in authorization management and GRC activities.
  • Familiarity with industry standards and regulations such as GDPR, HIPAA, or SOX.
  • Experience with GRC tools and platforms.
  • Knowledge of identity and access management (IAM) principles and technologies.
  • Strong understanding of role-based access controls (RBAC) and segregation of duties (SoD).
  • Excellent communication and interpersonal skills.
  • Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified in Risk and Information Systems Control (CRISC) are a plus.

Benefits:

Competitive salary
Family Status.
Comprehensive health insurance.
Annual Vacation
Professional development opportunities.
Other benefits

How to Apply:

Interested candidates are invited to submit their resume and a cover letter detailing their experience to [email protected]

STG is an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Job Category: Authorization and GRC Specialist
Job Type: Full Time
Job Location: Saudi Arabia

Apply for this position

Allowed Type(s): .pdf
Scroll to Top