Job Description

Roles & Responsibilities

About the Role: As the Governance, Risk and Compliance Manager based in the UAE and KSA, you will drive the development and implementation of robust GRC programs aligned with regional and international standards. You will partner with business units to embed governance frameworks, lead risk assessments, ensure regulatory compliance, manage internal audits, and maintain ISO certifications, reporting directly to senior leadership. Responsibilities: Design, implement, and maintain governance frameworks (e.g., COBIT, COSO) tailored for UAE and KSA operations Lead enterprise risk management activities, including risk identification, assessment, and mitigation Ensure compliance with local and international regulations, liaising with regulators in the UAE and KSA Plan and conduct internal audits to evaluate the effectiveness of controls and processes Manage and sustain ISO standards (e.g., ISO 27001, ISO 31000), including certification and recertification efforts Develop and deliver GRC training programs for stakeholders across the organization Prepare and present regular GRC reports and dashboards to senior management and board committees Collaborate with cross-functional teams to remediate audit findings and compliance gaps Required Qualifications: 5–10 years of experience in governance, risk, and compliance roles within financial services or related industries Proven expertise in governance frameworks such as COBIT and COSO Strong technical knowledge of risk management methodologies (e.g., ISO 31000) Hands-on experience with regulatory compliance requirements in the UAE and KSA Proficiency in planning and executing internal audits Practical experience managing ISO standards, including ISO 27001 and ISO 9001 Excellent analytical, communication, and stakeholder management skills Bachelor’s degree in Finance, Risk Management, Business Administration, or a related field Preferred Qualifications: Professional certifications such as CISA, CRISC, CGEIT, or ISO Lead Auditor Master’s degree in a relevant discipline Experience working with GCC regulators such as the UAE Central Bank or SAMA Familiarity with data privacy regulations and SOC frameworks Arabic language proficiency