IT GRC Manager
RiyadhOn-siteFull-time
AI Summary
IT GRC Manager responsible for governing, auditing, and ensuring compliance of IT controls across multi-site environments, focusing on IPO/regulatory readiness, risk management, and policy enforcement.
About this role
Welcome to Ninja, where we believe that we are shaping the future. At Ninja, we are passionate about creating user-friendly and visually stunning web applications that push the boundaries in design and innovation. We are looking for an experienced IT GRC Manager to enhance our Governance, Risk, and Compliance framework.
Key Responsibilities
- IPO & Regulatory Compliance: Lead IT compliance gap assessments against Saudi NCA ECC, PDPL, and CMA standards. Maintain IT controls evidence for IPO audits and collaborate with auditors, legal, and finance teams to ensure compliance and timely gap closure.
- Governance & Policy: Enforce IT policies across 150+ locations, manage IT risk register, and coordinate governance reviews with CIO and CISO to align policies with security and business goals.
- Risk Management: Conduct annual and ad-hoc IT risk assessments, set risk appetites, monitor vendor risks, and implement mitigation strategies to safeguard IT assets.
- Audit & Assurance: Oversee IT audits, prepare evidence, track findings, ensure timely remediation, and report progress to the CIO.
Requirements
- 5+ years in IT GRC, audit, or security compliance, with preferred experience in IPO, M&A, or regulatory listings.
- Strong knowledge of Saudi NCA ECC and PDPL compliance.
- Experience with cloud platforms (AWS, GCP) from a controls and compliance perspective.
- Skilled in managing IT governance across multi-site or multi-country environments.
- Certifications such as CISA (preferred), CRISC, or ISO 27001 Lead Auditor/Implementer required.
- Familiar with frameworks including ISO 27001, NIST CSF, COBIT, and SOC 2.
- Excellent report-writing skills and fluency in Arabic and English.
Certifications (minimum of one required):
- CISA — preferred
- CRISC
- ISO 27001 Lead Auditor or Implementer
Skills:
- In-depth understanding of ISO 27001, NIST CSF, COBIT, and SOC 2 frameworks
- Capability to convert regulatory requirements into effective IT controls
- Exceptional written communication skills — reports will be submitted to the CIO, CISO, and Board members
- Fluency in both Arabic and English is mandatory
Skills
Audit ManagementAWSCISACOBITControl MappingCRISCGCPGRC FrameworksGRC GovernanceIPO ReadinessISO 27001ISO 27001 Lead Auditor/ImplementerIT ControlsITGCNIST CSFPDPLPolicy DocumentationPolicy EnforcementRegulatory ComplianceRisk AssessmentSaudi NCA ECCSOC 2Vendor Risk
Explore related jobs
More jobs at Ninja
Similar Audit Management jobs
Jobs in Riyadh
- Business Analyst (SAP Engagement) - 1.5-Month EngagementMENA Consultant · Riyadh, KSA
Senior Business Finance ManagerBeyond ONE · Riyadh, Riyadh- Senior Manager - CreditTamara · Riyadh, Saudi Arabia
- MLead Product Manager – Anti Fraud PlatformMOZN ARTIFICIAL INTELLIGENCE SYSTEMS LLC · Riyadh, Saudi Arabia
- Sales Engineers | Jeddah & Jubail, Saudi ArabiaHudson Manpower · Riyadh, Riyadh Province
Assistant Professor of Business ManagementBurjline Builders · Riyadh, Saudi Arabia
