Senior Consultant-GRC
2 days ago
We are seeking a highly experienced Senior Consultant with strong expertise in Information Security Management Systems (ISMS) and IT Governance, Risk, and Compliance (IT GRC). The ideal candidate should have a proven track record of implementing and auditing ISO 27001, developing and designing IT GRC frameworks based on COBIT, NIST, and conducting risk assessments to ensure compliance with industry standards and regulations, like GDPR, SAMA, NESA, NCA, PDPL etc.
Job Description:
ISMS Responsibilities:
- Lead the implementation, management, and auditing of ISO 27001-based Information Security Management Systems (ISMS).
- Perform gap assessments to identify areas of non-compliance and develop corrective action plans.
- Conduct risk assessments and ensure risk mitigation strategies are aligned with business objectives.
- Develop and refine ISMS policies, procedures, and controls in compliance with ISO 27001 and other relevant standards.
- Support clients in achieving and maintaining ISO 27001 certification, including audit readiness.
- Provide guidance on security incident management and business continuity planning.
- Support clients in achieving and maintaining ISO 27001 certification, including audit readiness.
- Develop and refine ISMS policies, procedures, and controls in compliance with ISO 27001 and other relevant standards.
- Conduct risk assessments and ensure risk mitigation strategies are aligned with business objectives.
- Perform gap assessments to identify areas of non-compliance and develop corrective action plans.
IT GRC Responsibilities:
- Develop and implement IT governance frameworks based on COBIT, NIST, and other best practices.
- Conduct IT risk assessments and define risk treatment plans.
- Ensure compliance with regulatory requirements such as GDPR, NIST, GDPR, and local cybersecurity regulations.
- Design and implement IT compliance and risk management programs, policies, and controls.
- Provide advisory services on third-party/vendor risk management.
- Assist organizations in aligning IT strategy with business objectives through effective governance practices.
- Master's or Bachelor's degree in Information Security, Computer Science, or IT-related field.
- Certifications (preferred): ISO 27001 Lead Implementer / Lead Auditor, CISM, CRISC, CISSP, CISA, or COBIT 2019 Foundation.
- Experience: Minimum 6–8 years of experience in ISMS and IT GRC consulting, implementation, or auditing.
- Hands-on experience in conducting ISO 27001 gap assessments, risk assessments, and audits.
- Strong practical knowledge of IT governance frameworks (COBIT, NIST, ITIL, etc.).
- Experience in handling regulatory compliance requirements such as GDPR, NIST, and PCI-DSS.
- Excellent report writing, communication, and stakeholder management skills.
- Assist organizations in aligning IT strategy with business objectives through effective governance practices.
- Provide advisory services on third-party/vendor risk management.
- Design and implement IT compliance and risk management programs, policies, and controls.
- Ensure compliance with regulatory requirements such as GDPR, NIST, GDPR, and local cybersecurity regulations.
- Conduct IT risk assessments and define risk treatment plans.
-
consultant - grc
4 weeks ago
Karachi, Sindh, Pakistan Risk Associates - EMEA & Asia Full timeJoin to apply for the CONSULTANT - GRC role at Risk Associates - EMEA & AsiaGet AI-powered advice on this job and more exclusive features.Key ResponsibilitiesLead Cybersecurity assessments, including risk assessments, vulnerability assessments, and compliance audits, to evaluate clients' Cybersecurity posture.Develop and implement Cybersecurity frameworks,...
-
Senior Consultant
2 weeks ago
Karachi, Sindh, Pakistan Inbox Business Technologies Full timeWe are seeking a highly experienced Senior Consultant with strong expertise in Information Security Management Systems (ISMS) and IT Governance, Risk, and Compliance (IT GRC). The ideal candidate should have a proven track record of implementing and auditing ISO 27001, developing and designing IT GRC frameworks based on COBIT, NIST, and conducting risk...
-
Senior Cybersecurity Consultant
7 days ago
Karachi, Sindh, Pakistan beBee Careers Full timeWe are seeking a highly experienced Information Security Specialist with strong expertise in IT Governance, Risk, and Compliance (IT GRC) frameworks.Key Responsibilities:Information Security Management System (ISMS)Lead the implementation, management, and auditing of ISO 27001-based ISMS to ensure compliance with industry standards and regulations.Conduct...
-
Senior Information Security Specialist
2 days ago
Karachi, Sindh, Pakistan beBee Careers Full timeJob Description: We are seeking a highly experienced Senior Consultant with strong expertise in Information Security Management Systems (ISMS) and IT Governance, Risk, and Compliance (IT GRC).The ideal candidate should have a proven track record of implementing and auditing ISO 27001, developing and designing IT GRC frameworks based on COBIT, NIST, and...
-
Senior Consultant
3 weeks ago
Karachi, Sindh, Pakistan Inbox Business Technologies Full time1 month ago Be among the first 25 applicantsWe at Inbox Business Technologies, are seeking a Senior Consultant - ITSM with expertise in ISO/IEC 20000 implementation and ITIL framework. The ideal candidate should have 6 to 8 years of proven experience in IT Service Management, including end-to-end implementation of ISO 20000 ITSM, process optimization, audit...
-
Head Governance Risk
1 day ago
Karachi, Sindh, Pakistan Gatronova Full timeDirect message the job poster from GatronovaPosition Summary:We are seeking an experienced and visionary Head of Governance, Risk, and Compliance (GRC) to lead and strengthen the organization's SAP GRC framework and enterprise risk posture. This role is responsible for overseeing access control governance, segregation of duties (SoD), role design, SAP...
-
Seniors Consultant
2 weeks ago
Karachi, Sindh, Pakistan Alliance for Sustainability and Knowledge (ASK) Full timeGet AI-powered advice on this job and more exclusive features.We're Hiring – Senior Consultant (Sustainability & HSE Systems)Location: Karachi (with project-based travel as needed)We are seeking a Senior Consultant with 3–5 years of relevant experience in sustainability reporting, GHG emissions accounting, and HSE system development.The ideal candidate...
-
Foreign Educational Consultant
4 weeks ago
Karachi, Sindh, Pakistan Times Consultant (Pvt.) Ltd. Full time2 weeks ago Be among the first 25 applicantsGet AI-powered advice on this job and more exclusive features.Direct message the job poster from Times Consultant (Pvt.) Ltd.Company OverviewEstablished in 2004, Times Consultant (Pvt) Ltd., a subsidiary of Times Group Limited, is Pakistan's leading foreign education consultancy. Representing over 500 global...
-
Senior Educational Consultant
4 days ago
Karachi, Sindh, Pakistan EDU NEST OVERSEAS EDUCATION PVT. LTD Full time2 days ago Be among the first 25 applicantsDirect message the job poster from EDU NEST OVERSEAS EDUCATION PVT. LTDVersatile Professional | Manager Accounts & Finance | Edu Nest Overseas Consultancy | Taxation and Legal ExpertCompany DescriptionEDU NEST Overseas Education Consultancy is a Karachi-based consultancy that helps students find the best academic...
-
Senior Educational Consultant
2 weeks ago
Karachi, Sindh, Pakistan beBee Careers Full timeUnlock your potential as a senior educational consultant and make a meaningful impact in the lives of students.About the RoleThis is a full-time, on-site opportunity for a senior educational counselor to provide educational consulting and student counseling services to help students achieve their academic goals.The ideal candidate will possess excellent...
