Senior Cybersecurity GRC Consultant

Location: Abu Dhabi, UAE

Type: Full-time, Onsite

A leading organisation in the region is growing its cybersecurity governance team and is seeking an experienced Senior Cybersecurity GRC Consultant to support compliance, risk, and cloud governance across a modern, large-scale technology environment.

About the Role

You’ll play a key part in shaping the organisation’s security and compliance posture across cloud, hybrid, and enterprise platforms. This is a high-visibility role involving policy development, assurance activities, audit leadership, and regular engagement with senior stakeholders.

Key Responsibilities

• Translate major security frameworks into practical internal policies and controls
• Design and maintain governance models for cloud and hybrid environments
• Lead internal/external audits and certification readiness
• Conduct risk assessments, control testing, and gap analyses
• Work closely with security, tech teams, auditors, and business stakeholders
• Develop clear executive reports and support ongoing improvement initiatives

What We’re Looking For

• Minimum 5 years in cybersecurity governance, compliance, risk, or audit
• Experience with frameworks such as ISO 27001, NIST, SOC 2, PCI DSS, GDPR
• Strong understanding of cloud security responsibilities (AWS/Azure/GCP)
• Background in running audits and assurance programs
• Confident communicator with senior stakeholders
• Experience with GRC or compliance automation tools (Archer, OneTrust, ServiceNow GRC, etc.)

Preferred Certifications

CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer/Auditor, CCSK, cloud security certs, GDPR Practitioner.