Gentis
Gentis
Accueil

JobsMissionsMédiaÉtudes de cas
Contactez-nous à tout moment via
hello@gentis.com

Nos dernières offres

Rechercher une opportunité par mot-clé

Security Solution Analyst - GRC Cybersecurity

30/10/2024
PermanentSaudi ArabiaOn site17000 SR21000 SR
Lien copié
Description du poste

A leading organization in Saudi Arabia is seeking a Cybersecurity Compliance Officer to join their GRC team. The role focuses on developing and maintaining security governance frameworks, policies, and procedures to ensure alignment with regulatory requirements. The candidate will drive compliance with national cybersecurity regulations, data protection laws, and international security standards.


Key responsibilities include monitoring regulatory compliance, conducting internal security assessments, managing GRC technology platforms, and coordinating external audit engagements. The position requires regular reporting to GRC leadership and supporting organizational certification initiatives.


The ideal candidate will have experience in implementing and maintaining comprehensive security compliance programs while ensuring adherence to industry and regulatory requirements.


Detailed Responsibilities:

  • Develop and maintain comprehensive cybersecurity governance frameworks, policies, and procedures ensuring alignment with regulatory requirements, including NCA controls.
  • Drive compliance with key security standards and regulations including PDPL, ISO 27001, and other applicable frameworks. Monitor and implement emerging requirements.
  • Perform technical security reviews of system configurations, network architecture, and control implementations to validate compliance and security best practices.
  • Lead internal security assessments and compliance reviews to identify and remediate control gaps.
  • Implement and administer GRC automation platforms to enhance compliance monitoring efficiency and reporting capabilities.
  • Design and oversee control attestation procedures, working with control owners to validate and document control effectiveness.
  • Develop and execute third-party security assessment program to evaluate and monitor vendor security practices.
  • Generate regular security status reports for GRC management. Effectively communicate security risks, issues and recommendations to key stakeholders.
  • Manage external audit engagements and certification processes to ensure successful outcomes and continued compliance.
Description du profil

Key Competencies:

  • Information Security Governance: Advanced knowledge of security frameworks, policies, and strategic integration of security with business operations. Strong understanding of cyber resilience principles.
  • Regulatory & Standards Expertise: Comprehensive understanding of data protection laws, international security standards (ISO), and industry regulations. Ability to interpret and apply evolving requirements.
  • Technical Security Knowledge: Proficiency in assessing system security configurations, network architecture, and control implementations. Deep understanding of security best practices.
  • Security Assessment: Expert capability in conducting security assessments and compliance reviews. Strong analytical skills in control effectiveness evaluation.
  • GRC Technology: Advanced knowledge of GRC platforms and automation solutions. Expertise in optimizing compliance monitoring and reporting processes.
  • Control Framework: Deep understanding of control validation procedures and attestation processes. Knowledge of control documentation best practices.
  • Third-Party Security: Expert knowledge of vendor security assessment methodologies and supply chain risk management principles.
  • Strategic Communication: Strong ability to articulate complex security concepts to various stakeholders. Excellence in security status reporting and presentation.
  • Audit Management: In-depth knowledge of external audit and certification processes. Strong understanding of audit evidence requirements and remediation approaches.
  • Policy Architecture: Expert understanding of control frameworks and their relationship to organizational policies. Proficiency in mapping security requirements to operational controls.


Core Responsibilities:

  • Information Security Governance: Develop and oversee security frameworks, policies, and procedures aligned with business objectives. Integrate security strategy with operations to maintain business continuity and cyber resilience.
  • Regulatory & Standards Management: Ensure adherence to data protection laws, international security standards (ISO), and industry regulations. Monitor evolving requirements and update security practices accordingly.
  • Technical Security Oversight: Assess and validate system security configurations, network architecture, and control implementations against security requirements and industry best practices.
  • Security Assurance: Lead internal security assessments and compliance reviews. Evaluate control effectiveness and drive continuous improvement initiatives.
  • Technology & Process Optimization: Implement and manage GRC platforms and automation solutions to enhance compliance monitoring and reporting efficiency.
  • Control Management: Design and maintain control validation procedures, ensuring proper documentation and attestation from control owners.
  • Third-Party Risk Management: Develop and execute vendor security assessment programs. Evaluate and monitor external partner security postures to manage supply chain risks.
  • Stakeholder Management: Deliver regular status updates to GRC leadership on security posture and program effectiveness. Drive clear communication channels with key stakeholders.
  • Audit Coordination: Support external audit engagements and certification processes. Partner with auditors and internal teams to facilitate successful outcomes.
  • Policy Framework Administration: Maintain unified control framework mapping security requirements to organizational policies. Establish clear relationships between policies, standards, and operational controls.


Education & Professional Certifications:


· Advanced degree in Computing/Technology field (Bachelor's/Master's in Computer Science or related)

· Governance, Risk & Compliance certification (ISC2 GRC)

· CISSP (Certified Information Security Professional)

· CISA (Certified Information Systems Auditor)

· Security Controls Framework certification (SANS SEC566)

· OSCP (Offensive Security Certified Professional)

Lien copié

Opportunités similaires

Sales
17/07/2025

Technical Presales Solutions Engineer

Role Overview: This position is responsible for supporting sales initiatives by delivering comprehensive technical expertise throughout the presales process.Collaborate with sales teams to develop technical deliverables, including solution designs, proposals, and demo environments for client engagements.Create detailed technical design documents, architecture diagrams, and solution blueprints to clearly represent proposed software solutions.Draft high-quality, technically accurate responses to RFPs and RFIs, ensuring alignment with client requirements and our capabilities.Build and maintain demo scripts, sample datasets, and backend environments to support product demonstrations and presales evaluations.Translate customer requirements into scalable, customized technical solutions that align with our client software portfolio and enterprise IT environments.Provide technical support during proof-of-concept phases and early-stage project discussions, addressing both technical and integration aspects.Stay current on product updates, integration abilities, and new features, ensuring solutions are accurately positioned and communicated.Expected Skills and Background:Bachelor’s degree in Computer Science, Software Engineering, Information Systems, or a related discipline.3–5 years of professional experience in technical presales support, solutions engineering, or software technical consulting.Proficiency in solution selling, technical sales training, proposal writing, APIs and integration, and delivering engaging product demonstrations.Experience with basic to intermediate software development (scripting, APIs), technical documentation, and modern backend technologies.Ability to clearly explain technical concepts to both technical and non-technical stakeholders.Fluency in English required; working knowledge of Russian considered an asset.

PermanentUnited Arab EmiratesOn site
ICT
17/07/2025

Senior Frontend Engineer

Location: Dubai, UAE   |   Employment: Full-Time, On-SiteTake ownership of the UI layer as a Senior Frontend Engineer, delivering clean, scalable, and high-performing user interfaces. Leverage React and TypeScript to architect, build, and optimize the front end of a next-generation digital product. Collaborate closely with product managers and backend developers to ensure seamless integration and an excellent user experience.Design and implement features using React, TypeScript, JavaScript, and related web technologiesDevelop and maintain state management solutions with ReduxIntegrate and consume REST APIs to deliver robust data-driven interfacesWrite, review, and maintain high-quality, testable code following best practices in version control with GitPartner with product and backend teams to define requirements and ensure technical feasibilityOptimize applications for maximum speed, scalability, and usabilityParticipate in code reviews, technical discussions, and architecture planningUphold the latest standards in HTML5 and CSS3 for cross-browser compatibility and responsive designRequirements:Extensive experience in frontend development using React and TypeScriptProficient in English (B2+ level) for effective communication within an international teamFamiliarity with modern web development tools and workflows (such as Redux, REST APIs, and Git)Located in Dubai and available for full-time, on-site collaborationRussian language skills are a plusThe role offers the opportunity to drive front-end innovation in a collaborative, tech-forward environment, working in a vibrant office setting with motivated peers.

PermanentUnited Arab EmiratesOn site
ICT
08/07/2025

Développeur Backend Laravel Sénior

En tant que Développeur Backend Laravel Sénior, le poste implique d’être pleinement investi dans la conception, l’implémentation et l’optimisation de la plateforme applicative. Tu t’attacheras à développer de nouvelles fonctionnalités, tout en perfectionnant celles déjà existantes pour garantir une performance optimale.Participer activement au cycle de développement, du découpage du backlog jusqu’aux mises en production en mode sprint.Coder des modules complexes en reliant les problématiques métiers et l’architecture technique.Maintenir et améliorer la qualité du code, et appliquer rigoureusement des tests unitaires et fonctionnels avec PHPUnit.Diffuser et formaliser les bonnes pratiques de développement au sein de l’équipe technique.Interfacer et sécuriser les échanges d’informations à l’aide d’API REST et d’authentification OAuth2.Utiliser la stack technique composée de Laravel/PHP, MySQL, Docker, GitLab CI/CD, Jira et AWS, avec une expertise attendue sur le développement de packages Composer, le stockage de données (ElasticSearch) et l’architecture event sourcing.Collaborer dans un environnement d’intégration et de livraison continue (CI/CD) et sur des problématiques DevOps liées à l’infrastructure cloud et au déploiement.Contribuer à l’évolution technique de l’équipe, tout en participant au maintien d’un environnement de travail convivial et innovant.

Fixed termBelgiumOn site
ICT
07/07/2025

Medior Full-Stack Developer & Tech Lead (NextJS, Supabase, TypeScript)

Functieomschrijving:Bijdragen aan de ontwikkeling van een moderne NextJS-toepassing die gebruikmaakt van Supabase, Deno en TypeScript, met een focus op zowel frontend- als backendwerkzaamheden.Geleidelijk het technisch leiderschap overnemen en de richting bepalen van het project, inclusief het maken van beslissingen over architectuur en technologieën.Verantwoordelijkheid nemen voor de full-stack ontwikkeling, waaronder het ontwerpen, implementeren en onderhouden van microservices en het opzetten van databasemodellen (bij voorkeur PostgreSQL).Binnen een team in Gent (Zwijnaarde) werken, waarvan drie tot vijf dagen per week op kantoor, in nauwe samenwerking met collega’s.Actief communiceren over technische keuzes, vooruitgang en de visie voor het project, zowel in het Nederlands als het Engels.Verantwoordelijkheden:Nieuwe functionaliteiten uitdenken en ontwikkelen voor het platform.Architecturale beslissingen nemen met betrekking tot microservices en schaalbaarheid.Onderhouden en verbeteren van bestaande codebase met TypeScript en JavaScript.Beheren van client-server communicatie en (optioneel) bijdragen aan productmanagementtaken.Zorg dragen voor actuele kennis van recente technische ontwikkelingen.Wij bieden:Een jong, dynamisch team.Flexibiliteit in werktijden en zelfstandigheid in het uitvoeren van taken.Beschikking over een bedrijfs-laptop (MacBook).

Fixed termBelgiumOn site

Le job de vos rêves n’est plus qu’à un clic.

Envoyez-nous votre CV et nous vous mettrons directement en contact avec l'un de nos recruteurs spécialisés qui vous guidera dans la recherche de l'emploi de vos rêves !

Numéro de téléphone
Phone
Candidats

Témoignages

Rejoignez notre communauté active de professionnels et découvrez votre potentiel.

Pour vous tenir au courant de nos dernières actualités.