CS Compliance Principle Expert

Join to apply for the CS Compliance Principle Expert role at stc
.

The role holder is responsible for supervising compliance framework updates, ensuring regulatory adherence, and conducting compliance checks and audits, establishing reporting mechanisms, and providing independent assurance to management. The role holder shall carry out duties in accordance with the stipulated business policies and procedures.

• Supervise stc's compliance framework updates including key procedures and stakeholders.
• Maintain a list of non-conform ant departments and liaise with them to help them become compliance compliant and escalates when necessary.
• Ensure compliance with local regulation, continuous assessments, evidence collection and maintenance.
• Establish reporting mechanisms to ensure management oversight on compliance related matters.
• Lead performing the compliance checks and security audits on stc KSA and stc group subsidiaries and 3rd parties.
• Ensure providing independent assurance to management via compliance assessments by assessing the target environment and reporting the gaps to relevant cybersecurity and business stakeholders.
• Develop compliance calendar for all compliance initiatives throughout the year in alignment with Group Compliance.
• Ensure alignment with stc KSA Compliance function through regular reporting of compliance activities and non-compliance issues.
• Ensure the non-compliance findings identified during security audits are treated effectively, compliance requirements are met, and agreed security controls are implemented within agreed timelines.
• Provide feedback to Governance on compliance framework to ensure it remains aligned with industry best practices (ISO 27001: 2013 etc.).
• Communicate non-compliance findings based on compliance assessments – covering policy, regulatory, legal findings – to stakeholders and follow up and elevate non-compliance issues.
• Provide stc KSA Compliance Management Department with the compliance-related training needs and awareness content, and offer support with delivery when necessary.
• Collaborate with stc KSA Compliance to provide required inputs, information, and reports to plan and validate compliance assessment initiatives related to the sectors.
• Manage cybersecurity compliance assessments for stc group subsidiaries along with definition of cs index baseline and targets to be shared through the CSDG Enablement.
• Ensure proper alignment with CSDG Enablement regarding any topics requiring sharing with stc group subsidiaries.
• Ensure firewalls are managed and operated securely in alignment with internal and external cybersecurity requirements by conducting periodic compliance checks and integrating firewalls with supported technologies to maintain secure management.

A minimum of 8 years.

Related experience in leading the Cyber Security function for a large organization preferably within the telecom industry.

STP
- Similar Director Manager

Bachelor Degree in Computer Science or Information Technology.

Mid-Senior level.

Full-time.

Education and Training.

Telecommunications.

Riyadh, Saudi Arabia.

QAR 4,000.00 – QAR 9,000.00.