- Governance, Risk & Compliance (GRC) Manager

Requirements

We are seeking an experienced Governance, Risk & Compliance (GRC) Manager to lead IT governance, risk, and compliance initiatives in alignment with SAMA IT Governance Framework and international best practices. The ideal candidate will bring extensive experience in banking/financial services and a strong track record in regulatory compliance, IT risk management, and enterprise governance frameworks (COBIT, ITIL, ISO).

Key Responsibilities

• Develop, implement, and manage the IT Governance & Compliance framework across the organization.
• Ensure full alignment with SAMA IT Governance Framework (ITGF), local regulatory requirements, and global standards (COBIT, ISO 27001, ISO 20000, ITIL).
• Lead IT audits, risk assessments, and compliance reviews to ensure effective controls and mitigate risks.
• Drive enterprise-wide risk management strategies and regulatory compliance initiatives.
• Oversee policies, procedures, and process improvements to strengthen governance and operational excellence.
• Collaborate with internal stakeholders and external regulators (e.g., SAMA) to ensure audit readiness and compliance.
• Lead business continuity and disaster recovery planning (BCP & DRP) for IT operations.
• Provide strategic advisory on IT contracts, budgets, licensing compliance, and vendor management.
• Coach and guide teams on IT governance, security, and compliance best practices.

Qualifications & Experience

• Bachelor’s or Master’s degree in IT, Finance, or related field (MBA/Engineering preferred).
• 10+ years of experience in IT Governance, Risk, and Compliance, with at least 5 years in banking or financial services.
• Hands-on experience with SAMA IT Governance Framework (ITGF) implementation or equivalent regulatory frameworks.
• Strong knowledge of COBIT, ITIL, ISO 27001, ISO 20000, NIST, PCI DSS.
• Proven experience in IT audits, regulatory compliance, and risk management.
• Certifications preferred: CISA, CISM, CISSP, CGEIT, GRCP/GRCA, COBIT2019, ITIL.
• Excellent leadership, stakeholder management, and communication skills.
• Prior experience in Saudi Arabia or GCC region is a strong plus.