Job Description
We are seeking an experienced GRC Lead to drive governance, risk, and compliance activities
in Nawy. This role ensures that security risks are identified, assessed, and managed while
maintaining compliance with relevant regulatory and industry standards.
The GRC lead leads the risk governance initiatives, oversees audits, develops policies,
manages security awareness, and partners closely with engineering, product, and legal teams
to ensure secure-by-design operations across the entire organization.
Responsibilities
● Maintain an enterprise-wide information security governance & ISMS framework that
aligns with business objectives, regulatory requirements, and industry best practices.
● Develop, maintain, and enforce security policies, standards, and procedures.
● Lead strategic planning initiatives for security risk management, ensuring alignment
with ISO 27001 requirements.
● Design, implement, and manage a...