Industries
- Consumer Products
- Energy & Natural Resources
- Education Sector
- Insurance Services
- Financial Services
- Healthcare Sector
- Manufacturing
- Not For Profit
- Public Sector
- Real Estate & Construction Sector
- Technology, Media & Telecommunications
- Travel, Tourism & Leisure
- Food and Restaurant
- Professional Services
Consumer Products
Growing demand in energy and resources, plus developments in new forms of energy and investment in sustainability sees significant shifts in these sectors.
Education Sector
Insurance Services
Forward-thinking organisations must examine every part of their business to turn the challenges facing the financial services industry into opportunities.
We’ve worked with all types of healthcare clients, including health IT, provider, payer, pharmaceutical and life science organisations.
Manufacturing
Working with all types of not for profit clients; charities, housing associations, education providers and trade unions, we understand your unique issues.
Our public sector teams provide services tailored to your industry in four key service areas, Operational efficiency, Infrastructure, Governance, and Audit.
Supporting you with pragmatic, tailor-made solutions for improvement and growth, through every stage of the business life cycle.
Successful businesses are responding by continually revising their business models, business strategies and product mix.
Dynamic businesses need to move with speed and purpose if they want to capitalise on opportunities in travel, tourism & leisure.
Food and Restaurant
Professional Services
Our progressive thinkers offer services to help create, protect and transform value today, so you have opportunity to thrive tomorrow.
Our progressive thinkers offer services to help create, protect and transform value today, so you have opportunity to thrive tomorrow.
-
Business Risk Service
Organisations must understand and manage risk and seek an appropriate balance between risk and opportunities.
-
Transaction Advisory, M& A, Business Consultancy
Transaction Advisory, M& A, Business Consultancy
-
IT Advisory
IT Advisory
-
Business Process Solutions
Business Process Solutions
Our services can strengthen your business and stakeholders' confidence. You'll receive professionally verified results and insights that help you grow.
-
Managing the VAT Audit
Managing the VAT Audit
-
Transfer Pricing
Global transfer pricing is all about understanding your business and the value drivers of your industry in an ever-changing environment.
Our legal services help you understand the legal risks and opportunities when making business decisions.
Governance, Risk & Compliance (GRC) Consultant
Governance, Risk & Compliance (GRC) Consultant
Grant Thornton Bahrain looking for a GRC consultant role. As an integral member of the IT Advisory team, reporting to the Director, the responsibility of the GRC Consultant is to carry out the engagements related to policy compliance, security requirements governance, as well as risk management. The ideal candidate will have knowledge of risk management, security and privacy practices and be an effective communicator, both written and verbal.
What you will be responsible for:
- Develop and participate in implementation of client initiatives focused on the reduction of technology risk, governance and compliance to policies and external regulatory compliance
- Evaluating business and IT risks
- Developing IT security standards, procedures, and controls to manage risks. Improve client’s security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.
- Evaluation information security threats and their impact clients IT environment
- Supporting the Senior team members, assisting with the analysis of requirements and design of clients’ information security posture, as well as Legal, Regulatory and Scheme security requirements.
- Supporting the senior team members in delivery of work streams for clients in compliance standards such as PCI DSS, ISO27001, EU GDPR and Bahrain PDPL and incident management disciplines.
- Performing and investigating internal and external information security risk and exceptions assessments. Assessing incidents, vulnerability management, scans, patching status, secure baselines, penetration test result, phishing, and social engineering tests and attacks.
- Documenting and reporting control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities.
- Staying current on best practices and technological advancements and acts as a technical resource for security assessment and regulatory compliance.
- Performing other related duties as assigned from time to time based on the business requirements
Qualification and skills:
- 3- 5 years’ experience in IT Governance, Risk & Compliance
- Understanding of ISO 27001, PCI DSS, ITIL, ITSM, COBIT standards preferred
- Experience of risk management principles and associated methodologies
- Ideally will have a CEH, CISSP, CISA or CISM qualification
- Proven ability to make sound pragmatic decisions and judgements under tight timelines.
- Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way both internally and externally.