RemoteLeaf Logo
Log in Sign up

GRC and Security Analyst

17 hours, 26 minutes ago
Saudi Arabia
Full-time
Junior
Security Analyst
Cybersecurity
Bash Penetration Testing Python Ruby Ruby on Rails
Apply Now
Lucidya

Lucidya

Lucidya provides a leading platform for customer experience management in the Arab World, utilizing AI-driven social media analytics and monitoring tools to enhance strategic decision-making and improve brand performance across various social channels.

Media
51-250
Founded 2016
$7M raised
View All Jobs 9

Description

  • Support security, privacy, and compliance initiatives with GRC and Security Engineering teams across Saudi Arabia, Qatar, international regions, and the U.S. market.
  • Assist with implementing and maintaining ISO/IEC 27001, ISO/IEC 42001, NCA, SOC 2, and related controls.
  • Support U.S. market migration by aligning security and compliance practices with SOC 2, NIST frameworks, and U.S. data privacy requirements.
  • Contribute to regional data protection compliance activities for KSA PDPL, Qatar PDPL, and U.S. state privacy laws.
  • Participate in creating, updating, and maintaining security, privacy, and AI governance policies, procedures, and control documentation.
  • Handle document control, evidence collection, and audit readiness for internal reviews, customer assessments, and external audits.
  • Review security controls for cloud infrastructure, SaaS environments, APIs, and integrations.
  • Track compliance tasks, findings, and remediation actions in coordination with GRC and Security Engineering teams.
  • Collaborate with engineering, product, and operations teams to address security and compliance requirements in daily workflows.
  • Support incident response documentation, risk assessments, and compliance reporting as needed.

Requirements

  • 2-4 years of experience in a similar Security Analyst or GRC role.
  • Experience working with US-based SaaS companies and B2B SaaS environments.
  • Strong understanding of AI and U.S. compliance frameworks, including ISO/IEC 42001, NIST, and U.S. data privacy regulations.
  • Knowledge of ISO/IEC 27001 and ISO/IEC 42001 implementation, with implementer certification preferred.
  • Understanding of SOC 2 and practical experience with NCA requirements.
  • GDPR knowledge is a plus.
  • Knowledge of penetration testing and vulnerability assessment.
  • Basic scripting ability in Python or Bash.
  • Experience supporting code review for deployments using automated tools and security reviews of CI/CD pipelines.
  • Ruby/Rails code review experience is highly advantageous.
  • CISM certification preferred.
  • ISO/IEC 24001 Lead Implementer certification mandatory.
  • ISO/IEC 27001 Lead Implementer certification mandatory.
  • Excellent professional documentation skills.
  • Strong organizational skills and follow-up ability.
  • Experience with document control and audit evidence.
  • Ability to work effectively across distributed, cross-functional teams.
  • Prior remote work with U.S.-based teams is nice to have.
  • Experience supporting global compliance programs is nice to have.
  • Hands-on involvement in multiple certification cycles is nice to have.

Benefits

  • Opportunity to influence and enhance Lucidya’s governance, risk, and compliance practices at scale.
  • Chance to strengthen security controls across the company.
  • Opportunity to drive compliance initiatives in a fast-growing AI company.
  • Role contributes to mitigating organizational risk.
  • Work that supports a culture of security across the company.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

FirmaTRUST

Security Operations Center (SOC) Engineer

FirmaTRUST Internet Software & Services

ICE Consulting is hiring a Security Operations Center (SOC) Engineer to monitor, analyze, and respond to security threats while strengthening the company’s and clients’ security posture.

Pakistan Full-time Mid Level Security Analyst Security Engineer
DNS HTTP Metasploit PowerShell Python SIEM Splunk TCP/IP
1 hour, 4 minutes ago
ChargePoint

Staff GRC Engineering Specialist

ChargePoint 1K-5K Electric Utilities

ChargePoint is hiring a GRC Engineering Specialist to lead ITGC SOX compliance and automate governance, risk, and compliance processes across global security and audit frameworks.

India Full-time Lead Security Analyst
AWS CI/CD GCP GitHub NetSuite Salesforce
4 hours, 18 minutes ago
Flip App

GRC & Information Security Specialist (m/w/d)

Flip App 51-250 Internet Software & Services

Flip is hiring a GRC & Information Security Specialist to manage compliance, audits, and policy governance across multiple security frameworks in support of its international growth.

Germany Full-time Junior Compliance Manager Security Analyst
10 hours, 59 minutes ago
SupportYourApp

(fluent Ukrainian) SOC Incident Response Specialist (remote)

SupportYourApp 251-1K Internet Software & Services

SupportYourApp is hiring a SOC Incident Response Specialist to handle security and operational incidents for its global client base, supporting investigations, response, and security process improvement.

Romania Spain Poland Moldova Contract Junior Security Analyst
Cybersecurity SIEM
18 hours, 37 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers