RemoteLeaf Logo
Log in Sign up

GRC and Security Analyst

3 weeks, 2 days ago
Saudi Arabia
Full-time
Junior
Security Analyst
Cybersecurity
Bash Penetration Testing Python Ruby Ruby on Rails
Apply Now
Lucidya

Lucidya

Lucidya provides a leading platform for customer experience management in the Arab World, utilizing AI-driven social media analytics and monitoring tools to enhance strategic decision-making and improve brand performance across various social channels.

Media
51-250
Founded 2016
$7M raised
View All Jobs 11

Description

  • Support security, privacy, and compliance initiatives with GRC and Security Engineering teams across Saudi Arabia, Qatar, international regions, and the U.S. market.
  • Assist with implementing and maintaining ISO/IEC 27001, ISO/IEC 42001, NCA, SOC 2, and related controls.
  • Support U.S. market migration by aligning security and compliance practices with SOC 2, NIST frameworks, and U.S. data privacy requirements.
  • Contribute to regional data protection compliance activities for KSA PDPL, Qatar PDPL, and U.S. state privacy laws.
  • Participate in creating, updating, and maintaining security, privacy, and AI governance policies, procedures, and control documentation.
  • Handle document control, evidence collection, and audit readiness for internal reviews, customer assessments, and external audits.
  • Review security controls for cloud infrastructure, SaaS environments, APIs, and integrations.
  • Track compliance tasks, findings, and remediation actions in coordination with GRC and Security Engineering teams.
  • Collaborate with engineering, product, and operations teams to address security and compliance requirements in daily workflows.
  • Support incident response documentation, risk assessments, and compliance reporting as needed.

Requirements

  • 2-4 years of experience in a similar Security Analyst or GRC role.
  • Experience working with US-based SaaS companies and B2B SaaS environments.
  • Strong understanding of AI and U.S. compliance frameworks, including ISO/IEC 42001, NIST, and U.S. data privacy regulations.
  • Knowledge of ISO/IEC 27001 and ISO/IEC 42001 implementation, with implementer certification preferred.
  • Understanding of SOC 2 and practical experience with NCA requirements.
  • GDPR knowledge is a plus.
  • Knowledge of penetration testing and vulnerability assessment.
  • Basic scripting ability in Python or Bash.
  • Experience supporting code review for deployments using automated tools and security reviews of CI/CD pipelines.
  • Ruby/Rails code review experience is highly advantageous.
  • CISM certification preferred.
  • ISO/IEC 24001 Lead Implementer certification mandatory.
  • ISO/IEC 27001 Lead Implementer certification mandatory.
  • Excellent professional documentation skills.
  • Strong organizational skills and follow-up ability.
  • Experience with document control and audit evidence.
  • Ability to work effectively across distributed, cross-functional teams.
  • Prior remote work with U.S.-based teams is nice to have.
  • Experience supporting global compliance programs is nice to have.
  • Hands-on involvement in multiple certification cycles is nice to have.

Benefits

  • Opportunity to influence and enhance Lucidya’s governance, risk, and compliance practices at scale.
  • Chance to strengthen security controls across the company.
  • Opportunity to drive compliance initiatives in a fast-growing AI company.
  • Role contributes to mitigating organizational risk.
  • Work that supports a culture of security across the company.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Control Risks

Minor Safety Analyst

Control Risks 1K-5K Professional Services

Minor Safety Analyst at a global technology client focused on reviewing abuse and safety reports, investigating risks to minors, and documenting findings for internal teams and stakeholders.

Australia Full-time Junior Security Analyst
Cybersecurity
16 hours, 28 minutes ago
AHEAD

Security Analyst (Cyber Defense Analyst)

AHEAD 1K-5K IT Services

AHEAD is hiring a remote Cyber Defense Analyst in India to support its corporate security team by monitoring, investigating, and strengthening enterprise defenses across the information security program.

India Full-time Senior Security Analyst
AWS Azure Cybersecurity macOS Network Security PowerShell Python SIEM
17 hours, 14 minutes ago
Picus Security

Senior Information Systems Auditor

Picus Security 51-250 Professional Services

Picus Security is hiring a Senior Information Systems Auditor in Ankara to strengthen governance, risk, and compliance across its global cybersecurity operations and support continuous certification readiness.

Turkey Full-time Senior Security Analyst
Cybersecurity Machine Learning
21 hours, 22 minutes ago
Harford County Public Library

Engenharia de Segurança III (Pleno) - Operações do SOC

Harford County Public Library 51-250 Diversified Consumer Services

Stone Tech is hiring a mid-level Security Engineer III to support the SOC operations team in Brazil, focused on monitoring, incident response, and continuous improvement of security detection and protection across the company’s technology environment.

Brazil Full-time Mid Level Security Analyst Security Engineer
AWS Azure Bash CrowdStrike Elasticsearch Fortinet GCP Palo Alto Python SOC TCP/IP
23 hours, 42 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers