This GRC role in fulfillment of internal and regulatory requirement to ensure compliance with sector-wide and enterprise-wide cybersecurity policies, standards and procedures. Main Responsibilities: Oversee the development, testing, and maintenance of cybersecurity measures to safeguard both IT and OT Critical Information Infrastructure (CII) and Non CII assets
Formulate cybersecurity policies and procedures for IT and OT systems, ensuring compliance with regulatory requirements, including the Cybersecurity Code of Practice (CCoP 2.0)
Conduct security audits, vulnerability assessments and risk assessment and checks to ensure security controls are in place and are functioning properly and working with regulatory bodies to ensure organisation meets cybersecurity standards
Conduct CII penetration test, red/ purple teaming exercise on a regular basis ensuring organisation Business Continuity Plan (BCP) and Disaster Restoration Plan (DRP) are well documented and communicated
Ide...