Senior Governance, Risk, and Compliance (GRC) Security Engineer

About The RoleWe are seeking a Senior Governance, Risk, and Compliance (GRC) Security Engineer to enhance our compliance and risk management initiatives across various frameworks, entities, and regions. The successful candidate will have substantial hands-on expertise with SOC 2, ISO 27001, and PCI DSS, alongside proficiency in modern compliance automation t…

Optasia is an innovative B2B2X financial technology platform that specializes in scoring, financial decisioning, disbursement, and collection services. Our mission is to foster financial inclusion worldwide, as we believe in transforming the world through our unique approach.We are on the lookout for dynamic and passionate professionals who are results-oriented and possess a proactive mindset. Join our team of like-minded individuals dedicated to delivering innovative solutions in an inspiring environment.As a vital member of the Information Security team at Optasia, your main goal will be to enhance and mature our ISO 27001:2022 and SOC 2 Type II programs as a dedicated GRC Specialist. The ideal candidate will be instrumental in ensuring compliance, preparing for audits, and fostering a strong security culture within our company through awareness and continuous improvement initiatives.This role is hands-on and perfectly suited for someone with substantial experience in governance, risk, and compliance within a technology-driven context.Your Responsibilities:Governance & ComplianceEnhance and maintain the company’s Information Security Management System (ISMS) in alignment with ISO 27001:2022.Assist in planning, executing, and sustaining SOC 2 Type II controls and evidence collection.Develop and maintain compliance documentation, including policies, procedures, guidelines, control matrices, and risk registers.Coordinate and track compliance across various departments, ensuring timely resolution of audit findings and corrective actions.Audit CoordinationServe as the primary contact for internal and external audits (ISO 27001, SOC 2, customer, and partner audits).Facilitate Customer Audit activities — this includes responding to security and compliance questionnaires, gathering inputs from multiple departments, collecting and validating evidence, and ensuring prompt and accurate responses.Prepare structured evidence packages, liaise with control owners, and manage communications with auditors and customers.Conduct internal control reviews and readiness assessments prior to certification or customer audits.Risk ManagementEngage in regular risk assessments and evaluations of security controls.Assist in maintaining the risk register, monitoring remediation plans, and assessing control effectiveness.Awareness & TrainingCoordinate and deliver security awareness initiatives for employees, including e-learning, workshops, and newsletters.Foster a risk-aware culture and support departmental champions to enhance the overall security posture.Continuous ImprovementActively contribute to the ongoing enhancement of our governance, risk, and compliance frameworks.

Join our dynamic team at Nawy Real Estate as a Cyber Security GRC Lead. In this pivotal role, you will oversee governance, risk management, and compliance (GRC) initiatives within our organization. Your expertise will be essential in ensuring our cybersecurity posture aligns with industry standards and regulations.We are looking for a forward-thinking leader who is passionate about safeguarding our digital assets and driving a culture of security awareness throughout the organization.

About the RoleAs the Director of Compliance and Anti-Money Laundering (AML) at Thndr Securities Brokerage, you will spearhead the organization’s compliance and AML initiatives, ensuring adherence to the highest standards of integrity and regulatory compliance under the aegis of the Financial Regulatory Authority (FRA).In this pivotal role, you will manage a dedicated team of compliance and risk officers, acting as the primary liaison with regulators and guaranteeing that Thndr’s brokerage operations are executed safely, ethically, and in accordance with both local and global standards.You will report directly to the Chief Executive Officer and collaborate closely with the Policy, Legal, and Compliance, Risk & Fraud (CRF) teams across the Thndr Group to ensure cohesive alignment and oversight across all regulatory matters.Key ResponsibilitiesLead and nurture a high-achieving team of compliance and risk professionals, overseeing daily compliance operations and monitoring.Serve as the chief liaison with the Financial Regulatory Authority (FRA), fostering strong and transparent relationships with regulatory bodies.Ensure regulatory alignment across all brokerage functions including onboarding, trading, client communications, reporting, and recordkeeping.Manage regulatory submissions, ensuring timely and precise filing of all necessary documentation, renewals, and notifications.Prepare and inform internal teams in advance of any regulatory inspections or reviews, ensuring complete readiness and documentation accuracy.Monitor and analyze regulatory updates and lead internal adjustments to maintain compliance with evolving laws, FRA circulars, and industry standards.Collaborate with Policy and CRF teams to identify, address, and mitigate compliance gaps while ensuring adherence to group-wide frameworks.Develop robust surveillance programs to identify, escalate, and manage potential violations or suspicious activities.Oversee AML/CFT responsibilities, ensuring that policies, procedures, and systems effectively prevent and identify financial crimes.Review product and process approvals, assessing new initiatives for compliance implications.

b_labs serves as the transformative and digitization division of B.TECH, dedicated to revolutionizing the industry landscape. Our focus lies in driving technological innovation at B.TECH, a pillar of the Egyptian retail sector, as we strive to establish ourselves as the foremost omni-channel platform for consumer electronics and appliances in Egypt. By becoming a part of b_labs, you will experience the dynamic atmosphere of a startup while benefiting from the stability of a well-established company that has consistently demonstrated robust growth. You will join a forward-thinking, customer-centric team with a bold objective: to lead the digital retail transformation across the Middle East.

As a Senior Data Governance Specialist, you will play a pivotal role in collaborating with Domain Owners to identify and prioritize Critical Data Elements (CDEs). Your responsibilities will include establishing standards for metadata management, monitoring business processes, and ensuring compliance with data governance policies.Define and implement metadata management frameworks, ensuring alignment with organizational goals.Review and approve business definitions and data lineage created by Domain Leads.Develop and maintain a comprehensive enterprise Data Dictionary.Assist in the selection and deployment of metadata management tools to enhance data governance capabilities.

Join the dynamic team at Optasia as a Cyber Security Engineer specializing in the Fintech sector. In this role, you will be responsible for safeguarding sensitive financial data and ensuring compliance with industry standards. Your expertise will help us enhance our security protocols and protect our clients from cyber threats.We are looking for a proactive individual with a passion for technology and security. You will collaborate with cross-functional teams to implement security measures, investigate incidents, and provide guidance on best practices.

Objective: We are in search of a seasoned Cyber Security Lead Engineer to spearhead the design, execution, and ongoing enhancement of our cybersecurity protocols within a hybrid framework. This pivotal role encompasses the supervision of infrastructure, application, and cloud security; managing threat detection and incident response systems; steering the security integrity of internally developed software; and ensuring adherence to regulatory standards via Governance, Risk & Compliance (GRC) frameworks. The ideal candidate will possess a robust technical foundation, exemplary leadership skills, and a proactive approach to safeguarding our digital assets and business operations.Key Responsibilities:1. Security Architecture & Strategy Design, implement, and uphold a comprehensive security architecture for both on-premises and cloud environments. Establish secure network topologies, including segmentation, access controls, and VPN configurations. Lead the creation and enforcement of security policies, procedures, and best practices. Collaborate with developers and IT architects to integrate security into application and infrastructure design. 2. SOC, SIEM, and Threat Management Oversee the operation and optimization of the Security Operations Center (SOC), including SIEM systems. Manage endpoint protection through EDR and threat-hunting solutions. Enhance email security measures to defend against phishing, malware, and spam while ensuring compliance with organizational security policies. Lead incident response initiatives and develop proactive threat prevention strategies. 3. Application and Cloud Security Supervise vulnerability assessments and penetration testing for internally developed applications. Direct WAF deployment and optimization to safeguard mission-critical web applications. Implement security best practices and policy enforcement across multi-cloud environments. 4. Governance, Risk & Compliance (GRC) Drive compliance initiatives related to cybersecurity (e.g., SOC 2 Type 2, ISO 27001). Lead cross-functional GRC efforts and support internal and external audits. Conduct security risk assessments and recommend mitigation strategies. 5. Documentation & Collaboration Maintain thorough documentation for security controls, policies, systems, and incidents. Organize and conduct quarterly security awareness training sessions to educate staff on emerging cyber threats, best practices, and organizational security policies. Collaborate closely with software engineers, network teams, DevOps, and various business units.

Eram Talent is actively seeking a skilled Security System Engineer to join our esteemed client in Saudi Arabia. In this pivotal role, you will take charge of designing, implementing, and maintaining sophisticated security systems that safeguard the organization’s physical and digital assets. Your expertise will be essential in ensuring that all security systems operate at peak efficiency and comply with all relevant regulatory standards.As a Security System Engineer, you will work closely with diverse teams to evaluate security requirements, architect system designs, and offer technical support throughout the implementation phase. Your knowledge will significantly contribute to strengthening the organization's overall security framework.Key ResponsibilitiesAnalyze security business needs, threats, and risks, understanding system capabilities to enhance security measures.Possess foundational knowledge of cybersecurity principles and tools.Implement basic systems hardware maintenance programs and troubleshooting methods.Demonstrate a cross-functional understanding of network engineering concepts and protocols (e.g., TCP, UDP, SSL, VLAN).Exhibit in-depth technical expertise in operating systems and database security.Ensure security systems software is fully operational, reliable, and minimizes downtime.Optimize systems to deliver optimal performance according to their original design intent.Monitor, analyze, and report on system performance, taking corrective actions as needed.Review user access to systems, ensuring security and revoking unnecessary permissions.Collaborate with maintenance support/service providers on hardware maintenance issues.

The Security Manager will oversee all external access points to ensure the safety and integrity of our facility. This role involves comprehensive supervision of entry and exit protocols for employees, visitors, suppliers, and contractors.Key responsibilities include monitoring vehicle access, including trucks and company cars, while ensuring thorough inspections and security checks for all incoming and outgoing vehicles. The Security Manager will validate identification, permits, and delivery documents before granting access and will conduct searches and inspections as necessary.The role also includes maintaining meticulous records of all movements, ensuring an organized and safe traffic flow within the factory premises, and preventing unauthorized access by promptly reporting any suspicious activities. Collaboration with management regarding security incidents and irregular movements is crucial, as this position holds full accountability for secure and well-documented access and exit operations at all factory gates.

Key Responsibilities:Oversee the coordination of internal teams and external vendors to ensure seamless project execution.Guarantee timely delivery of cybersecurity requirements for projects and products, adhering to defined scope and budget constraints.Define cybersecurity objectives for products and vehicles, engaging all relevant stakeholders while ensuring technical viability.Assess security risks proactively during critical development stages, particularly those affecting design decisions.Establish and manage a cybersecurity risk register for each project/product, including identification, assessment, planning, assignment, monitoring, and review of cybersecurity risks.Collaborate closely with stakeholders such as the Chief Production Security Officer and members of the cybersecurity architecture and security teams.Handle vulnerabilities and issues related to vehicle cybersecurity, including communication and status reporting on related projects.Engage with the Cybersecurity Incident Manager and Incident Response Team to address all phases of vehicle incident response management.Ensure the accuracy, completeness, and availability of data related to vulnerabilities or security events.Validate identified vulnerability candidates with the respective product or service owner.Confirm the relevance of past vulnerability analyses and verify the results.Determine the relevance and scope of vulnerabilities through reporting and cybersecurity event assessments.Identify affected items, components, and subcomponents concerning reported weaknesses, events, and incidents.

Join AccorHotels as a Sales Manager, where you'll be at the forefront of driving sales growth within both government and corporate sectors. In this dynamic role, you will develop strategic relationships, identify market opportunities, and lead initiatives to expand our client base. Your expertise will be crucial in crafting tailored solutions that meet the unique needs of our clients.

Join our client, a leading global consulting and financial services firm, dedicated to delivering innovative solutions that enhance client satisfaction. With a strong focus on integrity and compliance, they uphold the highest standards of transparency in their operations.Key Responsibilities:- Carry out daily operational tasks including account registration, deposit and withdrawal processing, and reporting, ensuring accuracy and timeliness.- Manage the complete Know Your Customer (KYC) procedures for new and existing clients, verifying documentation and adherence to compliance standards.- Conduct comprehensive risk assessments for clients based on their profiles, geographical locations, and transaction behaviors; classify risk levels and implement suitable due diligence measures.- Assist in the creation and upkeep of operational procedures, guidelines, and documentation.- Facilitate communication regarding updates, changes, and notifications related to operational policies.- Aid in the setup and configuration of systems as per established protocols.- Prepare detailed reports and present findings to supervisors as required.- Respond to inquiries from clients and internal departments promptly, ensuring efficient resolution.- Ensure secure storage of all client information and documentation in compliance with company policies and regulatory standards.- Support the finance team with daily reconciliations of deposits and withdrawals, addressing any discrepancies.- Collaborate with compliance and audit teams by providing necessary documentation in a timely manner.- Proactively identify and mitigate risks associated with money laundering, terrorist financing, or other illicit activities, and escalate any concerns immediately.- Adhere to assigned shift schedules.

About the RoleJoin Thndr as a Cyber Security Intern and immerse yourself in the world of cybersecurity. You will acquire practical experience in safeguarding contemporary, cloud-native infrastructures and applications. Engage in authentic security initiatives, ranging from threat modeling and vulnerability management to penetration testing. This internship provides a rare opportunity to collaborate with seasoned security engineers, developers, and DevOps professionals, exposing you to various aspects of cybersecurity, including cloud and application security, governance, and risk management. Throughout your time here, you will enhance your analytical, documentation, and communication skills while contributing to a dynamic security-focused environment.Your ResponsibilitiesThreat Modeling: Engage in threat modeling sessions to identify and document potential risks associated with new features, systems, or architectural modifications.Penetration Testing: Assist in internal security evaluations and coordinate external penetration tests by helping with test scoping, validating findings, and tracking remediation.Security Operations: Aid in monitoring security alerts, triaging incidents, and investigating potential threats using tools such as AWS Security Hub, GuardDuty, and endpoint protection platforms.Vulnerability Management: Support the scanning and tracking of vulnerabilities in applications and cloud infrastructure, coordinating remediation efforts with engineering teams.Security Awareness & Training: Help develop and implement internal security training and phishing simulations to foster a robust security culture.Tooling & Automation: Collaborate with the security team to enhance monitoring and reporting through scripting or automation using platforms like Python, Bash, or GitHub Actions.Cross-Functional Collaboration: Work alongside product, DevOps, and engineering teams to gather context, highlight potential risks, and engage in secure-by-design discussions.

Join our dynamic team at SanaCommerce as a Senior Data Engineer. In this critical role, you will leverage your expertise in data engineering to build robust data pipelines and enhance our data processing capabilities. Collaborate with cross-functional teams to design and implement innovative solutions that drive data-driven decision-making across the organization.

About PetroAppAt PetroApp, we are revolutionizing the tech landscape by creating a state-of-the-art platform that empowers our customers and partners to achieve operational excellence with reliable and efficient systems. As we expand our engineering team, we are committed to ensuring world-class reliability coupled with pragmatic, high-impact security measures.The RoleWe are in search of a dedicated Security Lead with a robust background in DevOps/SRE to spearhead our security initiatives while actively engaging with our cloud infrastructure, CI/CD processes, and production reliability.Your primary responsibilities will include defining our security strategy throughout the Software Development Life Cycle (SDLC) and production environment, integrating security into developer workflows, managing vulnerability assessments, and collaborating with external vendors for penetration testing. You will work closely with our Platform/DevOps/SRE teams to guarantee that PetroApp’s systems maintain both security and reliability.What You’ll DoSecurity Leadership & StrategyLead the development and execution of PetroApp's overall security roadmap, ensuring alignment with business and product goals.Serve as the primary security liaison for engineering teams and company leadership.Create, document, and uphold security policies, standards, and guidelines for our engineering teams.Conduct risk assessments, threat modeling, and security design reviews for major projects.Establish and monitor key security KPIs, providing status updates, risk assessments, and progress reports to leadership.DevSecOps & SDLC SecurityIntegrate security practices into the SDLC, including SAST, DAST, dependency scanning, and Infrastructure as Code (IaC) scanning within CI/CD pipelines.Promote secure coding standards and provide oversight on high-risk modifications.Implement and manage secrets management and detection across repositories and environments.Lead vulnerability management efforts: assess findings, prioritize remediation, monitor SLAs, and validate fixes.Collaborate with engineers to automate security controls that are user-friendly for developers.Cloud & Platform Security (with SRE Mindset)Take ownership of enhancing the cloud and platform security posture, focusing on IAM, networking, encryption, key management, and system hardening.Design and enforce least privilege access frameworks and secure infrastructure defaults.Ensure security is integrated into core platform components, including Kubernetes, service communications, and data storage solutions.Work alongside SRE/DevOps to create secure, resilient architectures that address scalability, failover, and disaster recovery challenges.Reliability & Incident CollaborationPartner with SRE/DevOps to uphold the high availability and reliability of production systems.Enhance observability and monitoring from a security perspective: create actionable alerts, meaningful logging, and ensure traceability.Engage in incident response for security-related incidents, executing root cause analysis and implementing long-term solutions.

Role Overview Tagaddod is seeking a Sustainability Compliance & Audit Specialist in Cairo to help ensure that operations meet compliance standards across all jurisdictions. This role focuses on maintaining adherence to ISO certifications, ISCC-EU, and ISCC CORSIA requirements. The position covers documentation control, site monitoring, mass balance integrity, and audit readiness. Main Responsibilities Review all documentation templates through a dual-review process for compliance with local regulations and ISCC standards before deployment. Prepare and submit sustainability declarations, self-declarations, and mass balance reports accurately and on schedule. Maintain complete, audit-ready evidence packages for each site, including collection slips, bills of lading, service agreements, and sales documents. Cross-reference collection slips with weights and vehicle logs daily or weekly, escalating any discrepancies found. Lead monthly mass balance reconciliations at all sites and secure approval from the Sustainability Manager. Support forensic audit activities, such as unannounced site inspections and document reviews. Update the internal audit log to track non-conformities, corrective action owners, and deadlines. Monitor and ensure timely closure of corrective actions. Standardize compliance procedures and templates across teams to maintain consistency. Provide essential training to site personnel on mass balance, sustainability declarations, and documentation practices. Assist with responses to due diligence and risk assessment requests from commercial partners. Location Cairo, Cairo Governorate, Egypt

About Us:At Xenon7, we unite exceptional tech talent with world-class opportunities! Collaborating with top-tier enterprises and innovative startups, we engage in exciting, cutting-edge projects that utilize the latest technologies across various IT domains, including Data, Web, Infrastructure, AI, and more. Our expertise in developing IT solutions and providing on-demand resources enables us to partner with clients on transformative initiatives that drive innovation and business growth. Whether empowering global organizations or collaborating with pioneering startups, we are dedicated to delivering advanced, impactful solutions that address today's most intricate challenges.About the Client:Become part of one of Egypt's leading financial institutions, celebrated for its comprehensive range of banking services, including Institutional Banking, Personal Banking, and Islamic Banking. With a global footprint through over 50 branches and correspondents, our diverse and dynamic clientele is at the forefront of our operations. As we embark on a revolutionary digital transformation journey, we are committed to leveraging cutting-edge technologies to build a state-of-the-art data architecture that will redefine our performance and service delivery.Position Overview:We are looking for a driven and experienced Senior Data Engineer to join our expanding data team. In this pivotal role, you will design and develop scalable, high-performance data pipelines and lakehouse architectures. Collaborating closely with data modelers, analysts, and business stakeholders, you will deliver reliable real-time and batch-based data solutions that are integral to our analytics and AI-driven strategies.

Join our dynamic team as a Senior Data Engineer, where you will harness the power of data to drive impactful solutions. You will be responsible for designing, developing, and maintaining robust data pipelines and architectures that support our mission of fostering inclusivity in technology.Your expertise will help us analyze and interpret complex data sets, ensuring data integrity and optimizing data flows. If you are passionate about utilizing data to enhance decision-making and drive business outcomes, we want to hear from you!

Join Delivery Hero as a Senior Engineer in IT Operations and play a pivotal role in ensuring the seamless operation of our technology systems. You will be responsible for optimizing our IT infrastructure, troubleshooting issues, and implementing innovative solutions to enhance our operational efficiency.