Evolvice is a nearshore technology services provider that helps businesses scale, innovate, and enhance efficiency. Since 2012, we’ve been developing software solutions and building high-performing remote teams. Today, we focus on integrating AI into business processes and providing IT and security support to drive digital transformation.  

Originally based in Germany, we have established development hubs in Egypt, Ukraine, and Portugal, as well as offices in Saudi Arabia. This international presence enables us to deliver high-quality, cost-effective solutions worldwide.   

Our Services: 

Nearshore Teams – Build and scale remote teams of any size with expert engineers.  

AI-Powered Business Productivity – Leverage AI-driven software solutions to boost efficiency.  

Cybersecurity – Safeguard your business with advanced security assessments and services.  

Managed IT & Application Support – Ensure seamless operations with proactive IT management and support.  

We’re proud to work with industry leaders like Bosch, Douglas, WTS, DHL, Tatweer and GOSI, and many others. Combining German precision with nearshore agility, we provide secure, scalable, and cost-effective IT solutions tailored to your business needs.  

Currently, we are searching for a Position Name to join the big team of professionals. 

Requirements:

• Bachelor’s degree in Computer Science, Information Systems, Cyber Security or any equivalent field is required.
• Not less than 3 Years of experience in GRC or a related role.
• Good knowledge of NCA regulations
• Familiarity with GRC tools and technologies, such as Eramba tools or equivalent.
• Prefer holding at least one industry-relevant professional certification and other individuals could hold similar certifications:
• Certified Information Systems Security Professional (CISSP)
• (CISA)
• Certified Information Security Manager (CISM)
• ISO 27001 Lead Implementor

Responsibilities :

• Defining, developing, applying, and revising the Arib security policy and procedures in compliance with ISO 2700x, SAMA CSF, NCA.
• Conduct Risk assessment for new or existing projects outside Egypt adhere to national standards such as SAMA, NCA.
• Oversight the execution of the access control review plan to ensure access remains appropriate and is based on business need.
• Acts as a focal point for audits missions.
• Oversight and support the Information Security Awareness program.
• Oversight the implementation of Information classification and protection within the company.
• Reporting security metrics to management.
• Conduct Gap assessment regarding NIST SP 800-53 and ISO 27001.
• Conduct 3rd party risk assessment by Identifying and evaluating potential risks or any possible change may affect the customer environment, considering both threats and vulnerabilities and their responsibility for implementing and maintaining their own cybersecurity controls to meet contractual obligations and industry standards. This includes measures like access controls, data encryption, and incident response plans.
• Analyzing diverse risks like hardware failures, natural disasters, human error, and internal threats alongside cybersecurity concerns and prioritized list of risks with their likelihood and potential impact on business objectives (financial loss, reputational damage, etc.)
• Evaluates risks and develops security standards, procedures, and controls to manage risks.
• Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts.
• Implements security controls, risk assessment framework, and program that align to regulatory requirements, ensuring documented and sustainable compliance that aligns and advances College business objectives.
• Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts.
• Conduct compliance assessment for Arib Security controls adhere to national standard such as NCA, SAMA.
• Have good experience in managing GRC tools such as Eramba tools or equivalent.

We offer: 

• Working Condition: On-Site
• Location: Nasr City
• Working Days: From Sunday to Thursday
• Working Hours: From 8:30 AM to 5:00 PM / From 9:30 AM to 6:00 PM / From 10:00 AM to 6:30 PM
• Medical Insurance / Social Insurance