Müller's Solutions is seeking an experienced GRC Specialist to support a SAMA-aligned IT Risk and IT Compliance Assessment programme. The candidate will be responsible for delivering a structured set of project outputs across governance, risk, compliance, and IT process improvement workstreams.
Key Responsibilities:
- Develop and deliver the Project Charter & Project Plan
- Conduct current state and maturity assessments and produce formal reports
- Design and implement an IT Governance Framework aligned to SAMA requirements
- Develop a full set of IT policies and procedures
- Define the IT Operating Model and RACI Matrix
- Build and maintain a Control Catalog mapped to SAMA
- Establish Governance Committee Charters and Dashboards
- Conduct Gap Assessments and produce a remediation roadmap
- Perform SAMA Readiness Assessments
- Complete a Risk Assessment for Information Assets
- Develop and maintain Risk Registers and Treatment Plans
- Support IT teams in closing SAMA and Internal Audit observations
- Produce Cybersecurity Compliance Reports and IT Process Performance Reports
- Deliver Knowledge Transfer Sessions to internal stakeholders (up to 10 sessions)
Requirements
Requirements:
- Minimum 7–10 years in IT GRC, IT Risk, or IT Compliance roles
- Strong working knowledge of SAMA Cybersecurity Framework
- Experience delivering IT governance frameworks and policy suites
- Proven track record in risk assessment and risk register management
- Familiarity with Internal Audit closure processes and compliance reporting
- Experience in maturity assessments aligned to recognised frameworks (NIST, ISO 27001, SAMA)
- Excellent documentation and stakeholder communication skills
- Prior experience in the Saudi Arabian financial or regulated sector is highly preferred
Benefits
Why Join Us:
Opportunity to work with a talented and passionate team.
Competitive salary and benefits package.
Exciting projects and innovative work environment.