The Expert for Policies and Compliance plays a crucial role in ensuring that an organization adheres to regulatory standards and internal policies. This position is essential for maintaining the integrity and reputation of the company, particularly in the fast-evolving IT services sector. The expert will be responsible for developing, implementing, and monitoring compliance programs that align with both local and international regulations. With a minimum of 5 years and a maximum of 17 years of experience required, this role demands a seasoned professional who can navigate complex compliance landscapes and foster a culture of accountability within the organization.
- Policy Development and Maintenance:
- Lead the creation, revision, and maintenance of IT policies and procedures.
- Ensure that policies are documented, standardized, and applied consistently across IT sections.
- Collaborate with stakeholders to identify policy gaps and develop new ones where necessary.
- Compliance Management:
- Ensure IT policies comply with legal, regulatory, and industry standards.
- Develop and maintain a system to monitor policy compliance across the department.
- Implement compliance activities in collaboration with IT section heads.
- Process Governance and Standardization:
- Develop and enforce standardized IT processes aligned with policies.
- Support process governance implementation to ensure consistency and efficiency.
- Regularly review and update processes based on feedback and business requirements.
- Compliance Reporting:
- Track and report compliance metrics related to policy adherence and governance.
- Analyze compliance data and provide recommendations for corrective actions.
- Training and Awareness:
- Develop training programs to educate IT staff on compliance and policy requirements.
- Maintain updated training materials and ensure regular training sessions are conducted.
Key Performance Indicators (KPIs):
- Policy Development & Updates:
- Percentage of IT policies reviewed, updated, and approved within the established review cycle.
- Compliance Adherence:
- Number of compliance violations or non-adherence incidents.
- Percentage of compliance issues resolved within deadlines.
- Policy Awareness and Training:
- Percentage of staff completing mandatory training on policies.
- Number of training sessions conducted on new or updated policies.
- Process Governance:
- Number of standardized IT processes implemented and reviewed.
- Frequency of process reviews based on stakeholder feedback.
- Compliance Reporting:
- Timeliness and accuracy of compliance reports.
Key Relationships:
- Internal: Head of Policies and Quality Planning, IT Governance Committee, IT Section Heads, Compliance and Audit Teams, IT staff.
- External: Regulatory bodies, auditors, industry experts.
Skills
Qualifications and Experience:
- Education:
- Bachelor’s degree in Information Systems, Computer Science, or related field.
- Professional certifications (e.g., ITIL, COBIT, CISM, ISO 27001) are highly desirable.
- Experience:
- 5+ years in IT governance, compliance, or policy management.
- Experience in developing and enforcing IT policies and procedures.
- Strong knowledge of ISO 27001, ITIL, and COBIT.
- Proficiency in Arabic (written and spoken) is required.
Skills and Competencies:
- Technical Skills:
- Expertise in IT policy development, compliance frameworks, and governance processes.
- Analytical Skills:
- Ability to interpret regulatory requirements and translate them into policies.
- Communication and Collaboration:
- Excellent written and verbal communication skills in Arabic and English.
- Strong interpersonal skills to work with various stakeholders.
- Attention to Detail & Project Management:
- Strong project management skills to lead compliance initiatives.