About Us:


EhsanLab is a leading software testing and cybersecurity company providing enterprise-grade solutions in quality assurance, penetration testing, and compliance services. We support startups, enterprises, and regulated industries in building secure, reliable, and compliant digital systems.

As part of our expansion in the Saudi Arabia and GCC markets, we are growing our Governance, Risk & Compliance (GRC) practice and looking for a skilled GRC Consultant to deliver high-impact regulatory and compliance engagements.

About the Role

As a GRC Consultant at EhsanLab, you will lead client engagements focused on governance, risk, and compliance assessments within the financial and fintech sectors.

You will work directly with clients to assess their current state, identify gaps, and deliver actionable remediation strategies aligned with regulatory expectations. This role requires ownership, strong communication, and the ability to translate complex regulations into practical, implementable controls.

Key Responsibilities:

  • Lead GRC assessments, gap analyses, and compliance audits from scoping through final reporting
  • Work across GCC and META regulatory frameworks, adapting to each client’s environment and maturity level
  • Deliver high-quality outputs including gap assessments, control matrices, and remediation roadmaps
  • Conduct workshops, interviews, and evidence reviews with C-level, IT, and compliance stakeholders
  • Translate regulatory requirements into clear, actionable recommendations
  • Manage multiple client engagements while maintaining quality and timelines

Required Qualifications:

  • Proven experience in GRC, cybersecurity audit, or compliance consulting
  • Strong understanding of risk management, control frameworks, and regulatory environments
  • Experience delivering client-facing assessments or audits independently
  • Excellent written communication with the ability to produce clear, executive-level reports
  • Strong stakeholder management and facilitation skills
  • Ability to work in a fast-paced, delivery-driven environment

Key Skills:

Technical / Domain

  • GRC & compliance assessment
  • Regulatory frameworks (KSA/GCC)
  • Control matrix development & reporting
  • Audit evidence review

Soft / Delivery

  • Client-facing facilitation
  • Independent engagement ownership
  • Executive report writing
  • Stakeholder management
  • Pre-sales & proposal support

Nice to Have:

  • Experience working within KSA/GCC regulatory environments (e.g., financial sector)
  • Certifications such as CISA, CRISC, ISO 27001 Lead Auditor, or similar
  • Exposure to data protection or DPO-related services
  • Familiarity with GRC tools or audit platforms
  • Arabic language skills

What We Offer:

  • Competitive compensation aligned with market standards
  • Opportunity to work on high-impact regulatory projects in KSA and GCC
  • Exposure to leading financial institutions and fintech clients
  • Flexible remote / hybrid working model
  • A fast-growing environment with strong focus on quality, ownership, and delivery excellence

How to Apply:

If you have a strong background in GRC and compliance consulting and are ready to work on impactful regulatory engagements, we’d love to hear from you.

Please submit your application using the form below.

Deadline: Open until filled.

Job Category: Engineering
Job Location: Remote

Apply for this position

Sales Development Representative (SDR)

Maximum allowed file size is 16 MB. Allowed Type(s): .pdf