Job Description

We're Hiring: Risk Management Consultant (Native Arab)

Location: Qatar
Experience Level: Consultant

We are seeking an experienced Risk Management Consultant / Risk Manager with a strong background in the IT or Telecommunications industry to lead the identification, assessment, and mitigation of risks across business operations, projects, and IT systems. The ideal candidate will have a deep understanding of industry-specific risk factors, including cybersecurity threats, regulatory compliance, and technology infrastructure vulnerabilities.

Key Responsibilities

Develop and implement enterprise risk management (ERM) frameworks, policies, and processes tailored to the IT/Telecom environment.

Identify, analyze, and assess potential risks related to cybersecurity, data privacy, network infrastructure, cloud services, and regulatory compliance.

Collaborate with cross-functional teams (e.g., IT, Legal, Operations, Security, Compliance) to mitigate operational, technical, and strategic risks.

Conduct regular risk assessments, audits, and gap analyses across systems, applications, and processes.

Monitor risk trends, emerging threats, and industry regulations, and advise stakeholders on necessary controls and mitigation strategies.

Evaluate vendor and third-party risk, particularly in outsourced IT services or telecom infrastructure.

Lead or support business continuity planning (BCP) and disaster recovery (DR) initiatives.

Prepare and present risk reports, dashboards, and recommendations to senior leadership or board-level risk committees.

Ensure compliance with industry-specific standards and frameworks such as ISO 27001, NIST, ITIL, GDPR, SOC 2, etc.

Support internal and external audits, regulatory inspections, and risk assurance activities.

Required Qualifications & Experience:

Bachelor's degree in Risk Management, Information Technology, Telecommunications, Business Administration, or a related field.
(Master's degree or MBA preferred.)

8+ years of experience in risk management, preferably within the IT or Telecom industry.

Strong understanding of information security, IT governance, telecom infrastructure, and regulatory compliance requirements.

Experience with risk assessment methodologies and tools (e.g., FAIR, ISO 31000, COSO ERM).

Familiarity with cybersecurity frameworks and compliance standards (e.g., NIST, ISO 27001, PCI DSS).

Professional certifications such as CRISC, CISM, CISSP, PMP, ISO 27001 Lead Implementer, or similar are highly desirable.

Excellent analytical, problem-solving, and communication skills.

Ability to manage multiple projects, meet deadlines, and work independently or collaboratively.

Job Type: Full-time