GRC Consultant – RUN Activities M/F

	GRC Consultant – RUN Activities M/F

General informations

 Africa Global Logistics Rwanda Limited, a company duly incorporated under the laws of Rwanda and its offices at Kigali Special Economic Zone, P.O.Box 1338, Kigali, Rwanda is specialised in transport and logistics 

Job description

Mission Description                      

As part of our efforts to strengthen the Group's GRC RUN capabilities, the Cybersecurity team is looking to reinforce its operational capacity with two dedicated resources. The objective is to ensure robust support in GRC monitoring, compliance execution, and coordination with local information security officers.

Main Responsibilities

Operational Security Compliance Monitoring
- Manage the Security Control Plan: follow-ups, evidence collection, tracking
deadlines
- Monitor implementation of security policies and standards (ISO 27001, NIST…)
- Track non-conformities and action plans resulting from internal and external
audits - Process and monitor security exception requests
- Follow up on vendor cybersecurity assessments Support & Coordination with
Local Security Officers
- Act as the operational liaison between the central GRC team and LISOs (Local
Information Security Officers)
- Assist in the rollout of reporting tools, maturity assessments, and awareness
campaigns
- Track remediation plans following penetration tests or cybersecurity alerts
- Contribute to updates of compliance dashboards and indicators
Support to Cybersecurity Governance
- Contribute to the preparation of cybersecurity governance committees
- Participate in updates of ISO 27001 deliverables (policies, risk mapping, incident
feedback, etc.)
- Assist in preparing progress reports, KPIs, and summaries for executive
committees

 

Profile

Required Profile

- Master's degree or equivalent in cybersecurity, IT, auditing, risk management, or
related field
- 2–5 years of experience in cybersecurity GRC or audit/compliance roles (preferably
in RUN/ops)
- Solid understanding of ISO 27001, ISO 27005, and EBIOS RM frameworks
- Proficient in tracking action plans, coordinating stakeholders, and managing
compliance data
- Excellent communication and interpersonal skills, with ability to work in
multicultural environments
- Strong organizational and analytical skills, autonomous and proactive
- Fluent in French (mandatory) and professional English required

Expected Deliverables
- Monthly and quarterly compliance dashboards
- Audit reports and action plan tracking logs
- Updated ISO documentation (policies, procedures, risk mapping, Retex)
- Summary of security incidents and alert handling
- KPI and risk indicators tracking (dashboards, awareness, supplier compliance, etc.)