Regulatory Compliance & Controls Officer

Our Culture:

At STS we are proud of our culture and how it drives everything we do. We are looking for individuals who share our values and want to be part of a unique and engaging culture that revolves around collaboration and innovation. If you are looking for a role where you can drive engagement and excellence across teams through commitment and collaboration, and are someone who is customer-centric and appreciates an organization with uncompromised integrity that focuses on employee engagement then read on to learn more about how you can become part of the STS family.

Our Code of Conduct

At STS we strictly adhere to our code of conduct, which is there to serve as a moral compass, offering a framework for responsible behaviours and enabling ethical choices that cultivate positive relationships and a better future. It also outlines policies, standards, and procedures for our global operations, promoting integrity and ethical excellence across the countries we engage with.

Every year, all employees are required to review, comprehend, confirm, and adhere to the code of conduct. Additionally, all newly hired employees are subject to the same as part of their onboarding process.

Summary

We are hiring for a Regulatory Compliance & Controls role to support and drive STS, A ZainTECH Company's certification, audit readiness, and regulatory compliance initiatives across the MENA region, including UAE, KSA, Kuwait, Jordan, Oman and Bahrain. In this role, you will be responsible for analyzing regulatory requirements, supporting control implementation, preparing for audits, and maintaining our compliance posture with both external and internal stakeholders.

Duties and Responsibilities:

·       Review and analyze certification frameworks and national regulations (e.g., NCA, CST, DESC, ISO 27001, ISO 22301, etc.) map them to internal practices relevant to the company’s business lines and scope

·       Conduct stakeholder meetings to walk through the regulations or frameworks, explain requirements, and agree on responsibilities

·       Perform detailed gap assessments against regional regulations and international certification requirements

·       Define and follow up on compliance timelines, ensuring that gaps are addressed and closed ahead of audit or submission deadlines

·       Conduct internal compliance assessments and mock audits to measure control maturity and readiness

·       Prepare and document audit reports, compliance check summaries, and gap assessment findings

·       Maintain & update the centralized audit calendar, covering all certification audits, surveillance reviews, regulatory compliance checks, renewal and recertification deadlines

·       Provide ongoing guidance to technical and business teams on how to implement required controls and the expected type of evidence to demonstrate compliance

·       Prepare and validate audit-ready documentation, evidence logs, and compliance packages

·       Coordinate and attend external audits, representing the company and responding to auditor queries when information is available and verified

·       Maintain a corrective action log and follow up with stakeholders to ensure timely and effective closure of audit findings

·       Coordinate with Procurement to request and review proposals from external auditing and certification service providers

·       Engage and follow up with regulatory bodies on submission status, clarifications, or pending accreditations

·       Serve as the primary point of contact with auditors, certification bodies, and regulatory entities

·       Monitor market and regulatory changes and advise on new certifications that the company should pursue based on business needs and regulatory obligations and update compliance activities accordingly

Requirements

·       2–4 years of hands-on experience in regulatory compliance, certification coordination, or audit support

·       Practical experience with regional frameworks such as: NCA, CST, SAMA, DESC, etc.

·       International standards including ISO 27001, 22301, 27017/18, 20000-1, CSA STAR, and PCI-DSS

·       Experience conducting gap assessments, preparing for audits, and coordinating multiple stakeholders

·       Strong skills in regulation interpretation, control mapping, and evidence management

·       Excellent coordination, communication, and documentation skills

·       High level of ownership and ability to follow up across teams

·       Fluent in English

Preferred Qualifications

·       Professional certifications such as ISO 27001 / ISO 22301 Lead Implementer or Auditor, CISA, or a certificate in Regulatory Compliance Management are a strong advantage

·       Proven experience supporting compliance across multiple jurisdictions in the region

·       Solid understanding of regulatory accreditation, certification frameworks, and audit engagement processes

·       Familiarity with GRC platforms and/or compliance tracking systems