• Develop and implement comprehensive risk management strategies and processes to identify, assess, manage, and monitor company-wide cybersecurity risks.
• Conduct regular cybersecurity assessments and audits to ensure compliance with internal policies, industry standards, and regulatory requirements (such as SAMA CSF, SAMA ITGF, SAMA BCM, SAMA CFF, NCA, SDAIA etc. ).
• Collaborate with IT and business units to establish governance practices that meet defined policies and standards for enterprise security.
• Advise on risk management best practices and provide risk assessment and reduction strategies for upcoming and current projects.
• Prepare and maintain documentation, including policies, procedures, standards, and guidelines that support cybersecurity initiatives.
• Coordinate with internal and external auditors to facilitate audits and ensure that audit issues are resolved promptly.
• Assist in the development and delivery of cybersecurity awareness and compliance training programs.
• Monitor changes in legislation, accreditation standards, and industry best practices to ensure ongoing compliance.
• Report on the status of cybersecurity compliance and risk management efforts, including the tracking of key performance indicators.
• Assist with the investigation and reporting of security incidents and breaches and implement measures to prevent future occurrences.
• Support the development and management of Business Continuity Plans (BCP) and Disaster Recovery Plans (DRP).
  

• Bachelor’s degree in computer science, Information Security, or a related field.
• Minimum of Seven years of related experience.
• Strong technical knowledge of IT governance frameworks, regulatory requirements, and best practices.
• Hands-on experience with security frameworks such as ISO 27001, PCI, NCA, SAMA CSF, NIST, etc.
• Knowledge of relevant laws and regulations such as GDPR, HIPAA, SOX, etc.

• Relevant certifications such as CISA, CRISC, CGRC, CISSP, CISM, or other equivalent certificates are highly desirable.
  

• A willingness to work as part of a diverse team.
• A commitment to continuous improvement and lifelong learning.
• A passion for technology and a drive to deliver secure, high-quality solutions.
• An ability to remain calm under pressure whilst continuing to pay attention to detail.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal abilities.
• Ability to work effectively in a fast-paced and dynamic environment.
• Proactive and self-motivated with a keen attention to detail.