Senior Cybersecurity Governance, Risk Management, and Compliance Engineer
Inovasys
Date: 4 hours ago
City: Riyadh
Contract type: Contractor
Job Description
Lead the development and implementation of a Cybersecurity Governance, Risk, and Compliance (GRC) strategy within the organization.
Oversee all cybersecurity governance, risk management, and compliance activities, ensuring alignment with the organization's cybersecurity objectives and regulatory standards.
Review, develop, and document policies, procedures, standards, and processes required by the organization and regulatory authorities.
Develop and implement a cybersecurity and data awareness program to ensure employees are informed about relevant security practices.
Develop and update the governance and operational model to ensure clarity in roles and responsibilities.
Conduct comprehensive cyber risk assessments and audits to identify vulnerabilities and ensure compliance with Saudi and international cybersecurity standards, such as NCA, ISO 27001, and PDPL.
Develop and implement strategies to mitigate identified risks and address compliance gaps.
Monitor and ensure compliance with relevant Saudi cybersecurity regulations and international standards.
Track regulatory changes and adapt strategies and policies accordingly.
Collaborate with IT and security teams to integrate cybersecurity measures across the organization.
Facilitate cross-departmental coordination to ensure the effective implementation of all aspects of the cybersecurity framework.
Establish and enhance cybersecurity frameworks and methodologies to strengthen governance, risk management, and compliance activities.
Develop customized tools and templates for routine and strategic cybersecurity governance, risk management, and compliance activities.
Qualifications And Requirements
Education & Certification:
Bachelor’s or master’s degree in Cybersecurity, Information Security, Computer Science, Risk Management, or a related field.
Professional certifications as ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CISSP, CISM, or CRISC
Experience
04 - 06 years of experience in cybersecurity, risk management, governance, or compliance roles.
Saudi nationality is a must.
Hands-on experience in policy development, risk assessments, and compliance monitoring.
Familiarity with cybersecurity frameworks and standards, such as ISO 27001, NCA, PDPL, NIST, and SAMA regulations.
Experience in conducting security risk assessments and supporting cybersecurity audits.
Exposure to regulatory compliance tracking and assisting in policy updates.
Experience in managing and operating cybersecurity awareness and training programs.
Technical Skills
Basic understanding of cybersecurity risk management methodologies.
Strong documentation and report-writing skills.
Ability to collaborate with cross-functional teams to ensure compliance with security policies.
Strong communication and problem-solving skills.
Fluency in Arabic and English preferred.
Lead the development and implementation of a Cybersecurity Governance, Risk, and Compliance (GRC) strategy within the organization.
Oversee all cybersecurity governance, risk management, and compliance activities, ensuring alignment with the organization's cybersecurity objectives and regulatory standards.
Review, develop, and document policies, procedures, standards, and processes required by the organization and regulatory authorities.
Develop and implement a cybersecurity and data awareness program to ensure employees are informed about relevant security practices.
Develop and update the governance and operational model to ensure clarity in roles and responsibilities.
Conduct comprehensive cyber risk assessments and audits to identify vulnerabilities and ensure compliance with Saudi and international cybersecurity standards, such as NCA, ISO 27001, and PDPL.
Develop and implement strategies to mitigate identified risks and address compliance gaps.
Monitor and ensure compliance with relevant Saudi cybersecurity regulations and international standards.
Track regulatory changes and adapt strategies and policies accordingly.
Collaborate with IT and security teams to integrate cybersecurity measures across the organization.
Facilitate cross-departmental coordination to ensure the effective implementation of all aspects of the cybersecurity framework.
Establish and enhance cybersecurity frameworks and methodologies to strengthen governance, risk management, and compliance activities.
Develop customized tools and templates for routine and strategic cybersecurity governance, risk management, and compliance activities.
Qualifications And Requirements
Education & Certification:
Bachelor’s or master’s degree in Cybersecurity, Information Security, Computer Science, Risk Management, or a related field.
Professional certifications as ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CISSP, CISM, or CRISC
Experience
04 - 06 years of experience in cybersecurity, risk management, governance, or compliance roles.
Saudi nationality is a must.
Hands-on experience in policy development, risk assessments, and compliance monitoring.
Familiarity with cybersecurity frameworks and standards, such as ISO 27001, NCA, PDPL, NIST, and SAMA regulations.
Experience in conducting security risk assessments and supporting cybersecurity audits.
Exposure to regulatory compliance tracking and assisting in policy updates.
Experience in managing and operating cybersecurity awareness and training programs.
Technical Skills
Basic understanding of cybersecurity risk management methodologies.
Strong documentation and report-writing skills.
Ability to collaborate with cross-functional teams to ensure compliance with security policies.
Strong communication and problem-solving skills.
Fluency in Arabic and English preferred.
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resumeSimilar jobs
Account Manager (Saudi National), AWS Public Sector, AWS PS
Amazon Web Services (AWS),
Riyadh
4 hours ago
DescriptionWould you like to be part of a team focused on increasing adoption of Amazon Web Services (AWS) by engaging with key government accounts? Do you have the business savvy and the technical background necessary to help establish Amazon Web Services as a key technology platform provider?As a Senior Account Manager for Public Sector you will have the exciting opportunity...
Software Engineering Manager - Shopping Squad
HungerStation | هنقرستيشن,
Riyadh
5 hours ago
About The OpportunityWe are searching for a highly talented Software Engineering Manager to be part of the Quick Commerce domain. If you're ready to drive impact, mentor a talented team, and grow in a dynamic B2C environment, this may be the perfect role for you!As a Software Engineering Manager at Hungerstation, you’ll:Define Team Strategy: Shape the strategic direction of your...
Procurement Specialist
Qureos,
Riyadh
7 hours ago
Responsibilities Develop and implement effective procurement strategies for various categories of goods and services. Manage the entire procurement cycle, including requisitioning, sourcing, negotiation, contracting, and expediting. Identify and evaluate potential suppliers, conducting due diligence and ensuring compliance with company policies and procedures. Negotiate favourable terms and conditions with suppliers, aiming for cost savings and optimal value. Build and maintain strong...
