Senior Cybersecurity Governance, Risk Management, and Compliance Engineer
Inovasys
Date: 3 hours ago
City: Riyadh
Contract type: Contractor
Job Description
Lead the development and implementation of a Cybersecurity Governance, Risk, and Compliance (GRC) strategy within the organization.
Oversee all cybersecurity governance, risk management, and compliance activities, ensuring alignment with the organization's cybersecurity objectives and regulatory standards.
Review, develop, and document policies, procedures, standards, and processes required by the organization and regulatory authorities.
Develop and implement a cybersecurity and data awareness program to ensure employees are informed about relevant security practices.
Develop and update the governance and operational model to ensure clarity in roles and responsibilities.
Conduct comprehensive cyber risk assessments and audits to identify vulnerabilities and ensure compliance with Saudi and international cybersecurity standards, such as NCA, ISO 27001, and PDPL.
Develop and implement strategies to mitigate identified risks and address compliance gaps.
Monitor and ensure compliance with relevant Saudi cybersecurity regulations and international standards.
Track regulatory changes and adapt strategies and policies accordingly.
Collaborate with IT and security teams to integrate cybersecurity measures across the organization.
Facilitate cross-departmental coordination to ensure the effective implementation of all aspects of the cybersecurity framework.
Establish and enhance cybersecurity frameworks and methodologies to strengthen governance, risk management, and compliance activities.
Develop customized tools and templates for routine and strategic cybersecurity governance, risk management, and compliance activities.
Qualifications And Requirements
Education & Certification:
Bachelor’s or master’s degree in Cybersecurity, Information Security, Computer Science, Risk Management, or a related field.
Professional certifications as ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CISSP, CISM, or CRISC
Experience
04 - 06 years of experience in cybersecurity, risk management, governance, or compliance roles.
Saudi nationality is a must.
Hands-on experience in policy development, risk assessments, and compliance monitoring.
Familiarity with cybersecurity frameworks and standards, such as ISO 27001, NCA, PDPL, NIST, and SAMA regulations.
Experience in conducting security risk assessments and supporting cybersecurity audits.
Exposure to regulatory compliance tracking and assisting in policy updates.
Experience in managing and operating cybersecurity awareness and training programs.
Technical Skills
Basic understanding of cybersecurity risk management methodologies.
Strong documentation and report-writing skills.
Ability to collaborate with cross-functional teams to ensure compliance with security policies.
Strong communication and problem-solving skills.
Fluency in Arabic and English preferred.
Lead the development and implementation of a Cybersecurity Governance, Risk, and Compliance (GRC) strategy within the organization.
Oversee all cybersecurity governance, risk management, and compliance activities, ensuring alignment with the organization's cybersecurity objectives and regulatory standards.
Review, develop, and document policies, procedures, standards, and processes required by the organization and regulatory authorities.
Develop and implement a cybersecurity and data awareness program to ensure employees are informed about relevant security practices.
Develop and update the governance and operational model to ensure clarity in roles and responsibilities.
Conduct comprehensive cyber risk assessments and audits to identify vulnerabilities and ensure compliance with Saudi and international cybersecurity standards, such as NCA, ISO 27001, and PDPL.
Develop and implement strategies to mitigate identified risks and address compliance gaps.
Monitor and ensure compliance with relevant Saudi cybersecurity regulations and international standards.
Track regulatory changes and adapt strategies and policies accordingly.
Collaborate with IT and security teams to integrate cybersecurity measures across the organization.
Facilitate cross-departmental coordination to ensure the effective implementation of all aspects of the cybersecurity framework.
Establish and enhance cybersecurity frameworks and methodologies to strengthen governance, risk management, and compliance activities.
Develop customized tools and templates for routine and strategic cybersecurity governance, risk management, and compliance activities.
Qualifications And Requirements
Education & Certification:
Bachelor’s or master’s degree in Cybersecurity, Information Security, Computer Science, Risk Management, or a related field.
Professional certifications as ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CISSP, CISM, or CRISC
Experience
04 - 06 years of experience in cybersecurity, risk management, governance, or compliance roles.
Saudi nationality is a must.
Hands-on experience in policy development, risk assessments, and compliance monitoring.
Familiarity with cybersecurity frameworks and standards, such as ISO 27001, NCA, PDPL, NIST, and SAMA regulations.
Experience in conducting security risk assessments and supporting cybersecurity audits.
Exposure to regulatory compliance tracking and assisting in policy updates.
Experience in managing and operating cybersecurity awareness and training programs.
Technical Skills
Basic understanding of cybersecurity risk management methodologies.
Strong documentation and report-writing skills.
Ability to collaborate with cross-functional teams to ensure compliance with security policies.
Strong communication and problem-solving skills.
Fluency in Arabic and English preferred.
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resumeSimilar jobs
Design Interface Manager
Parsons Corporation,
Riyadh
3 hours ago
In a world of possibilities, pursue one with endless opportunities. Imagine Next!When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find...
Product Consultant - Maximo
Cognizant,
Riyadh
3 hours ago
Job SummaryWe are seeking an experienced Product Consultant with 16 to 20 years of experience to join our team. The ideal candidate will have extensive expertise in IBM Maximo Asset Management and a strong background in Finance & Accounting or the Automotive Industry. This role requires working from the office during day shifts with occasional travel as needed. The candidate...
Finance Manager
AtkinsRéalis,
Riyadh
5 hours ago
AtkinsRéalis is looking for a Finance Manager, in Riyadh, KSA.About AtkinsRéalisCreated by the integration of long-standing organizations dating back to 1911, AtkinsRéalis is a world-class engineering services and nuclear company dedicated to engineering a better future for our planet and its people. We create sustainable solutions that connect people, data and technology to transform the world's infrastructure and energy systems....
