Role - We are looking for more of a Cybersecurity GRC role with good technical knowledge.

Key Responsibilities we are looking for are :

·         Develop and maintain cybersecurity policies, standards, and governance frameworks.

·         Conduct regular cybersecurity risk assessments and maintain the risk register.

·         Ensure compliance with s SAMA Cyber Security Framework and PCI-DSS.

·         Coordinate internal and external audits, and track remediation of findings.

·         Assess third-party/vendor cybersecurity risks during onboarding and review cycles.

·         Collaborate with cross-functional teams to embed GRC practices into operations.

·         Act as a subject matter expert on governance, risk, and compliance topics.

·         Security Architecture and Engineering knowledge

Required Qualifications and Skills:

·         Bachelor's degree in Cybersecurity related field.

·         8–10 years of experience in cybersecurity, with a strong focus on GRC functions.

·         Solid understanding of risk management principles, SAMA Cyber Security Framework and PCI-DSS compliance requirements

·         Hands-on experience with SAMA Cyber Security Framework and PCI-DSS.

·         Experience supporting or leading internal and external IT/security audits.

·         Familiarity with GRC tools such as Archer,

·         Strong organizational and project management abilities to handle multiple initiatives.

·         knowledge of network protocols, security architecture, and cloud security

Preferred Qualifications:

·         Master's degree in a relevant field.

·         Professional certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), GIAC certifications (e.g., GCIH, GCIA), or equivalent.

·         Experience in a leadership or mentorship role within a security team.