Senior Manager of Cybersecurity Risk Management

We are seeking a high-impact Senior Manager to lead our comprehensive Cybersecurity Risk Management and Assurance function.

As a high-growth leader in the FinTech sector protecting our sensitive data and critical infrastructure is paramount. This strategic role is accountable for defining our risk tolerance owning the assurance programs and providing executive guidance on cyber risk mitigation.

If you are a proven leader with deep expertise in Vulnerability Management Penetration Testing and regulatory compliance we invite you to join our senior security team.

What You Will Own (Key Accountabilities):

• Risk Strategy & Ownership: Develop and execute the enterprise-wide cybersecurity risk management strategy owning decisions on risk tolerance and remediation prioritization to align security with core business objectives.
• Vulnerability & Testing Programs: Lead the design and execution of the end-to-end Vulnerability Assessment (VA) and Penetration Testing (PT) programs dictating scope methodologies and tools.
• Compliance & Assurance: Accountable for ensuring continuous adherence to critical regulatory frameworks including SAMA CSF PCI DSS and NCA by establishing robust security policies and controls.
• Team Leadership & Development: Recruit mentor and manage a high-performing Cyber Security Assurance team making key decisions on team structure and resource allocation to meet evolving threat landscapes.
• Stakeholder Communication: Own the communication strategy for presenting security risks assurance findings and mitigation progress to senior leadership and cross-functional partners (IT Development Compliance).

What You Bring (Required Expertise):

• Experience: 4-8 years of progressive experience leading cybersecurity risk management vulnerability and assurance programs.
• Risk Frameworks: Deep knowledge and practical experience with risk assessment frameworks such as NIST 800-30 SAMA ISO 27005 and others.
• Regulatory Compliance: Sound experience managing remediation efforts and audit preparation for major financial/payments regulations (e.g. PCI-DSS SAMA CSF).
• Technical Acumen: Strong understanding of security architecture network hardening application security controls (OWASP) and the ability to perform internal security reviews.
• Leadership: Demonstrated experience leading technical teams driving cross-functional collaboration and presenting complex security matters to executive audiences.

Highly Desirable Certifications:

Candidates with one or more of the following are preferred:

• CISA / CRISC / CISSP
• GIAC Certifications
• Cloud Security Certifications (e.g. CCSP AWS/Azure/GCP Security)

Ready to own the security posture of a major FinTech organization Apply now!