Experienced Cybersecurity GRC Manager for an onsite secondment role in Riyadh, KSA

DIKTUCOM

Job Location:

Riyadh - Saudi Arabia

Monthly Salary: Not Disclosed

Posted on: 7 hours ago

Vacancies: 1 Vacancy

Job Summary

Client > Large Enterprise Saudi Arabia
Context > For a project with a Partner in KSA we are seeking to onboard an experienced Cybersecurity GRC Manager for a role in Riyadh Technology Industry
Tasks / Responsibilities > Provide co-sourced operational support to run the client’s cybersecurity function including execution of agreed processes and coordination with stakeholders; Support the establishment and maintenance of the cybersecurity operating model roles and responsibilities; Run governance and reporting rhythms including operational meetings management reporting and cybersecurity committee updates; Ensure ongoing compliance with NCA ECC/CCC PDPL ISO 27001 and other applicable regulations; Maintain and update the NCA ECC/CCC control mapping matrix and track compliance status; Support cyber risk management activities including maintaining risk registers and monitoring mitigation actions; Monitor regulatory updates (NCA SDAIA CST NDMO) and perform impact assessments recommending updates to policies processes and roadmap; Maintain regulatory-ready evidence repositories to support audits inspections and client inquiries; Support internal and external audits including NCA SDAIA and CST inspections; Coordinate responses to client cybersecurity inquiries and assurance requests; Maintain incident response readiness and support incident handling activities; Ensure proper documentation of incidents lessons learned and improvement actions; Support the execution and periodic update of the cybersecurity performance against KPIs SLAs and cybersecurity objectives.
Requisites > 1) Strong hands-on experience with Saudi cybersecurity regulations and frameworks including National Cybersecurity Authority (NCA) frameworks (ECC CCC) 2) Ability to interpret and operationalize local regulatory requirements into enterprise controls 3) Proven capability to design and implement enterprise cybersecurity governance models including policies standards and procedures risk governance committees 4) Being already established in KSA 5) Aligned with Saudi Cyber Risk Reporting regulations 6) Stakeholder Management in Saudi Context
Workload/Location> Full-time Riyadh (Saudi Arabia)
Start-date > Immediate need 12 months
Rate > able to attract more qualified candidates

Client > Large Enterprise Saudi ArabiaContext > For a project with a Partner in KSA we are seeking to onboard an experienced Cybersecurity GRC Manager for a role in Riyadh Technology IndustryTasks / Responsibilities > Provide co-sourced operational support to run the client’s cybersecurity function ...

Client > Large Enterprise Saudi Arabia
Context > For a project with a Partner in KSA we are seeking to onboard an experienced Cybersecurity GRC Manager for a role in Riyadh Technology Industry
Tasks / Responsibilities > Provide co-sourced operational support to run the client’s cybersecurity function including execution of agreed processes and coordination with stakeholders; Support the establishment and maintenance of the cybersecurity operating model roles and responsibilities; Run governance and reporting rhythms including operational meetings management reporting and cybersecurity committee updates; Ensure ongoing compliance with NCA ECC/CCC PDPL ISO 27001 and other applicable regulations; Maintain and update the NCA ECC/CCC control mapping matrix and track compliance status; Support cyber risk management activities including maintaining risk registers and monitoring mitigation actions; Monitor regulatory updates (NCA SDAIA CST NDMO) and perform impact assessments recommending updates to policies processes and roadmap; Maintain regulatory-ready evidence repositories to support audits inspections and client inquiries; Support internal and external audits including NCA SDAIA and CST inspections; Coordinate responses to client cybersecurity inquiries and assurance requests; Maintain incident response readiness and support incident handling activities; Ensure proper documentation of incidents lessons learned and improvement actions; Support the execution and periodic update of the cybersecurity performance against KPIs SLAs and cybersecurity objectives.
Requisites > 1) Strong hands-on experience with Saudi cybersecurity regulations and frameworks including National Cybersecurity Authority (NCA) frameworks (ECC CCC) 2) Ability to interpret and operationalize local regulatory requirements into enterprise controls 3) Proven capability to design and implement enterprise cybersecurity governance models including policies standards and procedures risk governance committees 4) Being already established in KSA 5) Aligned with Saudi Cyber Risk Reporting regulations 6) Stakeholder Management in Saudi Context
Workload/Location> Full-time Riyadh (Saudi Arabia)
Start-date > Immediate need 12 months
Rate > able to attract more qualified candidates