الوظائف الحالية

Summary: Responsible for overseeing and managing the company's cybersecurity compliance functions. They will work closely with various departments to ensure the organization operates in accordance with legal and regulatory guidelines while minimizing business risks.

Responsibilities:

• Develop, implement, and revise compliance policies, procedures, and controls to ensure compliance with national cybersecurity legislation and requirements.
• Conduct regular compliance assessments and audits of cybersecurity controls issued by the National Cybersecurity Authority to identify areas of non-compliance, monitor, and implement corrective actions.
• Conduct regular compliance assessments and audits of cybersecurity policies, procedures, and standards to identify areas of non-compliance, monitor, and implement corrective actions.
• Stay abreast of changes in regulatory requirements and ensure the company adjusts its policies and procedures accordingly.
• Provide guidance and training to employees on compliance-related matters.
• Identify, assess, and prioritize risks facing the organization.
• Develop and amend organizational policies, procedures, and standards in line with regulatory requirements.
• Regularly review existing policies and procedures to identify areas for improvement or updates.
• Ensure policies and procedures are effectively communicated to employees and stakeholders.

Qualifications:

• Bachelor's degree in computer science, information technology, cybersecurity, or a related field.
• Must have 3 to 5 years of experience in the field.
• Must be a Saudi national only.
• Must have experience in compliance and risk management or a related field.
• Have a strong understanding of the cybersecurity controls issued by the National Cybersecurity Authority (NCA Controls).
• Have strong analytical, problem-solving, and decision-making skills.
• Have effective communication skills, with the ability to collaborate across departments and levels within the organization.
• Have a relevant certification, e.g., CISM, ISO 27001, or CISSP.