Job description

This role will specialize in all aspects of information security management and business and regulatory compliance using cloud services in large-scale computing environments.

• Refine risk management strategies to ensure key Security risks are captured and actioned
• Identify gaps in Technological architectures, and systems controls and develop solutions to remediate those gaps.
• Assess the risk from security deviation and exceptions.
• Dive deep with threat modeling, data flows.
• Oversee the execution of risk assessments for security and technology risks
• Identifies gaps in controls and processes
• Develop and deliver risk and finding dashboards and reporting
• Oversight and management of risk management tools
• Implementation of automated risk scoring where possible
• Continuous improvement of the program, recommends improvements to drive program efficiencies
• Maintains subject matter expertise in security risk and control

• Bachelor’s degree in Management Information Systems, Computer Science, or related field, or relevant industry experience
• 3- 6 years of information security, audit, risk management, compliance or risk consulting experience
• Excellent written and verbal communication skills
• SME in risk management, business risk analysis, and making complex business/risk trade-off recommendations and decision
• In-depth knowledge of security compliance, risk management, and technical frameworks
• Maturity, judgment, and proven ability to lead and influence others
• Independently driven, resourceful, and able to deliver results with minimal direction
• High sense of ownership, urgency, and drive
• Leadership-level communication (written and verbal)

• Master’s degree in Business Administration, Information Systems, related field, or equivalent practical experience
• Experience working with Engineer and Architects
• Relevant Industry certifications (CISSP, CISA etc.)
• Experience working with IT-GRC tools
• Experience implementing automated risk scoring
• Experience working with IT-Risk Frameworks (NIST, ISO-27X etc.)

Job Location: Saudi Arabia

No of Positions: 2

Note: The candidate would be expected to work in diverse consulting engagements and are willing to travel to Middle East countries for project execution at least 50% of their time.

Preference to candidates who can join immediately or within 15 days at the max.

Employment Type: Full-time

Industry

• Information Technology & Services

Employment Type

Full-time