Cybersecurity Risk Compliance and Assurance Manager
Cyntin PartnersRiyadh, Riyadh Region, Saudi ArabiaCybersecurity Risk Compliance and Assurance Manager
Immediate Hiring : Cybersecurity Risk Compliance and Assurance Manager (Contract 3 Years)
We are seeking an experienced Cybersecurity Risk Compliance and Assurance Manager to design and execute an enterprise-wide risk management framework, ensure regulatory and standards compliance, and drive cyber resilience for our FMCG operations in Saudi Arabia. The role will partner with senior leadership, internal audit, and business units to embed risk-based decision making, strengthen controls, and sustain a risk-aware culture.
Location : Saudi Arabia (preference for candidates already based in KSA)
Contract Duration : Up to 3 years
Start Date : Immediate
Key Responsibilities
- Design, implement, and maintain an enterprise-wide cyber risk management framework
- Define risk appetite and tolerance levels aligned with business strategy
- Establish and maintain risk registers and reporting mechanisms
- Coordinate with senior leadership and board-level committees to review and prioritize risks
- Oversee risk mitigation strategies and align resource allocation with priorities
- Integrate risk management into business decision making processes
- Lead risk communication initiatives and foster a risk-aware culture across the organization
- Provide dashboards and updates on the overall risk posture
- Develop and standardize risk assessment methodologies aligned with industry standards
- Conduct assessments including threat analysis, vulnerability scanning, penetration testing, and control reviews
- Document findings with clear risk ratings and actionable recommendations
- Collaborate with teams to ensure timely remediation of vulnerabilities
- Monitor emerging threats and update assessments based on business or technology changes
- Ensure compliance with regulations such as NCA, SDAIA PDPL, and NDMO guidance
- Align internal controls with frameworks such as ISO 31000, ISO 27001, NIST 800-37 and 800-53, and FAIR
- Coordinate with internal and external audits and manage third-party compliance reviews
- Prepare compliance reports for executive leadership and regulators
- Develop, implement, and test business continuity and disaster recovery plans
- Define and maintain incident response protocols and lead crisis management during cyber incidents
- Conduct resilience assessments including red team exercises and stress tests
- Provide updates to management on resilience status and lessons learned
Qualifications and Experience
Preferred Certifications
Strategic thinker with strong analytical and problem solving abilities
Excellent communication skills in English and Arabic, capable of translating technical risks for business audiences
Collaborative leadership style with experience building consensus across functions
Detail oriented, integrity driven, and focused on continuous improvement
#J-18808-Ljbffr
Create a job alert for this search
Compliance Manager • Riyadh, Riyadh Region, Saudi Arabia