Cybersecurity GRC Manager

Overview

NEOM Green Hydrogen Company Limited (NGHC)

NEOM Green Hydrogen Company (NGHC) is on a mission to make a carbon-free, climate-safe future a reality. We are building the world’s largest plant to produce green ammonia at scale, providing cost-efficient solutions to accelerate the worldwide green hydrogen economy. Located in NEOM and supporting Saudi Arabia’s Vision 2030, NGHC will be integrating up to 4GW of onshore solar and wind energy to supply up to 650 tons of green ammonia per day for transportation globally. Operations will go onstream in 2026. NGHC brings together the technology, operational efficiency and know-how of ACWA Power, Air Products and NEOM in a joint-venture partnership with over 80 years of combined experience in hydrogen, energy, renewables and global networks.

JOB DETAILS

Division : Cybersecurity GRC

Reports To : Cybersecurity Director

Position Summary

The Cybersecurity GRC (Governance, Risk, and Compliance) Manager is responsible for leading and overseeing the organization\'s cybersecurity governance framework, risk management practices, regulatory compliance, and audit readiness. This role ensures alignment with national (e.g., NCA) and international standards (e.g., ISO 27001, NIST, COBIT) and provides strategic direction to maintain a secure and compliant environment.

Nature & Scope

The Cybersecurity GRC Manager oversees the organization’s cybersecurity governance, risk management, and regulatory compliance framework. The role covers enterprise-level policy development, risk monitoring, control implementation, compliance with national (e.g., NCA ECC, SAMA CSF) and international standards (e.g., ISO 27001, NIST), and internal / external audit readiness.

This position acts as the focal point for cybersecurity regulatory engagement, reporting to senior leadership, and guiding the organization in maintaining a mature, resilient, and compliant security posture.

Key Responsibilities (High-Level)

• Define and lead enterprise-wide GRC strategy and programs.
• Manage compliance with national and international regulatory frameworks.
• Oversee cybersecurity risk assessments, registers, and mitigation tracking.
• Direct policy, procedure, and standard lifecycle.
• Interface with regulators and manage audits.
• Provide executive reporting and GRC dashboards.
• Supervise and guide GRC teams and initiatives.

Principal Duties and Responsibilities

Essential Education Qualifications Required

Minimum Years Experience in Similar Job Role

7+ years in cybersecurity GRC or related risk / compliance functions.

Minimum Years of Managerial Experience

3+ years managing cybersecurity GRC or governance teams.

Seniority Level

Employment Type

Job Function

#J-18808-Ljbffr