Cyber Security Analyst

Overview

To support the organization’s Governance, Risk, and Compliance (GRC) cybersecurity framework by implementing, monitoring, and reporting on cybersecurity initiatives, ensuring alignment with Saudi regulatory requirements and internal policies. The role focuses on managing cybersecurity risks, compliance, and governance activities to strengthen the organization’s security posture. Key responsibilities

Assist in the development, implementation, and maintenance of the organization’s cybersecurity governance framework in alignment with Saudi cybersecurity regulations. Support the identification, assessment, and mitigation of cybersecurity risks as part of the enterprise risk management process. Monitor compliance with cybersecurity policies, frameworks, and standards, providing regular updates to the Head of GRC and Cybersecurity. Coordinate and support internal and external cybersecurity audits and regulatory assessments. Conduct periodic risk assessments and ensure that gaps are documented and addressed through actionable plans. Maintain the cybersecurity risk register and track the status of mitigation actions. Support the development and delivery of cybersecurity awareness programs for all employees. Monitor security incidents and collaborate with IT and third-party vendors for timely response and remediation. Assist in managing third-party risks by ensuring vendors comply with the organization’s cybersecurity requirements. Prepare regular reports on cybersecurity risks, compliance status, and performance metrics for leadership and board-level committees. Stay updated on emerging cybersecurity threats and regulatory changes to recommend proactive measures. Qualifications

Bachelor’s degree in Cybersecurity, Information Security, Information Technology, or a related field. Preferably one or more of the following certifications or similar in Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), ISO 27001 Lead Implementer or Auditor and Certified in Risk and Information Systems Control (CRISC). Proficiency in Microsoft Office Suite Word, Excel, PowerPoint, and Outlook. Exceptional written and verbal communication skills in both English and Arabic. 3-4 years of experience in cybersecurity governance, risk, and compliance. Seniority level

Entry level Employment type

Full-time Job function

Analyst, Information Technology, and Quality Assurance Industries

Investment Banking, Real Estate, and Oil and Gas

#J-18808-Ljbffr