Cybersecurity Operations Manager (KSA National)

Our Culture :

At Zaintech we are proud of our culture and how it drives everything we do. We are looking for individuals who share our values and want to be part of a unique and engaging culture that revolves around collaboration and innovation. If you are looking for a role where you can drive engagement and excellence across teams through commitment and collaboration, and are someone who is customer-centric and appreciates an organization with uncompromised integrity that focuses on employee engagement then read on to learn more about how you can become part of the Zaintech family.

Our Code of Conduct :

At Zaintech we strictly adhere to our code of conduct, which is there to serve as a moral compass, offering a framework for responsible behaviours and enabling ethical choices that cultivate positive relationships and a better future. It also outlines policies, standards, and procedures for our global operations, promoting integrity and ethical excellence across the countries we engage with.

Every year, all employees are required to review, comprehend, confirm, and adhere to the code of conduct. Additionally, all newly hired employees are subject to the same as part of their onboarding process.

Role Summary

The Cybersecurity Operations Manager is responsible for the organisation’s 24×7 Security Operations Centre (SOC) in the Kingdom of Saudi Arabia. Reporting to the Cyber Security Manager (KSA)—with functional alignment to the Regional CISO and Cyber Governance Office—the role drives continuous improvement of SOC capabilities, communicates operational risk and performance metrics to senior leadership, and champions a culture of security across the enterprise.

In addition to provide high-level security guidance and approving architecture decisions to ensure all new solutions align with regional standards, zero-trust principles, and Saudi NCA ECC / CCC controls.

Duties and Responsibilities :

• Maintain a resilient 24×7 SOC that meets agreed service-level objectives for mean-time-to-detect (MTTD) and mean-time-to-respond (MTTR).
• Ensure full compliance with Saudi national cybersecurity regulations (NCA ECC / CCC) and other applicable legislation and standards (ISO27001, PCI-DSS, etc.).
• Optimise cybersecurity budget and resources to balance risk reduction with business value.
• Develop and retain talent, building a high-performing cybersecurity-operations team with clearly defined career paths.
• Embed secure-by-design architecture governance, guaranteeing that material technology changes and projects pass security-design review and conform to the enterprise reference architecture.

Key Responsibilities

Responsibilities are grouped for clarity; operations remain the primary focus, with architecture covered in a dedicated secondary section.

Leadership & Strategy

Risk Governance & Compliance

SOC Operations & Incident Response

Threat & Vulnerability Management

Security Architecture

Training, Awareness & Talent Management

1.Minimum Qualification and certifications

2.Skills and knowledge

Operations-focused knowledge remains unchanged (network security, incident response, risk, compliance, cloud, cryptography). Additional architecture-specific competencies include : secure-configuration management, security-design methodologies, enterprise architecture frameworks, security-design trade-off analysis, and evaluation of emerging technologies.

#J-18808-Ljbffr