Talent.com
Cybersecurity Governance, Risk, and Compliance Sr. Manager

Cybersecurity Governance, Risk, and Compliance Sr. Manager

Dammam Airports CompanySaudi Arabia
منذ يوم 1
الوصف الوظيفي

Job Purpose

Cybersecurity Governance, Risk, and Compliance Senior Manager is responsible for developing organizational cybersecurity framework for IT and OT—including, but not limited to, policies, standards, awareness program, compliance program, project portfolio, and security architecture. Governs cybersecurity structures and processes, manages cybersecurity risks, and assures compliance with the organization’s cybersecurity, risk management and related legal requirements.

Position Accountability Description

Strategic Leadership

  • Develop and implement a strategic plan for the Cybersecurity Governance, Risk, and Compliance, ensuring alignment with organizational goals and the evolving cybersecurity landscape.
  • Oversee daily operations by managing team activities, resolving issues, and ensuring adherence to cybersecurity policies, maintaining smooth and efficient departmental functioning.
  • Establish and monitor key performance indicators (KPIs) to measure the effectiveness of the Cybersecurity Governance, Risk, and Compliance, driving continuous improvement and operational excellence.

Operational Excellence

  • Manage robust cybersecurity governance frameworks, defining risk management processes, ensuring compliance, guiding decision‑making, and setting risk tolerance levels.
  • Ensure adherence to regulations and industry standards by staying updated on evolving compliance requirements, conducting regular compliance assessments to identify gaps, and implementing corrective actions to align with best practices.
  • Lead the optimization of the efficiency of cybersecurity processes by automating routine tasks, reducing manual intervention, and improving the speed and accuracy of security operations, thus enhancing overall operational effectiveness.
  • Lead the enhancement of the incident response process by streamlining communication channels, reducing response times, and implementing clear protocols that ensure quick and effective resolution of cybersecurity incidents.
  • Conduct compliance assessment for DACO, third‑party and external vendor service providers.
  • Conduct comprehensive risk assessments to identify potential threats, vulnerabilities, and security gaps within the organization's systems, networks, and processes.
  • Develop and implement mitigation strategies to minimize risk exposure and enhance the overall security posture.
  • Lead the development and delivery of cybersecurity awareness programs to educate employees and stakeholders on best practices, emerging threats, and security protocols.
  • Ensure continuous improvement of awareness initiatives to foster a culture of security across the organization.
  • Monitor the implementation of the cybersecurity strategy to ensure achievement of objectives.
  • Oversee DACO systems compliance with cybersecurity, resilience, and dependability requirements.
  • Oversee the cybersecurity compliance processes and audits for third party services.
  • Oversee the implementation of the training and awareness activities at DACO.
  • Manage the development of cybersecurity architecture considering the critical business functions, baseline requirements and systems security requirements.
  • Ensure the effectiveness of the security mechanism for the protection of DACO data, systems and networks.
  • Perform other related duties as assigned and any additional ad‑hoc will be assigned as per work requirement.

    • Compliance and Best Practices

  • Integrate with stakeholders for effective control deployment, collaborating with internal teams and external partners. Promote engagement and communication for cybersecurity alignment and facilitate a cohesive approach to enhancing the security posture.
  • Control the effectiveness of cybersecurity controls through regular audits, identifying vulnerabilities, and areas for improvement. Strengthen defences against cyber threats proactively to ensure ongoing compliance with cybersecurity standards.
  • Manage and implement a comprehensive cybersecurity governance framework encompassing policies, procedures, and controls to guide the organization's cybersecurity strategy. This framework should define roles and responsibilities, establish risk management processes, and ensure alignment with regulatory requirements and industry best practices.
  • Ensure implementation of National Cyber Security Authority (NCA) guidelines, overseeing the alignment of operational processes and security measures with national cybersecurity directives.
  • Lead the management of comprehensive cybersecurity governance frameworks, including risk assessments, compliance checks, awareness program and internal audits, to strengthen the organization's security posture.

    • Collaboration and Communication

  • Integrate with legal and regulatory affairs to address cybersecurity legal compliance requirements, ensure data protection, and manage incident reporting obligations effectively. Stay informed about data privacy laws, regulations, and industry‑specific compliance mandates to align cybersecurity practices with legal requirements.
  • Lead cybersecurity awareness campaigns, communication strategies, and crisis management plans to enhance resilience, responsiveness, and recovery capabilities in the event of a cyber incident. Develop a communication strategy that educates employees, executives, and stakeholders about cybersecurity risks, incident reporting procedures, and security best practices.

    • Stakeholder Management

  • Lead cross‑functional teams in conducting thorough security assessments and audits to identify vulnerabilities, assess risks, and enhance the organization's overall security posture. Collaborate with IT, compliance, and business teams to address security gaps, prioritize remediation efforts, and drive continuous improvement in cybersecurity practices.
  • Integrate with key stakeholders, including senior leadership, department heads, and external partners, to align cybersecurity initiatives with business objectives and industry standards. Ensure that cybersecurity goals and strategies support the organization's mission and operational requirements.
  • Align incident response protocols and conduct regular tabletop exercises to simulate cybersecurity incidents, test response procedures, and evaluate the organization's readiness to manage breaches effectively.

    • Team Leadership and Development

  • Guide emerging cyber threats and trends by staying abreast of industry reports, threat intelligence sources, and cybersecurity forums. Analyse potential risks, vulnerabilities, and attack vectors to proactively develop mitigation strategies and enhance the organization's security defences.
  • Plan and deliver comprehensive cybersecurity training programs for employees at all levels of the organization. Design engaging and interactive training modules to raise awareness of cybersecurity risks, best practices, and compliance requirements.
  • Align continuous compliance assessments to ensure adherence to relevant regulations, standards, and industry best practices. Review regulatory requirements, compliance frameworks, and data protection laws to align cybersecurity practices with legal obligations and privacy mandates.

    • Innovation and Continuous Improvement

  • Optimize cybersecurity tools and technologies by evaluating, selecting, and implementing solutions that enhance the organization's security posture. Conduct regular assessments of security tools, technologies, and controls to identify gaps, weaknesses, and opportunities for improvement.
  • Manage metrics to measure the effectiveness of cybersecurity initiatives and track progress toward security goals. Develop a cybersecurity dashboard to monitor KPIs related to risk management, incident response, compliance achievements, security awareness, and overall security performance.

    • #J-18808-Ljbffr

    إنشاء تنبيه وظيفي لهذا البحث

    Governance Compliance • Saudi Arabia

    الوظائف ذات الصلة
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Assistant Manager - Cyber Security (Pre-Sales)

    Assistant Manager - Cyber Security (Pre-Sales)

    inboxSaudi Arabia
    Inbox Technologies Arabia is seeking a talented.Assistant Manager – Cyber Security (Pre‑Sales).The ideal candidate will have strong technical understanding, excellent communication skills, and the ...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    EHS Manager – Global Safety & Compliance (Relocation)

    EHS Manager – Global Safety & Compliance (Relocation)

    RGH-Global LtdSaudi Arabia
    A leading global provider in facilities management is seeking an EHS Manager in Riyadh.The role involves developing safety management systems, conducting audits, and ensuring compliance with health...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Senior Secure Platform Architect - IAM, IaC & NIST 800-53

    Senior Secure Platform Architect - IAM, IaC & NIST 800-53

    King Abdullah Bin Abdulaziz University HospitalSaudi Arabia
    A leading technology institution in Saudi Arabia is seeking a Senior Secure Platform Specialist to lead the secure design, security, and management of critical infrastructure.This role requires exp...أظهر المزيدآخر تحديث: 6 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    Senior Manager - Governance, Risk & Compliance, and Legal Transformation - United Feed Co.

    Senior Manager - Governance, Risk & Compliance, and Legal Transformation - United Feed Co.

    Qureos IncSaudi Arabia, Saudi Arabia
    Lead the design, implementation, and maintenance of GRC frameworks to ensure compliance with regulatory requirements.Monitor and mitigate business risks, ensuring effective internal controls are in...أظهر المزيدآخر تحديث: منذ أكثر من 30 يومًا
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Assistant Manager - Cyber Security (Pre-Sales)

    Assistant Manager - Cyber Security (Pre-Sales)

    Inbox Business TechnologiesSaudi Arabia
    Inbox Technologies Arabia is seeking a talented Assistant Manager – Cyber Security (Pre‑Sales) to support our cybersecurity sales and solution design efforts. The ideal candidate will have strong te...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Director / Senior Manager, Enterprise Applications

    Director / Senior Manager, Enterprise Applications

    Soar Software Development CompanySaudi Arabia
    Soar is a global fintech startup that specializes in financing and investment.Currently headquartered in Saudi Arabia, Soar is growing throughout the region with a mission to help people achieve th...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Senior Secure Platform Specialist

    Senior Secure Platform Specialist

    King Abdullah Bin Abdulaziz University HospitalSaudi Arabia
    Select how often (in days) to receive an alert : .King Abdullah University of Science & Technology.The ideal candidate brings deep technical expertise and strategic thinking, with full accountability...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    L2 SOC Analyst

    L2 SOC Analyst

    CCDSSaudi Arabia
    CCDS is at the forefront of information technology and cybersecurity solutions, and we are seeking a skilled SOC Analyst L2 to enhance our dynamic team. In this pivotal role, you will oversee and ma...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Risk Lead

    Risk Lead

    Network InternationalSaudi Arabia
    The role is responsible for driving robust operational risk and fraud risk management across the organization, with a strong focus on proactive risk mitigation, vendor oversight, and internal contr...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Cyber Security Manager (Pre-Sales)

    Cyber Security Manager (Pre-Sales)

    Inbox Business TechnologiesSaudi Arabia
    Inbox Technologies Arabia is looking for a highly skilled and experienced Cyber Security Manager (Pre-Sales) to join our growing team. In this role, you will be responsible for engaging with clients...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Project Risk Control Lead

    Project Risk Control Lead

    InsightsSaudi Arabia
    A leading project management firm in Saudi Arabia is seeking a Project Risk Controller to manage project risks effectively. The ideal candidate will have at least 5 years of experience in risk manag...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    HS&W Manager

    HS&W Manager

    SNC-Lavalin Fayez EngineeringSaudi Arabia
    The experienced H&S Manager to lead and oversee health, safety, and environmental operations across diverse project sites and consultancy engagements. The ideal candidate will possess a strong found...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Risk Controller

    Risk Controller

    InsightsSaudi Arabia
    The Project Risk Controller is responsible for identifying, assessing, mitigating, and monitoring risks throughout the lifecycle of the project. This role ensures that risks are proactively identifi...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Cybersecurity Pre-Sales Lead - Assistant Manager

    Cybersecurity Pre-Sales Lead - Assistant Manager

    inboxSaudi Arabia
    A leading technology firm in Saudi Arabia is seeking an Assistant Manager – Cyber Security (Pre‑Sales) to assist senior managers in customer engagements and solution design.Candidates should have a...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Associate Director - Project Management / Global Industrialization (Riyadh)

    Associate Director - Project Management / Global Industrialization (Riyadh)

    RaytheonSaudi Arabia
    AZ227 : 3601 E Britannia Dr 3601 East Britannia Drive , Tucson, AZ, 85706 USA.Person, or Immigration Status Requirements : . The ability to obtain and maintain a U.At Raytheon, the foundation of everyt...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Senior WAF & Network Security Engineer

    Senior WAF & Network Security Engineer

    CCDSSaudi Arabia
    A technology company in Saudi Arabia is seeking a Senior Network Security Engineer to design, implement, and manage secure frameworks for web applications and network infrastructure.The role requir...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    ICS / OT Cybersecurity Lead - Compliance & Incident Response

    ICS / OT Cybersecurity Lead - Compliance & Incident Response

    ACWA PowerSaudi Arabia
    An energy sector leader in Saudi Arabia is seeking a cybersecurity professional to manage security operations, regulatory compliance, and vulnerability assessments. The ideal candidate will ensure t...أظهر المزيدآخر تحديث: 8 منذ ساعات
    • عَرْضٌ مُرَوَّجٌ له
    • جديد!
    Business Continuity Specialist – Cybersecurity

    Business Continuity Specialist – Cybersecurity

    Saudi Networkers ServicesSaudi Arabia
    Business Continuity Specialist – Cybersecurity.Business Continuity Specialist – Cybersecurity.Develop, implement, and maintain business continuity and disaster recovery plans for IT and cybersecuri...أظهر المزيدآخر تحديث: 8 منذ ساعات