Cyber Security Specialist

Job Summary:

The Cyber Security officer develops strategic and tactical plans for risk management. Ensure observing all operations occurring across the network and managing the infrastructure that facilitates those operations. The CSC establishes the governance framework for information security to provide assurance that information security strategies are consistent with applicable laws and regulations. In addition, the CSM communicates new key security initiatives and risks to top management and stakeholders to ensure that information risk is understood and identified. Ensure monitoring and reporting the performance of the security program to senior management. The CSM advises management on the impact of the company’s key risks; recommends mitigation controls for the company’s key risks and manage key projects.

Duties & Responsibilities

Develops strategic and tactical plans for risk management.

Develop best cyber security policy and operational procedures based on information collected.

Develop a documented action plan containing policies, practices and procedures that mitigate the identified risks.

Providing information security and information risk management frameworks.

Analyze and correlate information security events to identify appropriate event handling actions.

Identifying shifts in the organization’s implicit information risk appetite;

Assess the effectiveness of the measures against security risk management plan.

Identify threats and risks that are relevant to company's operations and systems.

Document information related to IT security attacks, threats, risks and controls.

Rate and categorize potential security incidents.

Test incident response plans periodically to ensure response times and executed procedures are acceptable.

Alerting operational management to emerging information security issues, changing regulatory, and information risk scenarios.

Monitoring the adequacy and effectiveness of internal control, accuracy and completeness of reporting, compliance with laws and regulations in connection with Information Security, and timely remediation of deficiencies.

Monitoring of compliance with cyber security regulations, policies, standards and procedures.

Performing Cyber Security Reviews.

Overseeing the investigation of cyber security incidents.

Ensure Compliance with AI and SAMA Cyber Security Framework.

Perform comparative analysis of security service performance level parameters against security information sources.

Recommend suitable enhancements to improve information security performance.

Evaluate response plans periodically to ensure relevance.

Key Performance Measures

Development of Cyber Security policies and practices.

Effective Action Plan against identified risks.

Documentation of security attacks, threats, risk and control.

Periodical incident response test.

Efficient Cyber Security Review

Education

Bachelor Degree in Computer Science/Engineering, Information System/Security or any relevant degree from a reputable university or equivalent.

M.Sc. in Computer Engineering or related field is preferred.

Certified Information Systems Security Professional (CISSP) or Systems Security Certified Practitioner (SSCP).

Experience & Requirements

Minimum 3-5 years of experience in relevant field or industry (5 of which in managerial level).

Strong understanding of emerging cyber security technologies and standards.

High-level proficiency in MS Office.

Good verbal, interpersonal and written communication skills (English and Arabic).