Cybersecurity Governance Officer

Position Level: Senior Specialist

Responsible for establishing, maintaining, and overseeing the cybersecurity governance framework, ensuring alignment with national regulations, international standards, and organizational objectives.

• Develop, implement, and continuously improve the cybersecurity governance framework
• Ensure compliance with ECC‑2024 controls and National Cybersecurity Authority requirements
• Coordinate cybersecurity governance matters with senior management and governance committees
• Lead development, review, and enforcement of cybersecurity policies, standards, and procedures
• Manage engagement with regulatory authorities and external stakeholders
• Drive organization‑wide cybersecurity awareness and governance programs

• Bachelor’s degree in Information Security, Computer Science, or a related discipline
• Minimum 5 years of experience in cybersecurity governance, GRC, or information security management
• Relevant certifications such as CRISC, CGEIT, ISO 27001 Lead Implementer, or equivalent
• Strong working knowledge of ECC‑2024, ISO 27001, and NIST frameworks
• Fluency in Arabic and English

• Cybersecurity governance, risk, and compliance (GRC)
• Policy lifecycle management
• Regulatory and standards compliance
• Executive and stakeholder engagement
• Strategic planning and oversight

Position Level: Mid‑Senior Specialist

Supports the organization’s cybersecurity risk management and compliance activities through structured assessments, monitoring, reporting, and audit readiness.

• Conduct cybersecurity risk assessments, gap analysis, and control evaluations
• Monitor ongoing compliance with cybersecurity frameworks, standards, and regulatory controls
• Prepare compliance reports, dashboards, and supporting documentation
• Maintain and update cybersecurity risk registers and mitigation plans
• Support internal and external cybersecurity audits and assessments
• Maintain structured evidence repositories for audit and compliance purposes

• Bachelor’s degree in Information Security or a related field
• 3–5 years of experience in cybersecurity risk management, compliance, or audit support
• Certifications such as CRISC, ISO 27001 Lead Auditor, CISA, or equivalent
• Hands‑on experience with recognized risk assessment methodologies
• Proficiency in Arabic and English

• Cybersecurity risk assessment and analysis
• Compliance monitoring and reporting
• Audit coordination and support
• Evidence and documentation management
• Strong analytical and problem‑solving skills

Position Level: Specialist

Provides operational and documentation support to cybersecurity governance and policy management activities, ensuring policies remain current, approved, and effectively communicated.

• Administer and maintain the cybersecurity policy management system
• Update cybersecurity policies, standards, procedures, and guidelines
• Track policy review cycles, approvals, and version control
• Coordinate cybersecurity policy awareness and training sessions
• Prepare periodic reports on policy compliance and adoption
• Support documentation of cybersecurity and governance processes
• Participate in governance and policy review committees

• Bachelor’s degree in Information Technology, Information Security, or a related field
• 2–4 years of experience in cybersecurity, IT governance, or compliance support roles
• Working knowledge of cybersecurity frameworks such as ISO 27001 and NIST
• Information security certification preferred
• Strong written communication and documentation skills

• Policy and document lifecycle management
• High attention to detail
• Coordination and stakeholder communication
• Governance and project support
• Reporting and documentation accuracy

Mid‑Senior level

Full‑time

Other, Information Technology, and Management

Computer and Network Security