Enable job alerts via email!

Cybersecurity GRC Specialist

Saudi Networkers Services

Riyadh

On-site

SAR 150,000 - 200,000

Full time

Today
Be an early applicant

Job summary

A cybersecurity firm in Riyadh is seeking a professional to develop and maintain cybersecurity governance frameworks and compliance policies. The role requires 3-7 years of experience in cybersecurity with a focus on risk management and strong knowledge of ISO 27001 and NIST standards. If you have relevant experience and qualifications, please apply for this key position.

Qualifications

  • 3 – 7 years of experience in cybersecurity, focusing on governance, risk, and compliance.
  • Strong understanding of security frameworks like ISO 27001, NIST, and COBIT.
  • Professional certifications are an advantage (e.g., CISA, CISSP).

Responsibilities

  • Develop and maintain cybersecurity governance frameworks, policies, and procedures.
  • Conduct regular reviews to ensure compliance with regulatory requirements.
  • Identify, assess, and monitor cybersecurity risks across systems and networks.
  • Support risk assessment processes and develop mitigation plans.

Skills

Cybersecurity governance
Risk assessment
ISO 27001
NIST
Security audits
Compliance management

Education

Bachelor’s degree in Information Security or related field
Job description
Responsibilities
  • Develop and maintain cybersecurity governance frameworks, policies, and procedures aligned with industry standards (ISO 27001, NIST, CIS Controls, etc.).
  • Conduct regular reviews and updates to ensure documentation reflects current risks and regulatory requirements.
  • Assist in security awareness initiatives and training programs.
  • Identify, assess, and monitor cybersecurity risks across systems, networks, and third‑party engagements.
  • Support risk assessment processes and develop mitigation plans in collaboration with relevant stakeholders.
  • Maintain the risk register and ensure effective tracking and reporting of risk status and treatment plans.
  • Ensure compliance with applicable standards, frameworks, and regulations (e.g., ISO 27001, GDPR, NCA ECC, SAMA CSF, NIST).
  • Conduct internal security audits and support external audits, certifications, and assessments.
  • Monitor and report on compliance gaps, recommending remediation measures.
  • Collaborate with Security Operations and IT Infrastructure teams to ensure alignment between policy and practice.
  • Participate in incident response and post‑incident reviews from a governance and compliance perspective.
  • Support vendor risk assessments and ensure third parties meet security and compliance expectations.
Qualifications
  • Bachelor’s degree in Information Security, Computer Science, Information Technology, or a related field.
  • 3 – 7 years of experience in cybersecurity, preferably with a focus on governance, risk, and compliance.
  • Strong understanding of security frameworks such as ISO 27001, NIST, SAMA CSF, and COBIT.
  • Experience with risk management tools, audit processes, and security documentation.
  • Knowledge of regulatory and compliance requirements (GDPR, NCA ECC, SAMA, PCI DSS, etc.).
  • Professional certifications are an advantage (e.g., CISA, CRISC, ISO 27001 Lead Implementer/Auditor, CISSP, CEH).
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotImage showing a rating of 4.5 out of 5 stars on Trustpilot for JobLeads, indicating a high level of customer satisfaction.
Rated “Excellent” based on 18,880 reviews