Information Security Manager

Job Summary: The Information Security Manager for the KSA Business Unit will be responsible for implementing Nextcare's security policies, procedures, and controls in alignment with KSA regulations and the company's regional security strategy. The role requires strong expertise in local cybersecurity laws, compliance frameworks, and risk management, ensuring the protection of business-critical assets and data.

1. Regulatory Compliance & Governance: Work closely with the Compliance function to ensure compliance with KSA cybersecurity regulations.
2. Policy Implementation: Ensure adherence to and enforcement of Nextcare's security policies and guidelines across the KSA business unit.
3. Risk Management: Identify, assess, and mitigate security risks, ensuring appropriate controls are in place to protect sensitive information and IT infrastructure.
4. Incident Response & Management: Lead security incident response efforts, including investigation, containment, and reporting to relevant authorities.
5. Security Awareness & Training: Promote cybersecurity awareness across the business unit and conduct training programs for employees.
6. Third-Party Risk Management: Assess and monitor security risks associated with vendors, partners, and third-party service providers.
7. Collaboration & Reporting: Act as the key liaison between the KSA business unit and the regional security team, providing reports on security posture, incidents, and compliance status.
8. Security Operations & Monitoring: Oversee security operations, ensuring continuous monitoring, threat detection, and vulnerability management.
9. Technical Controls Management: Implement and manage security controls, including Antivirus & Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), proxy solutions like Forcepoint, email security, and other controls.
10. Emerging Threats & Best Practices: Stay updated on the latest cybersecurity threats, trends, and industry best practices to strengthen the organization's security posture.

• Bachelor's degree in Information Security, Computer Science, or a related field.
• Professional certifications such as CISSP, CISM, CISA, or equivalent are highly preferred.
• Minimum of 7 years of experience in information security, with at least 3 years in a managerial role.
• Strong knowledge of KSA cybersecurity regulations, including NCA and SAMA frameworks.
• Experience in implementing and managing security controls, risk assessments, and incident response.
• Familiarity with international security standards (ISO 27001, NIST, etc.).
• Excellent leadership, communication, and stakeholder management skills.
• Ability to work effectively in a regional and multicultural environment.

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advise against sharing personal or bank-related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com.