Enable job alerts via email!
Information Security Vulnerability Assistant Manager
SupportFinity™
Riyadh
On-site
SAR 300,000 - 400,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading cybersecurity firm in Riyadh is seeking an experienced Information Security Vulnerability Assistant Manager. This role involves managing the vulnerability management program, ensuring compliance with SAMA Cybersecurity Framework, and coordinating remediation activities across teams. The ideal candidate will have over 10 years of experience, particularly in vulnerability management and risk assessment. Competitive compensation and a focus on cybersecurity standards are part of the offer.
Qualifications
- Over 10 years in information security management.
- Experience with vulnerability management activities.
- Strong understanding of SAMA Cybersecurity Framework and NCA ECC.
Responsibilities
- Manage end-to-end vulnerability management activities.
- Oversee vulnerability scanning tools and regular coverage.
- Analyze vulnerability findings and recommend mitigation plans.
- Coordinate with various teams for timely remediation.
- Track remediation progress and report risk exposure.
- Support penetration testing activities and validate remediation.
- Ensure compliance with internal security standards.
- Prepare dashboards and management reports.
Skills
Education
Apply
Full-time
Riyadh
Negotiable
Master (>10 yrs)
Manage and enhance the Bank’s vulnerability management program by identifying, assessing, prioritizing, and coordinating remediation of information security vulnerabilities. Ensure continuous monitoring, risk-based treatment, and compliance with SAMA Cybersecurity Framework, NCA ECC, and internal security policies to reduce technology and cyber risks.
Key Responsibilities
- Manage end-to-end vulnerability management activities, including scanning, assessment, prioritization, and remediation tracking.
- Oversee vulnerability scanning tools and ensure regular coverage across infrastructure, applications, databases, and endpoints.
- Analyze vulnerability findings, assess risk levels, and recommend mitigation plans aligned with risk appetite.
- Coordinate with IT, Application, Infrastructure, and SOC teams to ensure timely remediation and closure of vulnerabilities.
- Track remediation progress, report risk exposure, and escalate overdue or high-risk vulnerabilities.
- Support penetration testing activities and validate remediation of identified issues.
- Ensure compliance with SAMA Cybersecurity Framework, NCA Essential Cybersecurity Controls (ECC), and internal security standards.
- Prepare dashboards, metrics, and management reports on vulnerability posture and trends.
Be vigilant about potential scams, phishing attempts, or fraudulent activities, and seek credible sources or reviews to assess the trustworthiness of the company. Remember, your personal and financial security is paramount, and taking preventive measures is crucial to safeguarding your information from potential risks and unauthorized use. SupportFinity is not responsible for any consequences that may arise from disclosing such information to unauthorized or fraudulent entities.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
