Senior Data Security Engineer

We dont think about job roles in a traditional way. We are anti-silo. Anti-career stagnation. Anti-conventional.

Beyond ONE is a digital services provider radically reshaping the personalised digital ecosystems of consumers in high growth markets around the world. Were building a digital services aggregator platform with a strong telco foundation and a profitable growth strategy that empowers users to drive their own experience—subscribe once, source from many, and only pay for what you actually use.

Since being founded in 2021 weve acquired Virgin Mobile MEA, Friendi Mobile MEA, and Virgin Mobile LATAM (with 6.5 million subscribers) and 1600 dedicated colleagues across Chile, Colombia, KSA, Kuwait, Mexico, Oman, Pakistan and UAE.

To disrupt for good takes a rebellious spirit, a questioning mind and a warm heart. We really care about how to get things done and not who manages who. We benefit from our diversity and together we disrupt the way we and others thinkin about our lives for good.

Do you want to exchange ideas, learn from each other and leave your mark on our journey? This is the place for you.

• Why this role matters :
• What success looks like :
• Why this is for you :

As a Senior Data Security Engineer you will play a key role in protecting Beyond ONEs data assets and ensuring compliance with the Saudi Personal Data Protection Law (PDPL) and other privacy regulations. Your work will directly support our cybersecurity posture, safeguard customer trust and position the company as a compliant and privacy-first digital operator.

In your first year you will successfully implement controls related to PDPL (technical requirements) - compliant data protection policies, lead technical aspects of internal risk assessments and contribute to the organisation-wider incident response process. Youll be a trusted advisor on data privacy matters and will drive awareness of data protection standards across teams.

If youre passionate about building robust data protection and privacy frameworks and want to shape how one of the regions most progressive digital operators approaches security and compliance lets talk. This role offers the chance to lead meaningful change, engage with regulators and influence enterprise-wide practices from day one.

In this role you will :

• Monitor and ensure compliance with the Personal Data Protection Law (PDPL) technical requirements and other relevant Saudi Arabian data privacy and security regulations.
• Develop, implement and maintain the organization’s data protection policies and procedures ensuring they align with legal mandates and international standards.
• Conduct regular audits and risk assessments addressing any gaps or areas for improvement in compliance and security practices.
• Collaborate with cross-functional departments to implement proper controls that mitigate risks associated with data processing activities.
• Manage data subject requests including access, correction, deletion and portability ensuring full adherence to PDPL rights and obligations.
• Design and deliver training programs to enhance employee awareness of data protection principles and drive a culture of privacy across the organization.
• Establish robust incident response protocols to address data breaches and coordinate investigations and reporting with regulatory authorities when required.
• Serve as the primary liaison with the Saudi Data & Artificial Intelligence Authority (SDAIA) and other relevant regulatory bodies handling data protection matters.
• Maintain detailed records of data processing activities and compliance metrics delivering regular reports to senior leadership and the board.

• Education : Bachelors degree in Computer Science, Cybersecurity, Information Security or a related field. Advanced certifications such as CIPP, CIPM or ISO 27001 Lead Implementer are a plus.
• Experience : 5 years of experience in data protection, privacy compliance or cybersecurity, ideally within telecommunications or highly regulated environments. Proven familiarity with the Saudi Personal Data Protection Law (PDPL) is essential.
• Technical Skills : Must-haves: Strong understanding of data protection frameworks and privacy regulations (including PDPL). Strong understanding of data security and its technical requirements. Experience with information security governance, risk management and compliance processes. Ability to implement incident response protocols and lead investigations. Skilled in documentation, control assessments and internal auditing for compliance.
• Nice-to-haves : Familiarity with global data privacy standards such as GDPR or CCPA. Experience working with Data Loss Prevention (DLP) solutions or GRC platforms. Cloud security experience, particularly in hybrid or multi-cloud environments.
• Unique Attributes : Thrives in fast-paced regulated environments requiring close attention to legal compliance. Exhibits high levels of integrity and discretion when handling sensitive data. Strong communicator able to liaise with cross-functional teams and regulatory bodies. Proactive, detail-oriented, and capable of driving cultural change around privacy awareness.
• What we offer : Rapid learning opportunities — we enable learning through flexible career paths, exposure to challenging and meaningful work that will help build and strengthen your expertise. Hybrid work environment — flexibility to work from home 2 days a week in the UAE & Pakistan. Healthcare and other local benefits offered in market.

By submitting your application you acknowledge and consent to the use of Greenhouse & BrightHire during the recruitment process. This may include the storage and processing of your data on servers located outside your country of residence. For further information please contact us at

Required Experience :

Senior IC

Key Skills

Car Driving,Access,CFA,Excel,Irrigation,Marine Services

Employment Type :

Full Time

Experience :

years

Vacancy :

1