Senior Manager of Cybersecurity Risk Management

We are seeking a high-impact Senior Manager to lead our comprehensive Cybersecurity Risk Management and Assurance function.

As a high-growth leader in the FinTech sector, protecting our sensitive data and critical infrastructure is paramount. This strategic role is accountable for defining our risk tolerance, owning the assurance programs, and providing executive guidance on cyber risk mitigation.

If you are a proven leader with deep expertise in Vulnerability Management, Penetration Testing, and regulatory compliance , we invite you to join our senior security team.

• Risk Strategy & Ownership : Develop and execute the enterprise-wide cybersecurity risk management strategy, owning decisions on risk tolerance and remediation prioritization to align security with core business objectives.
• Vulnerability & Testing Programs : Lead the design and execution of the end-to-end Vulnerability Assessment (VA) and Penetration Testing (PT) programs, dictating scope, methodologies, and tools.
• Compliance & Assurance : Accountable for ensuring continuous adherence to critical regulatory frameworks, including SAMA CSF, PCI DSS, and NCA , by establishing robust security policies and controls.
• Team Leadership & Development : Recruit, mentor, and manage a high-performing Cyber Security Assurance team, making key decisions on team structure and resource allocation to meet evolving threat landscapes.
• Stakeholder Communication : Own the communication strategy for presenting security risks, assurance findings, and mitigation progress to senior leadership and cross-functional partners (IT, Development, Compliance).

• Experience : 4-8 years of progressive experience leading cybersecurity risk management, vulnerability, and assurance programs.
• Risk Frameworks : Deep knowledge and practical experience with risk assessment frameworks such as NIST 800-30, SAMA, ISO 27005 , and others.
• Regulatory Compliance : Sound experience managing remediation efforts and audit preparation for major financial / payments regulations (e.g., PCI-DSS, SAMA CSF ).
• Technical Acumen : Strong understanding of security architecture, network hardening, application security controls (OWASP), and the ability to perform internal security reviews.
• Leadership : Demonstrated experience leading technical teams, driving cross-functional collaboration, and presenting complex security matters to executive audiences.

• CISA / CRISC / CISSP
• GIAC Certifications
• Cloud Security Certifications (e.g., CCSP, AWS / Azure / GCP Security)

Ready to own the security posture of a major FinTech organization? Apply now!