Cybersecurity Manager

Naseej

Key Responsibilities:

• Develop, implement, and maintain cybersecurity governance frameworks aligned with NCA, SAMA, CST, and ISO 27001 requirements.

• Ensure continuous compliance with national cybersecurity regulations and regulatory mandates.

• Define and maintain cybersecurity policies, standards, procedures, and guidelines.

• Manage cybersecurity maturity assessments and improvement roadmaps.

Risk Management

• Lead enterprise cybersecurity risk assessments and maintain the cybersecurity risk register.

• Identify, assess, and monitor cyber risks and recommend appropriate mitigation strategies.

• Oversee vulnerability management and penetration testing programs.

Security Operations & Incident Response

• Oversee Security Operations Center (SOC) activities and incident response readiness.

• Lead cybersecurity incident handling, investigation, and post-incident reviews.

• Ensure implementation and effectiveness of security controls including firewalls, endpoint protection, IDS/IPS, and DDoS mitigation.

Business Continuity & Resilience

• Develop, maintain, and test Business Continuity (BCP) and Disaster Recovery (DR) plans from a cybersecurity perspective.

• Ensure cyber resilience across critical systems and platforms.

Reporting & Stakeholder Management

• Prepare and present periodic cybersecurity posture reports to senior management and relevant regulators.

• Act as the primary point of contact for cybersecurity audits, assessments, and regulatory reviews.

Awareness & Capability Building

• Lead cybersecurity awareness and training programs for employees and management.

• Promote a security-first mindset across business and technical teams.

• Mentor and manage cybersecurity team members and external service providers.

Requirements:

• Bachelor s degree in Cybersecurity, Computer Science, Computer Engineering, or a related field.

• 6 8 years of cybersecurity experience, with at least 3 years in a managerial or leadership role.

• Proven experience in SaaS and Cloud sectors

• Deep understanding & Hands-on experience with NCA cybersecurity compliance, CST, and ISO 27001.

• Solid knowledge of security operations, incident response, and vulnerability management.

• Good understanding of IT Service Management (ITIL) and enterprise IT environments.

Other Preferred Qualifications:

• Master s degree in Cybersecurity or a related discipline.

• Professional certifications such as:

  • CISSP, CISM, CISA

  • ISO 27001 / ISMS Lead Implementer or Lead Auditor

  • CEH

  • ITIL (preferred)