Senior Manager - Cybersecurity Risk Management

Qiddiya Investment Company

You will be tasked with identifying and mitigating cybersecurity risks, fostering a culture of security awareness, and leading a team dedicated to maintaining the integrity and security of our information systems. Your expertise will be essential in shaping the direction of our cybersecurity posture in alignment with our business objectives.

Key Responsibilities

• Develop and implement a comprehensive cybersecurity risk management framework tailored to organizational needs and regulatory requirements.
• Lead risk assessments and vulnerability assessments to identify threats and exposures associated with information systems.
• Oversee the creation and maintenance of a cybersecurity risk register, tracking and reporting on identified risks and mitigation efforts.
• Collaborate with IT, legal, and compliance teams to ensure that cybersecurity measures align with overall enterprise risk management strategies.
• Drive the development and execution of training and awareness programs to ensure all employees understand their role in cybersecurity risk management.
• Prepare and present detailed reports on cybersecurity risks and compliance to executive leadership and stakeholders.
• Stay abreast of emerging cybersecurity threats and trends, providing strategic guidance to adapt risk management practices accordingly.
• Mentor and lead the cybersecurity risk management team, ensuring their professional growth and expertise in the field.

Candidate Profile

• Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or a related field; a master s degree is preferred.
• 7+ years of experience in cybersecurity risk management or related roles, with substantial experience in leadership positions.
• Strong knowledge of cybersecurity frameworks, methodologies, and industry best practices (e.g., NIST, ISO 27001, COBIT).
• Expertise in risk assessment methodologies and risk mitigation strategies.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Risk Management Professional (CRMP), or equivalent are highly desirable.
• Exceptional analytical, organizational, and communication skills.
• A proactive and strategic mindset, capable of navigating complex challenges in cybersecurity.