We’re Hiring: Cybersecurity GRC Specialist
Location: Jeddah, Saudi Arabia (On-site)
We are seeking a proactive and detail-oriented professional with a strong passion for governance, risk, and compliance. This role involves partnering closely with Legal, Risk, IT, and Operations teams to drive effective risk management and compliance practices across the organization. The ideal candidate brings a collaborative mindset, a strong sense of ownership, and the flexibility to support cross-functional needs as the business evolves.
Responsibilities
- Support the development and maintenance of governance frameworks aligned with SAMA CSF, including strategy updates and executive reporting
- Ensure regulatory compliance with SAMA and PDPL by tracking changes, conducting assessments, and preparing for audits and inspections
- Conduct risk assessments across systems, vendors, cloud, and projects; maintain risk registers and contribute to ERM reporting
- Support control effectiveness through CSF assessments, coordination with internal audit, and tracking of remediation actions
- Develop KRIs/KPIs, dashboards, and reports for leadership, ensuring timely regulatory submissions and oversight
- Drive cybersecurity awareness initiatives and support data protection activities, including PDPL requirements in coordination with the DPO
- Contribute to cyber resilience and continuous improvement by embedding security into BCP/DR and supporting audit and remediation efforts
Must have requirements
- 2+ years of experience in Cybersecurity GRC or related roles
- Strong understanding of SAMA CSF domains and controls
- Working knowledge of Saudi PDPL and privacy best practices
- Experience with risk assessment methodologies and compliance frameworks
- Proactive, solutions-oriented mindset with a willingness to support teams and adapt in a dynamic environment
- Strong communication skills with the ability to collaborate across functions
Nice to Have (Highly Preferred)
- Relevant certifications such as CISA, CISM, CRISC, ISO 27001 LA, or CIPM/CIPT
- Experience working in regulated industries, including banking, insurance, or telecom
- Familiarity with privacy management tools and GRC platforms
What We Offer
- Competitive salary package with performance-based bonuses.
- Work in a regulated, high-impact fintech environment
- Exposure to enterprise-grade infrastructure and cybersecurity
- Direct involvement in audit, compliance, and resilience frameworks
- Career progression opportunities within a growth-oriented organization.
- Medical insurance and wellness programs
- Supportive and collaborative working environment.