42 Chief Information Security Officer jobs in Saudi Arabia

Get AI-powered advice on this job and more exclusive features.

We are seeking a seasoned and strategic Chief Information Security Officer (CISO) to lead our cybersecurity vision, strategy, and execution. This executive role is central to driving enterprise-wide security initiatives and safeguarding both internal and client-facing environments. The successful candidate must be a Saudi national with deep expertise in regulatory compliance, enterprise risk management, and operational cybersecurity, particularly in alignment with national frameworks such as SAMA , NCA , and CITC .

Key Responsibilities

• Develop and lead the organization's overall information security strategy
• Ensure full adherence to local cybersecurity regulations, including SAMA, NCA ECC/CCC, and CITC guidelines
• Oversee the planning, execution, and continuous improvement of incident response and threat detection capabilities
• Establish and maintain cybersecurity governance, risk policies, and awareness programs
• Provide strategic cybersecurity guidance to executive leadership and the board, including risk posture assessments and security investment planning
  
  

• Saudi nationality is mandatory, in line with national employment regulations
• Bachelor's degree in Cybersecurity, Information Technology, or a related field (Master's degree preferred)
• Minimum of 10 years' experience in cybersecurity, with at least 5 years in a senior leadership capacity
• Industry-recognized certifications such as CISSP, CISM, CISA, or equivalent
• In-depth understanding of both local regulatory requirements and global standards (e.g., ISO 27001, NIST)
• Proven background in regulated industries such as finance, government, telecommunications, or critical infrastructure
• Strong leadership and team-building capabilities, with a track record of leading high-performing security teams
• Bilingual fluency in Arabic and English, with excellent communication and presentation skills
  
  

• Competitive salary and performance-based bonuses
• Professional development opportunities and certifications
• Flexible work schedule and semi-remote work options
• Collaborative and innovative work environment

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Other
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Obrela by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

This pivotal role involves overseeing all aspects of information security to ensure the protection of sensitive data and systems. Responsibilities include managing risks, responding to incidents, maintaining network security, and ensuring compliance with industry standards. Strong leadership, effective communication, problem-solving abilities, and strategic thinking are essential for navigating the complexities of cybersecurity. The focus is on proactively identifying and mitigating security threats to safeguard the organization's valuable assets. Embracing a culture of ownership is crucial for establishing a secure environment and fostering a strong defense against potential cyber attacks.

Skills

This pivotal role involves overseeing all aspects of information security to ensure the protection of sensitive data and systems. Responsibilities include managing risks, responding to incidents, maintaining network security, and ensuring compliance with industry standards. Strong leadership, effective communication, problem-solving abilities, and strategic thinking are essential for navigating the complexities of cybersecurity. The focus is on proactively identifying and mitigating security threats to safeguard the organization's valuable assets. Embracing a culture of ownership is crucial for establishing a secure environment and fostering a strong defense against potential cyber attacks.

Skills

We are looking for a virtual cybersecurity or compliance expert to guide our security posture, particularly as we move into regulated spaces like auto-financing. The role is ideal for someone with extensive regulatory familiarity and previous experience operating in a strategic advisory capacity.

• Lead compliance audits aligned with KSA regulations , especially SAMA frameworks
• Review and implement data security strategies across departments
• Support regulatory submissions and responses for fintech operations
• Oversee documentation and data protection practices
• Coordinate with product and legal teams to maintain standards

• Saudi national6+ years experience
• Deep understanding of SAMA regulatory requirements and KSA cybersecurity law
• Prior role as vCISO or senior security/compliance consultant
• Experience operating through or with an agency setup (ideal)
• Familiarity with ISO 27001, NIST, SOC 2 compliance standards
• Ability to lead cross-functional audit and compliance efforts across departments

We are looking for a virtual cybersecurity or compliance expert to guide our security posture, particularly as we move into regulated spaces like auto-financing. The role is ideal for someone with extensive regulatory familiarity and previous experience operating in a strategic advisory capacity.

• Lead compliance audits aligned with KSA regulations , especially SAMA frameworks
• Review and implement data security strategies across departments
• Support regulatory submissions and responses for fintech operations
• Oversee documentation and data protection practices
• Coordinate with product and legal teams to maintain standards

• Saudi national6+ years experience
• Deep understanding of SAMA regulatory requirements and KSA cybersecurity law
• Prior role as vCISO or senior security/compliance consultant
• Experience operating through or with an agency setup (ideal)
• Familiarity with ISO 27001, NIST, SOC 2 compliance standards
• Ability to lead cross-functional audit and compliance efforts across departments

Direct message the job poster from Marafiq

Job Purpose

The role holder is responsible for executing risk management activities on projects, including planning, documenting potential risks, analyzing the probability and impact of occurrence, monitoring risks, implementing mitigation controls, and risk reporting.

Key Duties & Responsibility

1 . Implement an overall risk management process for the project, carrying out risk assessments, including analyzing, identifying, describing, and estimating risks affecting the project.

2. Forecast and evaluate project risks, compare estimated project risks against risk criteria for each part of the project, and quantify the project’s risk appetite in line with the Company’s risk appetite.

3. Assess tools required to mitigate risks, such as purchasing insurance and implementing health and safety measures to limit risks, while preparing for contingencies.

4. Participate in conducting risk audits of policies and compliance with standards, including liaising with internal and external auditors.

5.Develop reports based on risk analysis and collaborate with project teams to highlight significant risks.

6. Recommend improvements to risk processes and oversee the implementation of risk procedures and controls for specific project activities, ensuring that all relevant procedural requirements are met.

7. Ensure compliance with relevant safety, quality, and environmental management procedures and controls within a defined area of project activity to guarantee employee safety and legislative compliance.

Position Requirements

• Bachelor’s degree in a relevant subject (engineering, quantity surveying, or equivalent).

• Preferred but not essential: PMI-RMP / PMP Certification.

Minimum Experience Requirements

• 5 years of experience in a Risk Management role within the Industrial Engineering, Construction, or Utilities industry

• Seniority level Mid-Senior level

• Employment type Full-time

• Industries Utilities

Referrals increase your chances of interviewing at Marafiq by 2x

Yanbu, Al Madinah, Saudi Arabia 1 month ago

Yanbu, Al Madinah, Saudi Arabia 2 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Engineer, Risk Management

Job Purpose

The role holder is responsible for executing risk management activities on projects, including planning, documenting potential risks, analyzing the probability and impact of occurrence, monitoring risks, implementing mitigation controls, and risk reporting.

Key Duties & Responsibility

1 . Implement an overall risk management process for the project, carrying out risk assessments, including analyzing, identifying, describing, and estimating risks affecting the project.

2. Forecast and evaluate project risks, compare estimated project risks against risk criteria for each part of the project, and quantify the project’s risk appetite in line with the Company’s risk appetite.

3. Assess tools required to mitigate risks, such as purchasing insurance and implementing health and safety measures to limit risks, while preparing for contingencies.

4. Participate in conducting risk audits of policies and compliance with standards, including liaising with internal and external auditors.

5.Develop reports based on risk analysis and collaborate with project teams to highlight significant risks.

6. Recommend improvements to risk processes and oversee the implementation of risk procedures and controls for specific project activities, ensuring that all relevant procedural requirements are met.

7. Ensure compliance with relevant safety, quality, and environmental management procedures and controls within a defined area of project activity to guarantee employee safety and legislative compliance.

Position Requirements

Minimum Education Requirements

• Bachelor’s degree in a relevant subject (engineering, quantity surveying, or equivalent).

• Preferred but not essential: PMI-RMP / PMP Certification.

Minimum Experience Requirements

• 5 years of experience in a Risk Management role within the Industrial Engineering, Construction, or Utilities industry

• Conducting the quarterly risk reviews with the operational project entities.
• Conducting on-demand risk reviews with the operational project entities as specified according to the business needs.
• Maintaining the recording activities in accordance with the in-place practices.
• Adhering to the reporting timelines in line with the Board Risk Management Committee and business set schedules.
• Ensuring quality and accuracy of risk registers and reports.

• Monitoring the external and internal context via the specified channels.
• Communicating with relevant internal stakeholders for data acquisition and support related to risk management activities.
• Reporting uncertainties with potential influence on risks to the relevant internal stakeholders.
• Engaging in BU Operation periodic meetings to stay up to date and provide inputs where needed.

• Conducting risk aggregation from project level to the cluster level as well as from the cluster level to the BU level in line with the set methods.
• Performing the quarterly risk meetings with BU Operation and Operation Cluster head in preparation for the GEO Risk Committee.
• Performing risk quantification in line with the set methods.
• Preparing risk reports across the activities mandated by the reporting processes.
• Transitioning the risk management system for projects transitioning from construction to operation phase including risk register, risk management policy and procedure as well as risk reporting formats.
• Develop and periodically update the risk management policy and procedure for project companies in operation phase.
• Developing and leading the enhancement of risk management practices in line with the risk management framework, procedures and plans.
• Conducting risk management training workshops and sessions at project, cluster and GEO levels
• Onboarding new risk owners and risk champions for risk management.
• Visiting the project sites for familiarization and delivering risk management sessions to the project teams in coordination with risk owners and risk champions.
• Contributing to the overall risk culture and setting the tone in the area of scope.
• Supporting departmental periodic and on-demand activities.
• Enhancing the competency of direct reports and provide support and guidance.

Far much that one rank beheld bluebird after outside ignobly allegedly more when oh arrogantly vehement irresistibly fussy penguin insect additionally wow absolutely crud meretriciously.

Far much that one rank beheld bluebird after outside ignobly allegedly more when oh arrogantly vehement irresistibly fussy penguin insect additionally wow absolutely crud meretriciously.

Far much that one rank beheld bluebird after outside ignobly allegedly more when oh arrogantly vehement irresistibly fussy penguin insect additionally wow absolutely crud meretriciously.

Far much that one rank beheld bluebird after outside ignobly allegedly more when oh arrogantly vehement irresistibly fussy penguin insect additionally wow absolutely crud meretriciously.

Join to apply for the Risk Management Analyst role at Tweeq

Join to apply for the Risk Management Analyst role at Tweeq

Department: Risk Management

Location: KSA

• Support the Risk Manager in identifying, assessing, and mitigating risks across the organization.
  
  
• Assist in the development and implementation of risk management strategies and frameworks.
  
  

• Perform risk assessments to evaluate potential risks and vulnerabilities.
  
  
• Assist in developing risk mitigation plans and strategies.
  
  

• Ensure compliance with relevant regulations and industry standards.
  
  
• Assist in preparing compliance reports and maintaining documentation for audits.
  
  

• Analyze risk data and generate reports to support decision-making processes.
  
  
• Monitor key risk indicators and prepare regular reports for senior management.
  
  

• Assist in the development and maintenance of Business Continuity Plans (BCPs) and Disaster Recovery Plans (DRPs).
  
  
• Participate in BCP and DRP testing and updates.
  
  

• Collaborate with various departments to gather risk-related information and ensure alignment on risk management objectives.
  
  
• Communicate risk findings and recommendations to relevant stakeholders.
  
  

• Contribute to the continuous improvement of risk management processes and practices.
  
  
• Stay updated on emerging risks and industry trends to provide timely insights.
  
  
  
  

• At least 3 years of experience in risk management or a related field.
  
  
• Experience in conducting risk assessments and developing risk mitigation strategies.
  
  

• Strong analytical skills with the ability to interpret complex data.
  
  
• Excellent communication and interpersonal skills.
  
  
• Proficiency in risk management tools and software.
  
  
• Ability to work collaboratively in a team-oriented environment.
  
  
• Detail-oriented with strong organizational skills.
  
  

• Familiarity with risk management frameworks such as ISO 31000 or COSO ERM.
  
  
• Understanding of compliance requirements and industry regulations.
  
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Finance and Sales

Referrals increase your chances of interviewing at Tweeq by 2x

Get notified about new Risk Analyst jobs in Riyadh, Riyadh, Saudi Arabia .

Riyadh, Riyadh, Saudi Arabia 22 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.