88 Cybersecurity Specialist jobs in Saudi Arabia

Job Title: Cybersecurity Specialist

Contract Type: Full-Time

• Bachelor’s degree in Cybersecurity or a related field from a recognized Saudi university.
• 1–3 years of practical experience in cybersecurity or information security.
• Familiarity with international standards and frameworks such as ISO 27001 and NIST Cybersecurity Framework .
• Knowledge of network security tools and incident management processes.

• Monitor and analyze security threats across systems and networks.
• Implement cybersecurity policies and procedures, ensuring compliance.
• Participate in vulnerability assessments and penetration testing activities.
• Respond to and document security incidents.

• Develop and implement data privacy policies, procedures, and controls to ensure compliance with global privacy
regulations including GDPR, CCPA, and automotive-specific standards.
• Conduct privacy impact assessments for new initiatives, systems, and connected vehicle technologies that
process personal data.
• Coordinate responses to data subject requests, ensuring timely fulfillment of rights to access, deletion, and
portability of personal information.
• Provide privacy training and guidance to employees on handling personal data across business functions, with
emphasis on customer data and connected vehicle telemetry.
• Manage privacy incident response procedures, cooperating with security teams to ensure appropriate breach
notification and remediation activities

” The Job Description”

1. Implement the requirements of the Personal Data Protection Law and its executive regulations.
2. Develop and update data protection policies and procedures in accordance with national regulations.
3. Assess the current state of data governance and provide appropriate recommendations.
4. Raise awareness of data protection within the organization through workshops and training programs.
5. Monitor compliance and submit periodic reports on actions taken and any violations identified.
6. Maintain continuous coordination with the National Data Management Office and relevant regulatory bodies.
7. Stay updated on legal and regulatory developments in data protection and update policies accordingly.

Requirements:

• Bachelor’s or Master’s degree in Information Systems, Cybersecurity, Law, or a related field.
• A minimum of 10 years of practical experience in data protection, privacy, or information security.
• Advanced knowledge of Saudi data protection laws, particularly the Personal Data Protection Law.
• Professional certifications in the field such as CIPP, CIPM, ISO 27701, or equivalent.
• Strong communication skills and the ability to provide high-level advisory services.
• Proficiency in Arabic (written and spoken); English is a plus.

Tagged as: cipm , cipp , ISO

Key Accountability Areas

Key Activities

Cybersecurity Strategy and Architecture

• Support the development of a business-based information security strategy in close cooperation with the Cybersecurity Engineering Section head.
• Develop and maintain a security architecture process that enables the enterprise to develop and implement cybersecurity and data protection solutions and capabilities that are clearly aligned with business, technology, and threat drivers.
• Research, design, and advocate new technologies, architectures, and cybersecurity and data protection products that will support cybersecurity and data protection requirements for the enterprise and its customers, business partners and vendors.
• Contribute to the alignment of cybersecurity and data protection governance with the organization’s architecture governance.
• Develop and maintain cybersecurity and data protection architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage security capabilities in projects and operations.
• Track developments and changes in the digital business and threat environments to ensure that they are adequately addressed in security strategy plans and architecture artifacts.
• Determine baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation, and identity and access management (IAM).
• Review cybersecurity and data protection technologies, tools and services, and make recommendations to the broader security team for their use, based on security, financial and operational metrics.
• Perform cybersecurity and data protection reviews and identify gaps in security architecture, to develop cybersecurity risk management plans in alignment with the cybersecurity risk management team.
• Define system cybersecurity and data protection context, concept of operations and baseline requirements in line with applicable cybersecurity and data protection policies.
• Ensure that acquired or developed systems and architectures are consistent with organization's cybersecurity and data protection architecture guidelines.
• Document and address organization's cybersecurity and data protection architecture, and systems security engineering requirements throughout the acquisition life cycle.
• Define and document the effect of implementation of a new system or new interfaces between systems on the cybersecurity and data protection posture of the existing environment.
• Enhance the organizations and department’s reputation by accepting ownership for the identification of opportunities for continuous improvements of systems and processes.
• Develop business, information and technical artefacts that constitute the enterprise information security architecture and solutions including policies, standards, processes, procedures and guidelines (as required).
• Consider industry-leading practices, changes in the business environment, cost reduction and productivity improvements.
• Recommend cost-effective security controls to mitigate risks identified through testing and review.
• Determine security controls for information systems and networks and document appropriately.
• Conduct technical assessments of new technologies and tools for potential adoption within the organization.

Project Management

• Provide the cybersecurity and data protection requirements during the RFP cycle for services required from third parties such as vendors and IT/security services.
• Provide projects with cybersecurity and data protection architecture requirements during requirements gathering.
• Perform design and implementation reviews to ensure adherence with cybersecurity and data protection requirements.
• Operate as a security expert in application development, database design, network and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices.
• Provide advice on project costs, design concepts, or design changes.
• Work with agile team members to conduct fast prototyping, feasibility studies and evaluation of new technologies.
• Design systems and solutions to support successful proofs-of-concept and pilot projects in emerging technology areas.

Security risk Management

• Communicate cybersecurity and data protection risks and potential risk mitigation solutions with internal and external stakeholders.
• Lead the evaluation of cybersecurity and data protection solutions based on the agreed cybersecurity and data protection architecture policies and standards and regulatory requirements.
• Lead the evaluation of third-party service providers during the service delivery.
• Analyze business impact and potential exposure based on emerging security threats, vulnerabilities and risks, and recommend mitigating actions.
• Employ secure configuration management processes.

Training

• Provide regular training on cybersecurity and data protection architecture matters at all staff levels in SANS (as required).
• Train and supervise Junior Security Architects.
• Establish alignment with technology architecture functions within SANS.

Reporting

• Prepare cybersecurity and data protection reports based on the definition, maintenance and adoption of the cybersecurity and data protection architecture and supporting components.
• Prepare information security reports by collecting, analysing and summarizing data and trends from SANS’ cybersecurity and data protection events and incidents in close cooperation with the security analyst and security operation teams.

Policies, Processes and Procedures

• Conduct day-to-day activities while ensuring compliance to policies and procedures.
• Contribute to the identification of opportunities for continuous improvement of systems, processes considering leading practices, changes in business environment, cost reduction and productivity improvement.
• Document and update as necessary all definition and architecture activities.

Qualifications for Internal Candidates

Knowledge and Experience

• Minimum of 6 years of experience in cyber or information security.
• Previous engagements in organizations managing critical infrastructure is preferred.

Education and Certifications

• A bachelor’s degree in Computer Science, IT, Systems Engineering or equivalent is required.
• TOGAF or SABSA certification is preferred.

We are seeking a Personal Data Protection Consultant to ensure our organization's full compliance with local and international data protection laws. The role involves the development and implementation of data privacy frameworks, conducting training sessions, and managing legal aspects of data processing.

Key Responsibilities:

• Review and monitor compliance with personal data protection regulations (local and international).

• Develop internal policies and procedures for personal data protection.

• Design consent forms and data collection mechanisms in line with legal standards.

• Provide training and awareness sessions to employees about data privacy and individual rights.

• Review and assess data processing agreements with third parties.
  
  

  Required Qualifications and Skills:

  • Education: Bachelor’s degree in Sharia (Islamic Law) or Law .

  • Experience: Minimum of 5 years of experience in the Anti-Cybercrime Law or Personal Data Protection Law .

  • Languages: Proficiency in Arabic and English .

  • Location: Must have professional experience in the Kingdom of Saudi Arabia .

  • Certification: CIPP (Certified Information Privacy Professional) certification is preferred .

3 weeks ago Be among the first 25 applicants

• Assisting with incident and problem management activities
• Participating in Root Cause Analysis reviews as applicable
• Monitoring backup activity for the in-scope environment
• Performing routine backup policy changes
• Participating in the planning, approval, and implementation of approved change management requests
• Participating in backup capacity measurement and planning
• Assisting with detailed technical planning for future initiatives
• Updating client operational procedures and documents
• Ensuring all backups are properly run and completed on time. Restores will be processed within mutually agreed to timeframes
• Documenting operational best practice processes and procedures related to the backup environment
  
  

• Assisting with incident and problem management activities
• Participating in Root Cause Analysis reviews as applicable
• Monitoring backup activity for the in-scope environment
• Performing routine backup policy changes
• Participating in the planning, approval, and implementation of approved change management requests
• Participating in backup capacity measurement and planning
• Assisting with detailed technical planning for future initiatives
• Updating client operational procedures and documents
• Ensuring all backups are properly run and completed on time. Restores will be processed within mutually agreed to timeframes
• Documenting operational best practice processes and procedures related to the backup environment
  
  

• Excellent communication and interpersonal skills
• Ability to analyze data and generate actionable insights
• Strong problem-solving and decision-making abilities
• Willing to work after working hours and in weekends
  
  

• very good knowledge with Dell Data Protection portfolio, Cyber Recovery and CyberSense
• PowerProtect Data Manger - PPDM
• PowerProtect Data Domain
• PowerProtect Cyber Recovery
• CyberSense
• CRS
• AVAMAR
• DPC
• DPA
• Education: Bachelor's degree in Information Technology, or a related field
• Experience: 5-6 years of experience Dell Data Protection Engineer role. Experience in government is preferred

• Seniority level Mid-Senior level

• Employment type Contract

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at SWATX by 2x

Get notified about new Data Protection Engineer jobs in Riyadh, Riyadh, Saudi Arabia .

Riyadh, Riyadh, Saudi Arabia 17 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Join to apply for the Cybersecurity Integration Specialist – KSA role at Help AG, an e& enterprise company

Join to apply for the Cybersecurity Integration Specialist – KSA role at Help AG, an e& enterprise company

Help AG is looking for a talented and experienced Cybersecurity Integration Specialist who will be responsible for the secure design and seamless integration of cybersecurity technologies and solutions within critical electricity infrastructure. This role requires a strong understanding of OT (Operational Technology) and IT convergence, with a focus on safeguarding power generation, transmission, and distribution environments from cyber threats. The specialist will lead integration activities, ensuring that all systems comply with sector-specific regulations and operate with maximum security and efficiency.

Responsibilities:

• Conduct integration assessments within electricity and utility environments to ensure cybersecurity solutions are aligned with operational and regulatory requirements.
• Perform detailed site surveys across substations, control centers, and grid environments to assess infrastructure readiness and identify integration challenges.
• Develop and deliver High-Level Designs (HLD) and Low-Level Designs (LLD) for secure integration of ICS/SCADA security solutions.
• Prepare and evaluate technical components of RFPs, ensuring they reflect cybersecurity best practices and energy sector compliance mandates (e.g., NCA, NIST, IEC 62443).
• Conduct and document Proof of Concept (POC) engagements to validate the performance and effectiveness of proposed integration solutions.
• Collaborate with utility clients, engineering teams, and vendors to drive successful end-to-end deployment of cybersecurity technologies.
• Provide expert-level troubleshooting and hands-on support during implementation and integration phases.
• Execute FAT, SAT, and UAT testing to verify that deployed solutions meet functional, performance, and security criteria.
• Ensure integration efforts minimize operational disruption and adhere to energy sector safety, availability, and reliability standards.
  
  
  

• Bachelor’s degree in computer science, Cybersecurity, Electrical Engineering, or a related technical field.
• Minimum of 1-5 years of hands-on experience in cybersecurity integration, preferably within the energy or critical infrastructure sector.
• Solid understanding of IT/OT/ICS environments, SCADA systems, and protocols (e.g., Modbus, DNP3, IEC 61850).
• Experience developing HLD/LLD and performing FAT/SAT/UAT in utility or industrial environments.
• Strong knowledge of regulatory and compliance frameworks applicable to the energy sector, such as NCA ECC, NIST, and IEC 62443.
• Strong knowledge of regulatory and compliance frameworks applicable to the energy sector, such as NCA ECC, NIST, and IEC 62443.
• Excellent communication and stakeholder engagement skills, particularly in high-availability and safety-critical environments.
• Professional certifications such as CCNP, PCNSE, NSE, VCP, Security+, or energy-specific credentials (e.g., GICSP, ISA/IEC 62443) are highly desirable.
• Willingness and ability to travel across the Kingdom to support energy sector clients and field deployments.
• Prior experience with NOC/SOC integration for utilities.
• Experience working with national utilities, transmission system operators, or independent power producers.
• Familiarity with cloud and edge security models applicable to smart grids and distributed energy resources (DERs).
  
  
  

• Health insurance with one of the leading global providers for medical insurance.
• Career progression and growth through challenging projects and work.
• Employee engagement activities throughout the year
• Exposure to multiple client environments/architectures and multi-vendor security controls and technologies.
• Tailored training & development program
  
  
  

• Seniority level Not Applicable

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at Help AG, an e& enterprise company by 2x

Get notified about new Cyber Security Specialist jobs in Riyadh, Riyadh, Saudi Arabia .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Job Type: Full-time

Job Purpose

The Senior Cybersecurity Operations Specialist is responsible for leading cybersecurity operations to safeguard the organization’s systems, networks, and data. This includes monitoring, testing, identifying, and responding to cybersecurity threats and incidents to ensure resilience against cyber-attacks.

Key Responsibilities

• Identify opportunities for continuous improvement, cost optimization, and productivity enhancement within cybersecurity operations.
• Ensure compliance with all applicable laws, regulations, and internal standards across functions such as Human Capital, HSSE, Risk, and Cybersecurity.
• Escalate cybersecurity issues to ensure timely and effective resolution.
• Assess and enhance the organization’s cybersecurity capabilities and resilience.
• Identify technical vulnerabilities through simulated cyber-attacks and ensure remediation across systems, networks, and applications.
• Conduct regular penetration testing and vulnerability assessments to identify weak areas and recommend corrective actions.
• Safeguard the confidentiality, integrity, and availability of organizational data in line with internal policies and regulatory requirements.
• Implement cybersecurity controls for third-party services and cloud computing environments.
• Develop and maintain an incident response program tailored to anticipated risks and post-event analysis.
• Detect and respond to cybersecurity threats promptly to minimize operational impact.
• Monitor and analyze cybersecurity events to enable early detection and prevention of cyber-attacks.
• Oversee daily cybersecurity operations and ensure alignment with industry best practices and internal standards.
• Conduct cybersecurity vendor assessments and ensure compliance across projects.
• Ensure adherence to cybersecurity operational requirements and relevant legislation.

Qualifications & Experience

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Professional certifications such as CISSP, CISM, CEH, or equivalent are preferred.
• Minimum of 5 years of experience in cybersecurity operations, preferably within the utilities or critical infrastructure sectors.
• Strong understanding of cybersecurity frameworks, threat detection, incident response, and vulnerability management.
• Experience with cloud security, third-party risk management, and regulatory compliance.

Interested in this opportunity? Apply directly