106 Information Security Manager jobs in Saudi Arabia

” The Job Description”

1. Implement the requirements of the Personal Data Protection Law and its executive regulations.
2. Develop and update data protection policies and procedures in accordance with national regulations.
3. Assess the current state of data governance and provide appropriate recommendations.
4. Raise awareness of data protection within the organization through workshops and training programs.
5. Monitor compliance and submit periodic reports on actions taken and any violations identified.
6. Maintain continuous coordination with the National Data Management Office and relevant regulatory bodies.
7. Stay updated on legal and regulatory developments in data protection and update policies accordingly.

Requirements:

• Bachelor’s or Master’s degree in Information Systems, Cybersecurity, Law, or a related field.
• A minimum of 10 years of practical experience in data protection, privacy, or information security.
• Advanced knowledge of Saudi data protection laws, particularly the Personal Data Protection Law.
• Professional certifications in the field such as CIPP, CIPM, ISO 27701, or equivalent.
• Strong communication skills and the ability to provide high-level advisory services.
• Proficiency in Arabic (written and spoken); English is a plus.

Tagged as: cipm , cipp , ISO

We are seeking a Personal Data Protection Consultant to ensure our organization's full compliance with local and international data protection laws. The role involves the development and implementation of data privacy frameworks, conducting training sessions, and managing legal aspects of data processing.

Key Responsibilities:

• Review and monitor compliance with personal data protection regulations (local and international).

• Develop internal policies and procedures for personal data protection.

• Design consent forms and data collection mechanisms in line with legal standards.

• Provide training and awareness sessions to employees about data privacy and individual rights.

• Review and assess data processing agreements with third parties.
  
  

  Required Qualifications and Skills:

  • Education: Bachelor’s degree in Sharia (Islamic Law) or Law .

  • Experience: Minimum of 5 years of experience in the Anti-Cybercrime Law or Personal Data Protection Law .

  • Languages: Proficiency in Arabic and English .

  • Location: Must have professional experience in the Kingdom of Saudi Arabia .

  • Certification: CIPP (Certified Information Privacy Professional) certification is preferred .

We are seeking a Personal Data Protection Consultant to ensure our organization's full compliance with local and international data protection laws. The role involves the development and implementation of data privacy frameworks, conducting training sessions, and managing legal aspects of data processing.

Key Responsibilities:

• Review and monitor compliance with personal data protection regulations (local and international).

• Develop internal policies and procedures for personal data protection.

• Design consent forms and data collection mechanisms in line with legal standards.

• Provide training and awareness sessions to employees about data privacy and individual rights.

• Review and assess data processing agreements with third parties.

  Required Qualifications and Skills:

  • Education: Bachelor’s degree in Sharia (Islamic Law) or Law .

  • Experience: Minimum of 5 years of experience in the Anti-Cybercrime Law or Personal Data Protection Law .

  • Languages: Proficiency in Arabic and English .

  • Location: Must have professional experience in the Kingdom of Saudi Arabia .

  • Certification: CIPP (Certified Information Privacy Professional) certification is preferred .

PRINCIPAL DUTIES AND RESPONSIBILITIES/KEY ACCOUNTABILITIES:

Principal Duties and Responsibilities:

1. Develops and implements Data Protection policy and standards.

2. Support ensuring proper oversight on development and implementation of Privacy Framework, Policy and Standard.

3. Develops core Data protection program components such as processes, tools, templates, guidance and privacy notices for the lines of business to use inbuilding controls.

4. Defines protection risk assessment requirements and performs second line risk based monitoring and enforcement of protection and privacy controls toensure compliance.

5. Execution of Protection program and coordination with business units and project teams to implement applicable protection requirements.

6. Delivery and implementation of competency based training and awareness for protection related policies and standards.

7. Delivery and maintenance of best in class Data protection capabilities e.g. Consent, Data governance & Protection, Data protection Principles and Data BreachNotification, etc. with the support of data office in the regulatory body.

8. Maintain compliance with applicable regulatory requirements related to Data Protection.

9. Reviews personal data inventory and Data Protection Impact Assessment (DPIA) results across the organization.

10. Development and maintenance of DPIA methodology and qualifiers.

11. Works with legal to ensure the organization maintains appropriate protection and confidentiality consents and authorization forms, information notices andmaterial reflecting current organization and legal practice requirements.

12. Identify and address requirements and challenges related to data management and personal data protection.

13. Reports performance of the Protection program to the management and relevant committees.

14. Liaise communications with supervisory authorities/regulators on data protection related matters.

15. Conduct assessment of the current state of Protection maturity, development and implementation of roadmap to achieve the target state.

16. Assess the Head of the department in performing any other work related to the function.

17. Work as the backup of the head of department.

Key Accountabilities:
1. Carry out daily operations assigned for the department to comply with the company s standards.

2. Prepare timely and accurate department reports to meet the requirements, objectives, and standards of the company and the department.

3. Ensure the satisfaction of internal and external customers to address their needs in a courteous and timely manner.

4. Follow all relevant policies, procedures, and processes in order for the work to be carried out in a controlled and consistent manner.

5. Contribute to the identification of opportunities for continuous improvement of processes and practices, work processes, cost effectiveness, and productivityenhancement.

6. Promote to other employees within the organization the implementation and adherence to policies, procedures, processes, and instructions.

7. Maintain a good and respectful relationship with other colleagues and represent the company in a good image.

JOB SPECIFICATIONS:

Education and Certifications:

Bachelor degree in Computer Science or IT engineering or equivalent preferably at post graduate level and relevantwork experience.

CISSP, ISO 27001 Lead implementer, CRISC, CISA, CISM, PMP, Certified Information Privacy Professional/Europe,Certified Information Privacy Manager (CIPM), Fellow of information Privacy (FIP).

Industry recognized privacy or data governance related certification.

Knowledge and Experience;

6 + years of experience inrelated field .

Skills Required;

COMPETENCIES:

Core:

Internal & External Customer Focus

Clarity of Thoughts & Communication

Analytical Thinking & Calculated Risk Taking

Organizational Commitment

Company Industry

• Banking
• Broking

Department / Functional Area

• IT Software

Keywords

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at

Zerto / Data Protection Sales Specialist

This role has been designed as ‘Hybrid’ with an expectation that you will work on average 2 days per week from an HPE office.

Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today’s complex world. Our culture thrives on finding new and better ways to accelerate what’s next. We value varied backgrounds and support flexible work arrangements. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career, our culture will embrace you. Open up opportunities with HPE.

Job Family Definition: Sales Specialists & Consultants are responsible for leading pursuits in their focus areas, collaborating with Account Managers, and providing specialist expertise. They drive campaigns to build pipelines, prospect, qualify, negotiate, and close opportunities, possibly with designated accounts or territories.

Management Level Definition: Applies advanced subject matter knowledge to solve complex issues, often contributing to new ideas and methods. Acts as a subject matter expert, leads or provides expertise to teams, and may mentor lower-level employees.

• Responsible for sales of storage products and solutions in assigned territories or accounts.
• Utilize advanced storage expertise to identify new customer value opportunities.
• Create and manage the storage sales pipeline, leveraging internal tools.
• Collaborate with account pursuit teams and leverage their expertise.
• Build sales readiness and transfer knowledge to clients.
• Contribute to setting quota objectives and future directions for storage lines.
• Coordinate supporting sales activities and ensure pipeline hygiene.
• Assess solution feasibility from technical and business perspectives.
• Negotiate and close profitable deals, ensuring high win rates.
• Develop professional relationships with clients, including C-level contacts.
• Leverage industry knowledge to position products and services strategically.
• Work with channel partners and lead marketing campaigns.
• Support deal closure collaboratively with internal stakeholders.

• Bachelor's degree preferred.
• Proven achievement of higher quotas and experience with diverse business customers.
• 6-10+ years of sales experience, with 2-3+ years in storage sales.
• Vertical industry knowledge and project management experience required.

• Expertise in storage solutions, industry trends, and competitor offerings.
• Strong consultative and negotiation skills, with a hunter mentality.
• Deep understanding of data solutions and industry segments.

We offer health and wellbeing benefits, professional development programs, an inclusive work environment, and opportunities for growth. Follow @HPECareers on Instagram for updates.

HPE is an Equal Employment Opportunity employer. We do not discriminate based on race, gender, or any other protected category. We are committed to an inclusive environment where everyone can thrive. Click here: Equal Employment Opportunity.

Job Purpose:
Jobholders at this level are capable of operating with minimal supervision. They work within guidelines and procedures in order to prepare more complex, specialized or ad-hoc reports in their related field. They contribute to the completion of milestones or operational targets within the assigned functional area. They undertake operational activities including conducting assessments, identifying needs and challenges, supporting in developing plans to improve the protection of ZATCA’s sensitive data, preparing awareness programs and following up on implementation of data privacy and protection initiatives.

Roles and Responsibilities:

• Review National Data Management Office (NDMO) approved standards and policies to update ZATCA’s current data guides and ensure continuous adherence with NDMO requirements.
• Conduct needed assessments to identify needs and challenges related to personal and private data management and highlight improvement areas.
• Assist in the development of data privacy and protection policies, standards and procedures in line with ZATCA’s strategy and based on best practices and international standards.
• Suggest data privacy and protection improvement plans and initiatives to safeguard and improve the protection of ZATCA’s sensitive data and information assets.
• Devise a list of data privacy and protection KPIs in line with strategic objectives to ensure proper follow-up.
• Communicate data policies, standards, strategy and plan with related stakeholders to secure clear understanding and enable engagement.
• Conduct risk assessments against data privacy to identify faced data issues and recommend corrective and preventive actions accordingly.
• Develop control measures and metrics to monitor employees’ performance and confidentiality ensuring protection of ZATCA’s sensitive data.
• Prepare data privacy and protection awareness programs and initiatives to ensure proper communication of NDMO and ZATCA requirements.

• Manage proper implementation of data privacy and protection plans while identifying data issues related to evaluation, integration, and automation to ensure timely resolution.
• Identify and assess improvement areas and develop accordingly needed initiatives and projects to minimize facing data issues and ensure continuous adherence to data obligations.
• Follow-up on proper implementation of approved improvement action plans to enhance data privacy and protection.
• Consolidate data privacy issues and partner with internal stakeholders, particularly IT functions, to implement remedial actions.
• Develop reports for related stakeholders highlighting ZATCA’s compliance levels with data standards and policies.

• Follow all relevant policies, processes and standard operating procedures so that work is carried out in a controlled and consistent manner.
• Help in solving escalated problems and provide needed support for junior team members to ensure work is carried out efficiently.
• Escalate complex problems to the relevant person to ensure cases/issues are closed properly.
• Perform other duties as requested.

• Train junior staff on the different job activities to ensure transfer of know-how, when applicable.
• Provide clear direction, prioritize tasks, assign and delegate responsibility, and monitor the workflow of subordinates/junior staff.
• Support junior staff or direct reports in order to execute their duties according to set policies and processes.

Knowledge and Experience:
A minimum of 2 years of relevant experience.

Mid-Senior level

Full-time

Information Technology

Government Administration

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)