201 Security Consulting jobs in Saudi Arabia

- Undertaking fee earning consultancy, including but not limited to security risk assessments (site/project), security policy and planning consultancy, security operational planning, security technology integration, applying relevant security and risk management knowledge, tools, standards, and processes.

- Stewardship of security risk projects in KSA to ensure compliance with Control Risks policies, standards, and methodologies.

- Client liaison, not only on security-related expertise but as a trusted advisor for Control Risks to develop client relationships across the full breadth of capabilities.

- Drive growth and build client management relationships with senior stakeholders in Saudi Arabia.

- Position ourselves as the premium provider in the risk consulting market on Giga and associated projects across the region.

- Adopt innovative approaches to develop current and new solutions.

- Act as a thought leader on regional matters and coordinate with peer groups across the business.

- Ensure requests from clients and prospects are dealt with effectively.

- Create proposals and build project budgets to determine pricing levels prior to sign-off by designated managers.

- Provide accurate information on pipeline activity.

- Operational planning and management of assigned projects and tasks.

- Coordinate and support regional tasks as necessary.

- Maintain overall quality oversight of operational and written work.

- Extensive travel anticipated to Saudi Arabia and within the region.

Knowledge and Experience

- Deep understanding of the security, real estate, and critical infrastructure sectors through the entire project lifecycle from initiation through procurement, design, construction, and in-use phases.

- Specific experience in developing security strategies, policies, standards, and plans.

- Detailed understanding of relevant professional bodies' standards and processes, including but not limited to:

– American Institute of Architects (AIA) and Royal Institute of British Architects (RIBA) work stages.

– Preventive strategies including UK Secured by Design (SBD) and US Crime Prevention Through Environmental Design (CPTED).

– UK Centre for the Protection of National Infrastructure (CPNI) guidelines on developing operational requirements.

- Proven ability to operate successfully at a senior level, implementing policy, driving quality, and growing a business.

- Detailed understanding of Control Risks' capabilities and client outcomes.

- Proven experience delivering security risk consultancy, including operational and corporate security management.

- Proven experience in people management.

- Proven experience in budgeting, project management, and project closure.

Qualifications and Specialist Skills

- Bachelor’s degree or advanced diploma in risk management or security-related field.

- Membership of a relevant professional body.

- Exposure to or delivery of operational and corporate security risk consulting.

- Formal project management qualification.

- Excellent report and proposal writing skills.

- Excellent presentation skills with proven ability to participate in speaking engagements.

- Ability to liaise with and build successful client relationships.

- Ability to quickly assimilate large quantities of new information.

Competencies

- Business intellect.

- Client-centric approach.

- Personal impact.

- Solution-focused.

- Tenacity.

- Commitment to operating in a globally collaborative and inclusive work environment.

Responsibilities

• Undertaking fee earning consultancy, including but not limited to security risk assessments (site/project/), security policy and planning consultancy, security operational planning, security technology integration applying relevant security and risk management knowledge, tools, standards and processes.
• Stewardship of security risk projects in KSA to ensure compliance with Control Risks policies, standards and methodologies
• Client liaison, not only on security related expertise but as a trusted advisor for Control Risks in order to develop client relationships across the full breadth of capabilities
• Drive growth and to build client management relationships with senior stakeholders in Saudi Arabia
• Position ourselves as the premium provider in the risk consulting market on Giga and associated projects across the region
• Adopt innovative approaches to develop current and new solutions
• Act as a thought leader on regional matters and coordinate with peer group across the business
• Ensure requests from clients and prospects are dealt with effectively
• Creating proposals and building project budgets to determine pricing levels prior to sign-off by designated managers
• Provide accurate information on pipeline activity
• Operational planning and management of assigned projects and tasks
• Coordination and support to regional tasks as necessary
• Maintain overall quality oversight of operational and written work
• Extensive travel anticipated to Saudi Arabia and within the region

Responsibilities

• Undertaking fee earning consultancy, including but not limited to security risk assessments (site/project/), security policy and planning consultancy, security operational planning, security technology integration applying relevant security and risk management knowledge, tools, standards and processes.
• Stewardship of security risk projects in KSA to ensure compliance with Control Risks policies, standards and methodologies
• Client liaison, not only on security related expertise but as a trusted advisor for Control Risks in order to develop client relationships across the full breadth of capabilities
• Drive growth and to build client management relationships with senior stakeholders in Saudi Arabia
• Position ourselves as the premium provider in the risk consulting market on Giga and associated projects across the region
• Adopt innovative approaches to develop current and new solutions
• Act as a thought leader on regional matters and coordinate with peer group across the business
• Ensure requests from clients and prospects are dealt with effectively
• Creating proposals and building project budgets to determine pricing levels prior to sign-off by designated managers
• Provide accurate information on pipeline activity
• Operational planning and management of assigned projects and tasks
• Coordination and support to regional tasks as necessary
• Maintain overall quality oversight of operational and written work
• Extensive travel anticipated to Saudi Arabia and within the region

• Deep understanding of the security, real estate and critical infrastructure sector through the entire value chain and project lifecycle from project initiation through all procurement, design, construction and in use phases.
• Specific experience of the development of security strategies, policies, standards and plans.
• Detailed understanding of relevant professional bodies standards and processes, including, but not limited to:
• American Institute of Architects (AIA) and Royal Institute of British Architects (RIBA) work stages.
• Preventive strategies including the UK Secured by Design (SBD) and the US Crime Prevention Through Environmental Design (CPTED) approach to the security design of developments.
• The UK Centre for the Protection of National Infrastructure (CPNI) guidelines on developing operational requirements
• Proven ability of operating successfully at a senior level, implementing policy, driving quality and growing a business
• Detailed understanding of Control Risks capabilities and client outcomes
• Proven experience of delivering security risk consultancy, including but not limited to operational and corporate security management
• Proven experience of people management
• Proven experience of successful budgeting, project management and project closure

• Bachelor’s degree or advanced diploma in risk management or security related field
• Membership of a relevant professional body
• Exposure to, or delivery of, operational and corporate security risk consulting
• Formal project management qualification
• Excellent report and proposal writing skills
• Excellent presentation skills with proven ability to participate in speaking engagements
• Ability to liaise with and build successful client relationships
• Ability to quickly assimilate large quantities of new information

• Business intellect
• Client-centric approach
• Personal impact
• Solution focused
• Tenacity
• Commitment to operating in a globally collaborative and inclusive work environment

Responsibilities

• Undertaking fee earning consultancy, including but not limited to security risk assessments (site/project/), security policy and planning consultancy, security operational planning, security technology integration applying relevant security and risk management knowledge, tools, standards and processes.
• Stewardship of security risk projects in KSA to ensure compliance with Control Risks policies, standards and methodologies
• Client liaison, not only on security related expertise but as a trusted advisor for Control Risks in order to develop client relationships across the full breadth of capabilities
• Drive growth and to build client management relationships with senior stakeholders in Saudi Arabia
• Position ourselves as the premium provider in the risk consulting market on Giga and associated projects across the region
• Adopt innovative approaches to develop current and new solutions
• Act as a thought leader on regional matters and coordinate with peer group across the business
• Ensure requests from clients and prospects are dealt with effectively
• Creating proposals and building project budgets to determine pricing levels prior to sign-off by designated managers
• Provide accurate information on pipeline activity
• Operational planning and management of assigned projects and tasks
• Coordination and support to regional tasks as necessary
• Maintain overall quality oversight of operational and written work
• Extensive travel anticipated to Saudi Arabia and within the region

• Deep understanding of the security, real estate and critical infrastructure sector through the entire value chain and project lifecycle from project initiation through all procurement, design, construction and in use phases.
• Specific experience of the development of security strategies, policies, standards and plans.
• Detailed understanding of relevant professional bodies standards and processes, including, but not limited to:
• American Institute of Architects (AIA) and Royal Institute of British Architects (RIBA) work stages.
• Preventive strategies including the UK Secured by Design (SBD) and the US Crime Prevention Through Environmental Design (CPTED) approach to the security design of developments.
• The UK Centre for the Protection of National Infrastructure (CPNI) guidelines on developing operational requirements
• Proven ability of operating successfully at a senior level, implementing policy, driving quality and growing a business
• Detailed understanding of Control Risks capabilities and client outcomes
• Proven experience of delivering security risk consultancy, including but not limited to operational and corporate security management
• Proven experience of people management
• Proven experience of successful budgeting, project management and project closure

• Bachelor’s degree or advanced diploma in risk management or security related field
• Membership of a relevant professional body
• Exposure to, or delivery of, operational and corporate security risk consulting
• Formal project management qualification
• Excellent report and proposal writing skills
• Excellent presentation skills with proven ability to participate in speaking engagements
• Ability to liaise with and build successful client relationships
• Ability to quickly assimilate large quantities of new information

• Business intellect
• Client-centric approach
• Personal impact
• Solution focused
• Tenacity
• Commitment to operating in a globally collaborative and inclusive work environment

• Undertaking fee earning consultancy, including but not limited to security risk assessments (site/project/), security policy and planning consultancy, security operational planning, security technology integration applying relevant security and risk management knowledge, tools, standards and processes.

• Stewardship of security risk projects in KSA to ensure compliance with Control Risks policies, standards and methodologies

• Client liaison, not only on security related expertise but as a trusted advisor for Control Risks in order to develop client relationships across the full breadth of capabilities

• Drive growth and to build client management relationships with senior stakeholders in Saudi Arabia

• Position ourselves as the premium provider in the risk consulting market on Giga and associated projects across the region

• Adopt innovative approaches to develop current and new solutions

• Act as a thought leader on regional matters and coordinate with peer group across the business

• Ensure requests from clients and prospects are dealt with effectively

• Creating proposals and building project budgets to determine pricing levels prior to sign-off by designated managers

• Provide accurate information on pipeline activity

• Operational planning and management of assigned projects and tasks

• Coordination and support to regional tasks as necessary

• Maintain overall quality oversight of operational and written work

• Extensive travel anticipated to Saudi Arabia and within the region

Knowledge and Experience

• Deep understanding of the security, real estate and critical infrastructure sector through the entire value chain and project lifecycle from project initiation through all procurement, design, construction and in use phases.

• Specific experience of the development of security strategies, policies, standards and plans.

• Detailed understanding of relevant professional bodies standards and processes, including, but not limited to:

– American Institute of Architects (AIA) and Royal Institute of British Architects (RIBA) work stages.

– Preventive strategies including the UK Secured by Design (SBD) and the US Crime Prevention Through Environmental Design (CPTED) approach to the security design of developments.

– The UK Centre for the Protection of National Infrastructure (CPNI) guidelines on developing operational requirements

• Proven ability of operating successfully at a senior level, implementing policy, driving quality and growing a business

• Detailed understanding of Control Risks capabilities and client outcomes

• Proven experience of delivering security risk consultancy, including but not limited to operational and corporate security management

• Proven experience of people management

• Proven experience of successful budgeting, project management and project closure

Qualifications and Specialist skills

• Bachelor's degree or advanced diploma in risk management or security related field

• Membership of a relevant professional body

• Exposure to, or delivery of, operational and corporate security risk consulting

• Formal project management qualification

• Excellent report and proposal writing skills

• Excellent presentation skills with proven ability to participate in speaking engagements

• Ability to liaise with and build successful client relationships

• Ability to quickly assimilate large quantities of new information

Competencies

• Business intellect

• Client-centric approach

• Personal impact

• Solution focused

• Tenacity

• Commitment to operating in a globally collaborative and inclusive work environment

Join to apply for the Senior Manager- Technology Consulting -Infrastructure Security role at EY

Role Purpose
Infrastructure Security Tower Lead will lead the implementation, management, and continuous improvement of infrastructure security controls including firewalls, network segmentation, endpoint security, and zoning aligned to Aramco’s cybersecurity policies and CST/NCA

Key Responsibilities

• Oversee deployment and tuning of firewalls, IDS/IPS, and EDR solutions.
• Define zoning policies and enforce network segregation across DCs.
• Ensure compliance with NCA/CRF controls for infrastructure assets.
• Lead incident response for infrastructure-related threats.
• Drive vulnerability management remediation for OS and network devices.

Requirements

• 10+ years in infrastructure or network security.
• Experience with Fortinet, Palo Alto, Cisco, and endpoint protection suites.
• Familiarity with OT/ICS security models and segmentation practices.
• Certifications: CISSP, CCNP Security, or equivalent.

About EY
ELY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Infrastructure Security Tower Lead

Role Purpose

Lead the implementation, management, and continuous improvement of infrastructure security controls including firewalls, network segmentation, endpoint security, and zoning aligned to Aramco’s cybersecurity policies and CST/NCA

• Oversee deployment and tuning of firewalls, IDS/IPS, and EDR solutions.
• Define zoning policies and enforce network segregation across DCs.
• Ensure compliance with NCA/CRF controls for infrastructure assets.
• Lead incident response for infrastructure-related threats.
• Drive vulnerability management remediation for OS and network devices.

• 10+ years in infrastructure or network security.
• Experience with Fortinet, Palo Alto, Cisco, and endpoint protection suites.
• Familiarity with OT/ICS security models and segmentation practices.
• Certifications: CISSP, CCNP Security, or equivalent.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. EY teams ask better questions to find new answers for the complex issues facing our world today.

Infrastructure Security Tower Lead

Role Purpose

Lead the implementation, management, and continuous improvement of infrastructure security controls including firewalls, network segmentation, endpoint security, and zoning aligned to Aramco’s cybersecurity policies and CST/NCA

• Oversee deployment and tuning of firewalls, IDS/IPS, and EDR solutions.
• Define zoning policies and enforce network segregation across DCs.
• Ensure compliance with NCA/CRF controls for infrastructure assets.
• Lead incident response for infrastructure-related threats.
• Drive vulnerability management remediation for OS and network devices.

• 10+ years in infrastructure or network security.
• Experience with Fortinet, Palo Alto, Cisco, and endpoint protection suites.
• Familiarity with OT/ICS security models and segmentation practices.
• Certifications: CISSP, CCNP Security, or equivalent.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. EY teams ask better questions to find new answers for the complex issues facing our world today.

The Digital Security Managing Consultant will be responsible for assessing and developing security design and implementation of digital security services for our clients in KSA. This requires demonstrating thought leadership, delivery expertise and wide understanding of cloud native as well as hybrid/3rd party security controls.

This role mainly focuses on how to assist IBM clients with the transformation in Cloud Security, IAM, security for cloud, workloads, data security, network and infrastructure. These cover a range of cloud service models deployed across private, public, hybrid and/or multi-cloud (off and on-prem) environments, and on major hyperscalers such as Microsoft Azure & M365, Amazon Web Services (AWS), and Google Cloud Platform.

You’ll engage clients and work to understand their business needs, works in levels of abstraction, apply industry knowledge, and leverage the appropriate business elements and information technology to address those needs. In addition, advise clients in understanding the desired future IAM landscape and work collaboratively with them to develop a roadmap to achieve this goal and become a trusted advisor.

• Responsible for managing all the activities related to delivering a digital security solution for the duration of their engagement, including but not limited to:
• Consulting – comfortable in facilitating workshops, giving presentations, producing high quality deliverables and managing large delivery engagements.
• Leadership - supporting all aspects of the solution, consulting colleagues, the technical team, managing client requirements and linking those requirements to IBM's solution.
• Creating & delivering the solution element of Cloud & Data Security and IAM proposals, this could be administrative, operational or technical.
• Supporting the definition and creation of a solution that meets the client’s requirements.
• Understanding the Digital Security Posture of the client, including their drivers and appetite, risk, legal, regulatory and compliance drivers for the client.
• Providing visibility and understanding the functional and non-functional requirements of the solution.
• Assisting client facing colleagues with responding to requests for proposals.
• Detailed knowledge of architecting and delivery of cloud native delivery methods and blueprints, security and deployment models for IaaS, PaaS, and SaaS across one or more hyperscalers.
• Delivery should centre around adopting agile approach, leveraging automation across infrastructure security via IaC (Infrastructure as a Code) driven approach.
• Working with global and local teams, help organize project approaches and teams for client delivery.
• Help resolve program issues as they arise with senior leadership.
• Good understanding of cloud architecture and industry standards are required.
• Establish strong client relationships in key accounts to help progress the Security Services portfolio.

Bachelor's Degree

• Cloud Certification in for at least one hyperscaler, security specialist certifications preferred.
• One leading security certificate like CISA, CISSP, CISM, etc.
• Working experience of industry compliance and security standards including KSA NCA ECC, CSA CSM, PCI DSS, ISO 27001, NIST, CIS, etc.
• Working experience in conducting security architecture and configuration reviews leveraging Zero Trust Security principles to identify security gaps and develop high-quality assessment reports.
• Extensive knowledge in security solutions such as IAM, Data Protection, SASE, ZTNA, SWG, DLP, NGFW, IPS, DDoS, WAF, API Security, Micro-segmentation, Email Security, and Endpoint Security Solutions.
• Develop high-quality security projects design documentation.
• Working experience on cloud service models (IaaS, PaaS, SaaS etc), infrastructure and technology.
• Background knowledge to KSA NCA ECC and other regulations and standards related to the cloud (e.g. ISO/IEC 27018).
• Extensive track record in delivering large-scale, complex and multi-year security transformation programs/projects in various capacities (e.g. cloud security architect, senior delivery/technical lead).
• Experience working across diverse teams to facilitate solutions.
• Readiness to travel 25-50%.
• At least 5 years’ experience in working in international deployment roles and interlocking with client on hybrid/multi-cloud security engagements.
• At least 8 years’ experience in working with security consulting and/or architecture roles.
• At least 12 years’ experience overall, across IT and Cyber Security.

IBM’s greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world.

Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we’re also one of the biggest technology and consulting employers, with many of the Fortune 50 companies relying on the IBM Cloud to run their business.

At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it’s time for you to join us on our journey to being a responsible technology innovator and a force for good in the world.