18 Security Policies jobs in Jeddah

Join to apply for the Security Risk Management Specialist role at Canonical .

In security risk management we're looking to harness the power of industry best practice combined with driving new innovation on how we do security risk assessments and modelling. Our security risk management team is the primary owner of the strategy and practices of how we identify, track and reduce our security risk across everything we do. To support this we use industry best practices paired with emerging threat information to promote risk identification, quantification, impact analysis, and modelling to drive decision making. In this role you will help establish and execute a broad strategic vision for the security risk program at Canonical. You will work within the team and cross-functionally with various teams across the organisation. The team contributes ideas and requirements for Canonical product security, improving the resilience and robustness of all Ubuntu customers and users subject to cyber attacks. The team collaborates with our Organisational Learning and Development team to develop playbooks and security training across Canonical.

The security risk management team's mission is not only to secure Canonical, but also to contribute to the security of the wider open source ecosystem. They may share knowledge through public presentations and industry events, and share threat intelligence with the wider community or represent Canonical in sector-specific governance bodies.

What you will do in this role

• Define Canonical's security risk management standards and playbooks
• Analyse and improve Canonical's security risk practices
• Evaluate, select and implement new security requirements, tools and practices
• Grow the presence and thought leadership of Canonical security risk management practice
• Develop Canonical security risk learning and development materials
• Work with Security leadership to present information and influence change
• Participate in developing key risk indicators, provide inputs to the development of key control indicators, and key performance indicators for various programs
• Apply statistical models to risk frameworks (such as FAIR, sensitivity analysis, and others)
• Participate in risk management, decision-making, and collaborative discussions
• Lead quantified risk assessments and understand the value of qualitative data for improvements to quality and engineering processes
• Interpret internal or external cyber security risk analyses in business terms and recommend a responsible course of action
• Develop templates and materials to help with self-service risk management actions
• Monitor and identify opportunities to improve the effectiveness of risk management processes
• Launch campaigns to perform security assessments and help mitigate security risks across the company
• Build evaluation methods and performance indicators to measure efficiency of security functions and capabilities

What we are looking for

• An exceptional academic track record
• Undergraduate degree in Computer Science or STEM, or a compelling narrative about your alternative path
• Drive and a track record of going above-and-beyond expectations
• Deep personal motivation to be at the forefront of technology security
• Leadership and management ability
• Excellent business English writing and presentation skills
• Problem-solver with excellent communication skills, a deep technical understanding of security assessments and risk management
• Expertise in threat modelling and risk management frameworks
• Broad knowledge of how to operationalize the management of security risk
• Experience in Secure Development Lifecycle and Security by Design methodology

What we offer you

• Distributed work environment with twice-yearly team sprints in person
• Personal learning and development budget of USD 2,000 per year
• Annual compensation review
• Recognition rewards
• Annual holiday leave
• Maternity and paternity leave
• Employee Assistance Programme
• Opportunity to travel to new locations to meet colleagues
• Priority Pass, and travel upgrades for long haul company events

About Canonical

Canonical is a pioneering tech firm at the forefront of the global move to open source. As the company that publishes Ubuntu, one of the most important open source projects and the platform for AI, IoT and the cloud, we are changing the world. Canonical has been a remote-first company since its inception in 2004. Working here challenges you to think differently, work smarter, learn new skills, and raise your game. Canonical is an equal opportunity employer.

We recruit on a global basis and set a very high standard for people joining the company. We expect excellence. Whatever your identity, we will give your application fair consideration.

Seniority level

• Entry level

Employment type

• Full-time

Job function

• Finance and Sales

Industries

• Software Development

In a world of possibilities, pursue one with endless opportunities. Imagine Next!
When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your next, right now. We've got what you're looking for.
**Job Description:**
Parsons is looking for an amazingly talented **Senior Manager -** **Risk Management** to join our team! In this role you will be responsible for risk planning, qualitative & quantitative risk assessments, periodic update of risk register, mitigation strategies, and preparation of reports and presentations for appropriate levels. Performs a major role in facilitating risk workshops with all project stakeholders in identifying, developing risk register and prioritization of the risks. A thorough knowledge of Risk Assessment processes and tools/applications is required. **Experience in stadium or large public venue projects is strongly preferred due to their specialized and complex nature.**
**What You'll Be Doing:**
+ Facilitates Risk Workshops/reviews throughout the project lifecycle.
+ Performs highly complex statistical, quantitative and qualitative analysis on individual risks using risk software.
+ Performs regular monitoring of emerging risks, analyzes risk trends and works with risk owners to analyze complex risks and make potential risk mitigation recommendations.
+ Analyzes and reports the likelihood of success for project cost & schedules linking risk and uncertainty to the tasks to be undertaken.
+ Leads the Project Team and staff to facilitate the Risk process for risk identification, definition, assessment, analysis, mitigation, and monitoring throughout the project lifecycle for project, program and Parsons enterprise risks.
+ Supports the knowledge sharing of risks and opportunities across the portfolio/programs ensuring lessons are learned.
+ Assess the need for and create/develop custom risk reports for various levels of the organization including the Executive Management.
+ Leads in the development of training materials and assist in conducting Risk Management related education/training to various levels of management and staff.
+ Coordinates the resolution of risk software problems with the IT department as needed and monitor regular updates to the risk repository, assessment, and reporting tool and ensure the integrity of the repository database.
+ Develops project and work schedules to ensure completion of deliverables to senior management.
+ Assists the management in the preparation of executive-level presentations.
+ Oversees the creation and maintenance of up-to-date meeting minutes, reports, and related materials for the Enterprise Risk applications.
+ Project Manage medium sized projects concurrently with undertaking the Risk Management duties.
+ Proficient in analytical skills, attention to detail, and accuracy, able to identify key issues, interpret information, and present recommendations and conclusions in a self-confident, clear and concise manner.
+ Self-motivated with the ability to multi-task and meet established deadlines consistently.
+ Understanding of construction management fundamentals, project scheduling, cost estimating, and project controls.
+ Supports constructability reviews, schedule critical reviews and scrutinize cost estimates, understand areas of uncertainty.
**What Required Skills You'll Bring:**
+ Bachelor's degree in Engineering, Business or related
+ 20+ years of related experience in risk management.
+ Demonstrated leadership and management skills.
+ Strong written and oral communication, organizational, interpersonal skills, and customer service skills are required, both internal and external facing.
+ Ability to work in teams. Ability to follow through. Ability to clearly deliver work instructions in a complex risk environment.
+ Must function effectively under time constraints, schedule workload to meet deadlines, and have the ability to prioritize.
+ High-level understanding and appreciation of risk management in complex risk environments and within the major program sector, preferably within the KSA.
+ Ability to work in a matrix organization (dual reporting). Ability to interact with an influence senior-level management. Ability to consult, motivate, and negotiate effectively with client groups, co-workers, employees, vendors, and contractors.
+ Strong organization and follow through abilities.
+ Strong business judgment.
Parsons equally employs representation at all job levels no matter the race, color, religion, sex (including pregnancy), national origin, age, disability or genetic information.
We truly invest and care about our employee's wellbeing and provide endless growth opportunities as the sky is the limit, so aim for the stars! Imagine next and join the Parsons quest-APPLY TODAY!
Parsons is aware of fraudulent recruitment practices. To learn more about recruitment fraud and how to report it, please refer to .
About Us
Parsons is a digitally enabled solutions provider focused on the defense, security, and infrastructure markets. With nearly 75 years of experience, Parsons is uniquely qualified to deliver cyber/converged security, technology-based intellectual property, and other innovative services to federal, regional, and local government agencies, as well as to private industrial customers worldwide.
Parsons is an equal opportunity, drug-free employer committed to diversity in the workplace. Minority/Female/Disabled/Protected Veteran/LGBTQ+.
For more about Parsons, visit parsons.com and follow us on Facebook, Twitter, LinkedIn, and YouTube.

About the Role

We are seeking a highly experienced Cybersecurity Manager with a proven track record in Governance, Risk & Compliance (GRC) , Network Security , and Infrastructure Security . The ideal candidate will have extensive experience working with System Integrators , driving complex security projects, and ensuring robust cybersecurity frameworks across enterprise environments.

Key Responsibilities

• Lead and manage cybersecurity initiatives focusing on GRC, Network, and Infrastructure security domains .


• Design, implement, and oversee cybersecurity strategies and frameworks in line with international standards and regulatory requirements.


• Work closely with clients, stakeholders, and technology teams to deliver end-to-end security solutions.


• Ensure security compliance across critical systems, networks, and infrastructures.


• Drive risk assessments, audits, and remediation strategies.


• Provide leadership, mentorship, and guidance to security teams.

Requirements

• Minimum 15 years of experience in cybersecurity with a strong managerial background.


• Expertise in Governance, Risk & Compliance (GRC) , Network Security , and Infrastructure Security .


• Proven System Integrator experience in delivering large-scale cybersecurity projects.


• Strong domain knowledge in Airlines, Transport, or Tourism sectors (preferred).


• Excellent communication skills in Arabic and English .


• Relevant certifications (CISSP, CISM, CISA, ISO 27001 Lead Implementer, etc.) are highly desirable.

#J-18808-Ljbffr

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

#J-18808-Ljbffr

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

#J-18808-Ljbffr

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

#J-18808-Ljbffr

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

#J-18808-Ljbffr

Senior Information Security GRC Specialist page is loadedSenior Information Security GRC Specialist Apply remote type On-site Working locations SAU, Jeddah time type Full time posted on Posted 2 Days Ago job requisition id R-

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist is an advanced subject matter expert, responsible for playing a crucial part in overseeing the organization's information security program, with a focus on governance, risk management, compliance, security awareness, and policy management.

This role involves leading risk assessments, developing security policies, ensuring alignment with industry standards and regulations, and fostering a culture of security awareness among employees.

This role may be required to guidance and support to junior members of the GRC team.

Key Responsibilities:

• Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies.
• Develops and maintains security policies, standards, and procedures.
• Collaborates with legal and compliance teams to ensure adherence to regulatory requirements.
• Provides guidance and support to junior GRC team members.
• Assists in the creation and delivery of security awareness and training programs.
• Participates in security incident response activities as needed.
• Contributes to the continuous improvement of the information security program.
• Assists in policy management and refinement.
• Performs any other related task as required.
• Closing gabs on key findings during internal audits and evidence validation.

To thrive in this role, you need to have:

• Strong knowledge and experience with NCA regulations.
• Strong experience in Essential Cybersecurity Controls (ECC).
• Advanced understanding of information security frameworks and standards.
• Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management.
• Excellent communication and interpersonal skills for collaborating with various stakeholders.
• Strong project management skills for handling security initiatives.
• Advanced familiarity with legal and compliance aspects related to information security.

Academic Qualifications and Certifications:

• Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
• Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred.
• Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred.

Required Experience:

• Advanced experience in information security, including GRC-related roles.
• Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management.

Workplace type :

On-site Working

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

About Us

Is innovation part of your DNA? Do you want to enable a connected future for people, organizations, and society?

Join our growing global NTT family and you’ll be part of the world’s largest ICT company (by revenue). We’ve combined the capabilities of 28 remarkable companies to become one, leading technology services provider. Together, we help our people, clients, and communities do great things with technology to create a more secure and connected future.

We employ 40,000 people across 57 countries. By bringing together the world’s best technology companies and emerging innovators, we work together to deliver sustainable outcomes to businesses and the world. Innovation is part of our DNA. We believe it’s key to what makes us different. So, we strive to move forward, challenge the status quo, and drive excellence through the technologies we integrate and the services we deliver around the world. The result is connected cities, connected factories, connected healthcare, connected agriculture, connected conservation, connected mobility, and connected sport. Together we enable the connected future.

You’ll be joining a global employer that is committed to attracting, growing and keeping the best talent. A place where you will be at the heart of our success!

#J-18808-Ljbffr

Senior Information Security GRC Specialist page is loaded Senior Information Security GRC Specialist Apply remote type On-site Working locations SAU, Jeddah time type Full time posted on Posted 2 Days Ago job requisition id R-

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist is an advanced subject matter expert, responsible for playing a crucial part in overseeing the organization's information security program, with a focus on governance, risk management, compliance, security awareness, and policy management. This role involves leading risk assessments, developing security policies, ensuring alignment with industry standards and regulations, and fostering a culture of security awareness among employees. This role may be required to guidance and support to junior members of the GRC team.

Key Responsibilities:

• Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies.
• Develops and maintains security policies, standards, and procedures.
• Collaborates with legal and compliance teams to ensure adherence to regulatory requirements.
• Provides guidance and support to junior GRC team members.
• Assists in the creation and delivery of security awareness and training programs.
• Participates in security incident response activities as needed.
• Contributes to the continuous improvement of the information security program.
• Assists in policy management and refinement.
• Performs any other related task as required.
• Closing gabs on key findings during internal audits and evidence validation.

To thrive in this role, you need to have:

• Strong knowledge and experience with NCA regulations.
• Strong experience in Essential Cybersecurity Controls (ECC).
• Advanced understanding of information security frameworks and standards.
• Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management.
• Excellent communication and interpersonal skills for collaborating with various stakeholders.
• Strong project management skills for handling security initiatives.
• Advanced familiarity with legal and compliance aspects related to information security.

Academic Qualifications and Certifications:

• Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
• Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred.
• Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred.

Required Experience:

• Advanced experience in information security, including GRC-related roles.
• Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management.

Workplace type :

On-site Working

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

About Us

Is innovation part of your DNA? Do you want to enable a connected future for people, organizations, and society?

Join our growing global NTT family and you’ll be part of the world’s largest ICT company (by revenue). We’ve combined the capabilities of 28 remarkable companies to become one, leading technology services provider. Together, we help our people, clients, and communities do great things with technology to create a more secure and connected future.

We employ 40,000 people across 57 countries. By bringing together the world’s best technology companies and emerging innovators, we work together to deliver sustainable outcomes to businesses and the world. Innovation is part of our DNA. We believe it’s key to what makes us different. So, we strive to move forward, challenge the status quo, and drive excellence through the technologies we integrate and the services we deliver around the world. The result is connected cities, connected factories, connected healthcare, connected agriculture, connected conservation, connected mobility, and connected sport. Together we enable the connected future.

You’ll be joining a global employer that is committed to attracting, growing and keeping the best talent. A place where you will be at the heart of our success!

#J-18808-Ljbffr