61 Vulnerability Assessment jobs in Saudi Arabia

Information Security Analyst - Ar Rass, Saudi Arabia


We are hiring an experienced Information Security Analyst to join our team in Ar Rass, Saudi Arabia. As an Indian national, you will be responsible for protecting our company's sensitive information and systems from cyber threats. Your primary focus will be on developing and implementing security protocols and procedures to ensure the confidentiality, integrity, and availability of our data.

Key Responsibilities:
- Conduct regular security assessments to identify potential vulnerabilities and risks
- Monitor networks and systems for suspicious activity and respond quickly to security incidents
- Develop and maintain information security policies, standards, and procedures
- Conduct training to educate employees on best practices for information security
- Collaborate with cross-functional teams to implement security solutions and ensure compliance with regulations
- Perform risk assessments and advise management on potential risks and mitigation strategies
- Stay updated on the latest industry trends, threats, and best practices in information security

Requirements:
- Minimum of 3 years of experience as an Information Security Analyst or similar role
- Bachelor's degree in Computer Science or a related field; professional certifications such as CISSP or CISM are a plus
- Strong knowledge of network and system security protocols (e.g. TCP/IP, firewalls)
- Experience with vulnerability assessment tools and techniques
- Familiarity with regulatory frameworks such as GDPR, ISO 27001, or NIST Cybersecurity Framework
- Excellent communication skills with the ability to explain technical concepts to non-technical stakeholders

Salary:
We offer a competitive salary of 1600$ per month along with accommodation.

If you are passionate about protecting sensitive data and have a strong understanding of information security principles, we would love to hear from you! Please apply with your updated resume.

This job has no reviews yet. You can be the first!

Information Security Analyst Jobs in Ar Rass:

The most in-demand professions in Ar Rass:

MEAT SLAUGHTERHOUSE WORKER | PACKERS, SORTERS | UKRAINE | without work experience

Users also frequently search in these cities:

More professions from the category IT sphere:

Subscribe to our telegram channel @layboard_in

” The Job Description”

1. Design, implement, and maintain information security solutions and policies.
2. Monitor and protect networks, systems, and applications from cyber threats.
3. Manage and maintain F5 Load Balancers, including configuration, troubleshooting, and optimization.
4. Administer Privileged Access Management (PAM) and Identity & Access Management (IAM) tools to ensure secure access control.
5. Implement and manage Network Access Control (NAC) solutions, particularly Cisco ISE.
6. Oversee Mobile Device Management (MDM) policies to secure mobile endpoints.
7. Deploy and monitor Endpoint Detection and Response (EDR) tools for threat detection and incident response.
8. Ensure compliance with NCA cybersecurity regulations and requirements.
9. Conduct regular security assessments, audits, and risk evaluations.
10. Collaborate with IT and business teams to respond to security incidents and develop mitigation strategies.
11. Maintain up-to-date documentation of security processes, systems, and incident reports.
    Requirements:
    

• Bachelor’s degree in Information Security, Computer Science, Cybersecurity, or a related field.
• 3+ years of experience in an information security role.
• Strong knowledge of network security principles and practices.
• Hands-on experience with:
  – F5 Load Balancers.
  – PAM/IAM solutions (e.g., CyberArk, Azure AD, Okta).
  – NAC (Cisco ISE) systems.
  – MDM platforms (e.g., Intune, MobileIron).
  – EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender).
  – Familiarity with NCA (National Cybersecurity Authority) guidelines and compliance requirements.
• Saudi national (this role is open to Saudi citizens only).

Tagged as: EDR , F5 , IAM , ISE , MDM , NAC , NCA , PAM

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

Our client is a large Retail group based in Jeddah, Saudi Arabia. They have presence across the GCC.

The Senior Manager - Information Security will be responsible for:

• Managing the Information Security department
• Working closely with enterprise risk teams, senior management and the Board of Directors to achieve corporate and Information Security objectives
• Identifying and managing vendors
• Managing information security awareness training program
• Information Security GRC
• Oversight of the Data Protection & Privacy program; ensuring the organisation is compliant with various regulatory requirements such as PDPL
• Continuous review and development of Information Security strategy
• Ensuring Information Security is built into enterprise and technology architecture
• Incident response plans, disaster recovery strategies and management of Information Security risk
• Working closely with internal audit teams
• Regular reporting to senior leadership

The Senior Manager - Information Security will be/have:

• A Bachelor's degree in Computer Science, Information Technology or related fields of study
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or similar qualifications
• Knowledge of common information security and data privacy management frameworks and regulatory requirements such as ISO/IEC 27001, NIST, NCA, PDPL, GDPR, etc.
• 7+ years of experience in Information Security/Cybersecurity, of which at least 3 years must have been in a managerial role
• Experience in working for large organisations (Retail industry experience is preferred, but not mandatory)
• Experience with contract and vendor negotiations
• Excellent stakeholder management skills; ability to interact with, and influence, C-suite stakeholders
• Excellent written and verbal communication skills
• Based in/willing to relocate to Jeddah
• A Saudi national (strongly preferred)

Join to apply for the Senior Information Security GRC Specialist role at NTT DATA, Inc.

Join to apply for the Senior Information Security GRC Specialist role at NTT DATA, Inc.

Make an impact with NTT DATA

Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Make an impact with NTT DATA

Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist is an advanced subject matter expert, responsible for playing a crucial part in overseeing the organization's information security program, with a focus on governance, risk management, compliance, security awareness, and policy management.

This role involves leading risk assessments, developing security policies, ensuring alignment with industry standards and regulations, and fostering a culture of security awareness among employees.

This role may be required to guidance and support to junior members of the GRC team.

Key Responsibilities:

• Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies.
• Develops and maintains security policies, standards, and procedures.
• Collaborates with legal and compliance teams to ensure adherence to regulatory requirements.
• Provides guidance and support to junior GRC team members.
• Assists in the creation and delivery of security awareness and training programs.
• Participates in security incident response activities as needed.
• Contributes to the continuous improvement of the information security program.
• Assists in policy management and refinement.
• Performs any other related task as required.
• Closing gabs on key findings during internal audits and evidence validation.
  
  

• Strong knowledge and experience with NCA regulations.
• Strong experience in Essential Cybersecurity Controls (ECC).
• Advanced understanding of information security frameworks and standards.
• Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management.
• Excellent communication and interpersonal skills for collaborating with various stakeholders.
• Strong project management skills for handling security initiatives.
• Advanced familiarity with legal and compliance aspects related to information security.
  
  

• Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
• Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred.
• Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred.
  
  

• Advanced experience in information security, including GRC-related roles.
• Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management.
  
  

• Seniority level Mid-Senior level

• Employment type Full-time

• Job function Information Technology
• Industries IT Services and IT Consulting

Referrals increase your chances of interviewing at NTT DATA, Inc. by 2x

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Senior Information Security GRC Specialist page is loadedSenior Information Security GRC Specialist Apply remote type On-site Working locations SAU, Jeddah time type Full time posted on Posted 2 Days Ago job requisition id R-132473

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Your day at NTT DATA

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist is an advanced subject matter expert, responsible for playing a crucial part in overseeing the organization's information security program, with a focus on governance, risk management, compliance, security awareness, and policy management.

This role involves leading risk assessments, developing security policies, ensuring alignment with industry standards and regulations, and fostering a culture of security awareness among employees.

This role may be required to guidance and support to junior members of the GRC team.

Key Responsibilities:

• Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies.
• Develops and maintains security policies, standards, and procedures.
• Collaborates with legal and compliance teams to ensure adherence to regulatory requirements.
• Provides guidance and support to junior GRC team members.
• Assists in the creation and delivery of security awareness and training programs.
• Participates in security incident response activities as needed.
• Contributes to the continuous improvement of the information security program.
• Assists in policy management and refinement.
• Performs any other related task as required.
• Closing gabs on key findings during internal audits and evidence validation.

To thrive in this role, you need to have:

• Strong knowledge and experience with NCA regulations.
• Strong experience in Essential Cybersecurity Controls (ECC).
• Advanced understanding of information security frameworks and standards.
• Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management.
• Excellent communication and interpersonal skills for collaborating with various stakeholders.
• Strong project management skills for handling security initiatives.
• Advanced familiarity with legal and compliance aspects related to information security.

Academic Qualifications and Certifications:

• Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
• Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred.
• Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred.

Required Experience:

• Advanced experience in information security, including GRC-related roles.
• Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management.

Workplace type :

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Is innovation part of your DNA? Do you want to enable a connected future for people, organizations, and society?

Join our growing global NTT family and you’ll be part of the world’s largest ICT company (by revenue). We’ve combined the capabilities of 28 remarkable companies to become one, leading technology services provider. Together, we help our people, clients, and communities do great things with technology to create a more secure and connected future.

We employ 40,000 people across 57 countries. By bringing together the world’s best technology companies and emerging innovators, we work together to deliver sustainable outcomes to businesses and the world. Innovation is part of our DNA. We believe it’s key to what makes us different. So, we strive to move forward, challenge the status quo, and drive excellence through the technologies we integrate and the services we deliver around the world. The result is connected cities, connected factories, connected healthcare, connected agriculture, connected conservation, connected mobility, and connected sport. Together we enable the connected future.

You’ll be joining a global employer that is committed to attracting, growing and keeping the best talent. A place where you will be at the heart of our success!