Cybersecurity Manager

Job Title:Cybersecurity Manager

Location: Saudi, US

Employment Type: 

Permanent

Job Title:    Cybersecurity Manager 
Reports to: Sr. Head of Cybersecurity    
Department: Cybersecurity 
Location    Riyadh

Role Purpose    
To implement comprehensive cybersecurity strategy, assess and mitigate cybersecurity risks, ensure compliance with industry regulations, and protect sensitive information and systems. The Cybersecurity Manager will lead cybersecurity operations and the cybersecurity team, collaborate with other departments, and provide strategic guidance to senior management on cybersecurity matters.
Key Accountabilities & Activities 
Generic Accountabilities
Strategy
•    Contribute to the development and implementation of the Cybersecurity department’s strategy, ensuring that it is translated into annual business and operational plans for the section.
•    Formulate and monitor the effective implementation of the section strategy and relevant tactics, in line with the department and division overall strategy.
Budget and Financial Monitoring
•    Provide inputs and support the preparation, consolidation and monitoring of the annual budget of the department in coordination with the Department Head and the finance team.
Common Accountabilities
•    Supervise operational excellence improvement initiatives and motivate employees to constantly identify areas for improvement on systems, processes and practices taking into account international leading practices, in order to continuously enhance the organizational effectiveness and business performance.
•    Drive the development and oversee the implementation of policies, systems, processes, procedures.
People Management
•    Provide strategic direction to the direct reporting roles, guide, set priorities and objectives that will be cascaded to the lower levels, while managing their performance, and providing ongoing support and feedback, to ensure the achievement of the short- and long-term business goals.
•    Coordinate the activities of the direct reporting roles to ensure that all operational plans are carried out efficiently, in line with the annual organizational targets, policies and procedures.
•    Oversee the successful implementation of the talent management related activities (e.g. PMS, trainings, etc.), providing inputs to the Human Capital and relevant approvals as required (e.g. annual leaves, etc.).

Job-Specific Accountabilities
Cybersecurity Strategy Implementation
•    Implement the cybersecurity strategy and its roadmap within set timelines.
•    Regularly track and report on the progress of the cybersecurity strategy implementation to ensure alignment with organizational goals.
•    Continuously assess the effectiveness of the strategy, making necessary adjustments to address emerging threats and changes in the technological landscape.
Cybersecurity Governance and Compliance
•    Create, revise, and maintain resilient and comprehensive cybersecurity policies, procedures, and standards to safeguard sensitive data, systems, and networks in both IT and OT domains.
•    Oversee adherence to internal cybersecurity policies and procedures, Saudi cybersecurity laws, regulations, and standards, as well as international best practices such as ISO, NIST, and ISA.
•    Ensure the effective communication of cybersecurity updates, policies, and compliance requirements to cybersecurity management and relevant stakeholders.
Cybersecurity Risk Management
•    Identify, maintain, and update cybersecurity risks and registers for IT and OT environments, conducting thorough risk assessments covering people, processes, and technologies.
•    Develop and implement strategies to mitigate identified cybersecurity risks, ensuring continuous improvement of the organization's cybersecurity posture.
•    Collaborate with incident response teams to coordinate activities related to IT and OT, including containment, eradication, recovery, and post-incident reviews.
Team Leadership and Training
•    Provide support, guidance, and leadership to the cybersecurity team and other stakeholders, promoting a culture of security awareness and continuous improvement.
•    Implement and oversee cybersecurity awareness programs, phishing testing campaigns, and ensure timely execution of cybersecurity training.
•    Work closely with other departments, IT, OT teams, and vendors to ensure the availability, reliability, and integrity of cybersecurity systems and technologies.
•    Regularly assess the performance of the cybersecurity team, providing feedback and fostering a culture of excellence and adherence to best practices.

Knowledge and Experience  
 •    6 years of experience in a relevant field with 1 year of experience in a managerial role.

Education  
 •    Bachelor’s degree in information technology, Cybersecurity, or a related field.
•    Professional certifications such as CISSP, GICSP, ISA/IEC 62443, ISMS, or equivalent are preferable.

#LI-JJ1