Chief Information Security Officer (CISO)

Introduction: The Chief Information Security Officer (CISO) will oversee and ensure the establishment and maintenance of the Client cybersecurity environment. This executive role will focus on governance, strategy, risk management, and process alignment in accordance with SAMA CSF and NCA ECC. The CISO will report directly to senior management and serve as the key liaison for cybersecurity initiatives across the company.

Scope:

1. Develop and implement a comprehensive cybersecurity strategy and framework in alignment with business objectives and regulatory requirements.
2. Oversee the governance of the cybersecurity function, ensuring that policies and procedures are developed and followed throughout the organization.
3. Manage cybersecurity risks by identifying potential security threats and developing strategies to mitigate these risks.
4. Lead the cybersecurity team, managing resources and budgets effectively, and fostering a culture of security awareness.

Detailed Description:

1. Strategy Development: Formulate strategic security guidelines and policies to protect enterprise systems and data.
2. Governance: Establish and maintain a cybersecurity governance framework to ensure consistent security practices are followed across the organization.
3. Risk Management: Conduct and oversee regular risk assessments and audits, report findings, and implement necessary changes to mitigate risks.
4. Compliance and Alignment: Ensure all cybersecurity practices comply with SAMA CSF and NCA ECC. Stay updated with changes in regulatory standards affecting cybersecurity.
5. Leadership and Advocacy: Advocate for necessary cybersecurity resources and improvements. Mentor and develop the cybersecurity team.

Minimum Requirements:

• Proven track record and experience in Cyber Security (more than 5 years)
• Industry-recognized certificate – CISSP, CISM, CISA…etc