IBM Hardware and Software products play a huge role in increasing the efficiency and profitability of businesses.
SBM provides complete services that empower businesses to achieve and exceed requirements.
IT Risk Manager
Position Title: IT Risk Manager
Job Location: Saudi Arabia
Job Type: Full Time
Job Summary & Requirements:
The IT Risk Manager is responsible for identifying, evaluating, and mitigating risks related to the organization’s information technology systems. This role requires in-depth knowledge of IT risk frameworks, cybersecurity threats, regulatory requirements, and best practices. The IT Risk Manager works closely with IT, security, and business teams to ensure that risks are understood, managed, and minimized, and that technology operations remain secure and compliant.
Education:
Bachelor’s degree in Information Technology, Risk Management, or a related field. Master’s degree or relevant certifications in IT risk management (e.g., CISM, CRISC, CISSP) is preferred.
Experience:
5+ years of experience in IT risk management, cybersecurity, or IT governance. Experience in developing and implementing IT risk management frameworks and policies. Proven experience with risk assessment tools and methodologies for IT environments.
Certification:
Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), or similar certifications required.
Job Description:
The IT Risk Manager is responsible for protecting the organization’s information assets by identifying and addressing IT risks, ensuring compliance with regulatory requirements, and developing robust risk management processes. This role ensures that the IT infrastructure is secure, resilient, and aligns with the organization's risk appetite.
Detailed Responsibilities:
Skills & Expertise:
Strong understanding of IT risk management frameworks and methodologies (e.g., COBIT, NIST, ISO 27001). In-depth knowledge of cybersecurity threats, vulnerabilities, and mitigation strategies. Experience in regulatory compliance related to IT and data protection. Excellent analytical and problem-solving skills to assess IT risks and recommend solutions. Proficiency in IT risk assessment tools and methodologies. Strong communication skills to convey IT risk concepts to non-technical stakeholders. Project management skills to handle multiple IT risk initiatives. Ability to collaborate effectively with cross-functional teams in IT, security, and business operations. Knowledge of IT governance, business continuity, and disaster recovery principles.