×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security Information Security

Director of Cyber Security

Job in Riyadh, Riyadh Region, Saudi Arabia
Listing for: Masdr - مصدر
Full Time position
Listed on 2026-05-08
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security, Information Security
Salary/Wage Range or Industry Benchmark: 300000 - 400000 SAR Yearly SAR 300000.00 400000.00 YEAR
Job Description & How to Apply Below

Masdr provides integrated digital data and business solutions to the public and private sectors, with the aim of enhancing operational efficiency, improving customer experience, supporting decision-making through modern digital technologies and data solutions, and enhancing compliance with legislative requirements.

Job Purpose

To lead and govern Masdr’s Cybersecurity and Data Governance functions by establishing robust governance frameworks, ensuring compliance with regulations and international standards, and enabling secure, compliant, and resilient digital and data operations that support business continuity, regulatory adherence, and Masdr’s strategic and operational objectives.

Key Responsibilities Cybersecurity Governance
  • Leads the development and governance of Masdr’s enterprise cybersecurity strategy, policies, standards, and control frameworks.
  • Ensures compliance with cybersecurity regulations (e.g., NCA ECC, CSCC) and relevant international standards.
  • Establishes and maintains cybersecurity governance structures, roles, escalation paths, and decision authorities.
  • Oversees cybersecurity risk management practices, including risk identification, assessment, treatment planning, and maintenance of the cyber risk register.
  • Monitors cybersecurity posture, maturity, and risk exposure across platforms, digital products, and integrations.
  • Governs cybersecurity requirements for cloud services, digital platforms, data products, and third-party providers.
  • Oversees cybersecurity incident governance, including incident response readiness, escalation, regulatory notification, and post-incident reviews.
  • Governs cybersecurity performance reporting, including KPIs, compliance dashboards, and executive-level reporting.
  • Oversees cybersecurity preparedness activities, including simulations, resilience planning, and awareness programs.
  • Ensures governance over technical security assurance activities (e.g., VAPT oversight, security architecture review, control effectiveness).
  • Engages with cybersecurity authorities and external stakeholders in coordination with Legal & Compliance.
  • Owns third-party cybersecurity governance, including due diligence, security requirements, and remediation tracking.
Data Governance & Privacy
  • Leads the design and governance of Masdr’s enterprise data governance framework, ensuring compliance with data protection, privacy, and data-sharing regulations (e.g., PDPL, SDAIA, NDMO).
  • Defines and enforces data ownership, stewardship, accountability, and decision rights across the organization.
  • Establishes data classification, access control, encryption, and data lifecycle management policies.
  • Oversees compliance with data governance and privacy requirements through assessments, reviews, and audits.
  • Monitors adherence to data privacy regulations and manages remediation of non-compliance issues.
  • Governs data privacy programs, including consent management, data subject rights (DSR), and privacy impact assessments (PIAs/DPIAs).
  • Oversees data breach management, including detection, regulatory notification, and response coordination.
  • Enables secure and compliant data sharing with internal and external stakeholders, including cross-border data transfers.
  • Maintains enterprise data inventory and data retention frameworks.
  • Supports data monetization and analytics initiatives by ensuring strong governance foundations.
  • Provides executive and Board-level reporting on data governance maturity, risks, and compliance status.
  • Engages with data authorities and regulators in coordination with Legal & Compliance.
  • Owns third-party data governance requirements, including DPAs, data risk assessments, and compliance monitoring.
  • Acts as the primary policy owner and regulator-facing function for data governance matters.
  • Performs other duties as assigned by management within the department.
Qualifications & Experience
  • Bachelor’s Degree (Required):
    Cybersecurity, Information Security, Data Management, Information Technology, or a related field
  • Master’s degree or professional certifications preferred
  • Minimum of 8–9 years of progressive experience in cybersecurity governance, data governance, or GRC.
  • Minimum of 5 years in a leadership role managing governance, risk, or cybersecurity/data functions.
Professional Certifications (Preferred)
  • CISSP, CISM, CISA.
  • CDMP (Data Management)
  • Privacy certifications such as CIPM, CIPT.
  • Cybersecurity regulatory compliance (e.g., NCA, ECC, CSCC)
  • Data governance and privacy (e.g., PDPL, SDAIA, NDMO)
  • Enterprise risk management and second-line oversight
  • Third-party risk management and governance
  • Executive and Board-level reporting
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search