×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security

Cybersecurity GRC Specialist

Job in Riyadh, Riyadh Region, Saudi Arabia
Listing for: Client of Talent 360
Full Time position
Listed on 2026-06-02
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 150000 - 200000 SAR Yearly SAR 150000.00 200000.00 YEAR
Job Description & How to Apply Below

The Cybersecurity GRC Specialist plays a critical role in maintaining SiFi's cybersecurity compliance posture and ensuring audit readiness across all regulatory frameworks.

Key Responsibilities
  • Regulatory Compliance & Audit Readiness:
    Maintain and manage the compliance tracker across SAMA CSF, PDPL, NDMO, and PCI-DSS. Own the full evidence lifecycle (collection, validation, and documentation). Ensure continuous audit readiness with traceable, control‑aligned evidence. Track regulatory findings and remediation plans, ensuring timely closure. Provide regular compliance status reports to the CISO and relevant committees.
  • Governance & Policy Management:
    Develop and maintain cybersecurity policies, standards, and procedures. Ensure documentation aligns with SiFi governance structure and regulatory expectations. Manage document lifecycle, including versioning, approvals, and reviews. Map all policies and procedures to SAMA CSF controls.
  • Cyber

    Risk Management:

    Maintain and update the cybersecurity risk register. Conduct third‑party risk assessments (TPRA) and vendor due diligence. Support risk reviews and reporting cycles. Collaborate with Risk and Compliance teams to align enterprise risk frameworks.
  • KPI & KRI Monitoring & Reporting:
    Collect and validate cybersecurity KPIs and KRIs from relevant stakeholders. Maintain a centralized KPI/KRI tracker. Prepare periodic reports with trend analysis to support regulatory maturity. Identify and escalation performance gaps.
    • Qualifications
    • Minimum 1 year in a dedicated Cybersecurity GRC role.
    • Hands‑on experience with SAMA CSF compliance within regulated entities.
    • Experience in audit evidence preparation and regulatory assessments.
    • Strong background in drafting cybersecurity policies and procedures.
    • Experience using GRC platforms (e.g., Archer, Service Now GRC, One Trust, etc.).
    • Bachelor's degree in Cybersecurity, Information Security, Computer Science, or related field.
    Certifications
    • ISO 27001 Lead Implementer / Lead Auditor
    • Security+, (ISC)² CC, CGRC, CISA, or CRISC
    Languages
    • Speaks English and Arabic
    Preferred Qualifications
    • Experience with PDPL and NDMO regulations, PCI-DSS compliance exposure.
    • Knowledge of cloud security (AWS, Azure, GCP, OCI).
    • Experience in fintech or financial services.
    • Familiarity with frameworks like ISO 27001, NIST, COBIT.
    #J-18808-Ljbffr
    To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)
    0
    200
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search