×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant IT Business Analyst

Info Sec GRC Lead

Job in Riyadh, Riyadh Region, Saudi Arabia
Listing for: NextEra
Full Time position
Listed on 2026-06-05
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Business Analyst
Salary/Wage Range or Industry Benchmark: 150000 - 200000 SAR Yearly SAR 150000.00 200000.00 YEAR
Job Description & How to Apply Below

Next Era is seeking an experienced Info Sec GRC Lead to join our Cybersecurity function in Riyadh. Reporting directly to the CISO, you will drive our governance, risk, and compliance (GRC) agenda, ensuring alignment with regulatory frameworks such as NCA ECC, ISO 27001, SOC 2, and PDPL. You will play a key role in building a strong cybersecurity culture, partnering with internal stakeholders and regulators to ensure compliance, mitigate risks, and establish effective governance processes across all cybersecurity domains.

Key Responsibilities Governance
  • Develop, implement, and maintain cybersecurity governance policies and frameworks in line with NCA and international standards.
  • Establish reporting mechanisms and KPIs to track compliance and maturity.
  • Advise management on governance and compliance issues.
  • Lead the identification, assessment, and mitigation of cybersecurity risks across business units.
  • Maintain and update the risk register, ensuring continuous monitoring and reporting.
  • Support vendor risk management and third‑party assessments.
Compliance
  • Ensure adherence to regulatory and contractual obligations (NCA ECC, SCyWF, ISO 27001, SOC 2, PDPL, GDPR where applicable).
  • Lead internal audits, readiness assessments, and support external audits.
  • Develop corrective action plans and track remediation progress.
  • Partner with Legal, HR, IT, and other units to align governance and compliance efforts.
  • Support the development of cybersecurity awareness and training programs.
  • Represent Next Era in discussions with regulators and external stakeholders.
Qualifications & Experience Experience
  • 8+ years in cybersecurity governance, risk, and compliance.
  • Minimum 3 years in regulated industries (banking, energy, telecom, tech, or government).
  • Proven track record in implementing compliance programs aligned with NCA, ISO, or equivalent frameworks.
Education
  • Bachelor’s degree in information security, Computer Science, or related field (minimum).
  • Master’s degree or professional certifications (CISM, CRISC, ISO 27001 Lead Implementer/Auditor) preferred.
Requirements
  • Strong knowledge of international and national regulatory requirements (NCA ECC, GDPR, PDPL, etc.).
  • Hands‑on experience with risk management frameworks and tools.
  • Excellent communication and influencing skills, especially with senior leadership.
  • Strong project management and organizational skills.
  • Must be based in the Kingdom of Saudi Arabia (KSA).
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search