Lead Cybersecurity Risk Management Specialist – Banking Sector – Riyadh, Saudi Arabia

Location

Riyadh, Saudi Arabia

Job Category

• Information Technology (IT) & Software
• Banking & Insurance
• Security & Defence
• Legal & Compliance

Job Overview

A leading banking organization in Saudi Arabia is seeking an experienced Lead Cybersecurity Risk Management Specialist to support and enhance its cybersecurity risk management operations. This role is ideal for cybersecurity professionals with strong experience in banking environments, cybersecurity governance, risk management frameworks, and regulatory compliance within the Kingdom of Saudi Arabia.

The successful candidate will be responsible for managing cybersecurity risk assessment activities, supporting third-party risk management programs, and ensuring alignment with regulatory frameworks such as SAMA Cybersecurity Framework (SAMA-CSF), NCA Essential Cybersecurity Controls (NCA-ECC), and NCA Cloud Cybersecurity Controls (NCA-CCC). The role requires a strong combination of technical cybersecurity knowledge, risk management expertise, and banking sector experience.

This opportunity offers significant career growth through exposure to enterprise cybersecurity governance, regulatory compliance initiatives, managed risk operations, and strategic cybersecurity programs within a highly regulated financial services environment.

Key Responsibilities

• Support and manage day-to-day cybersecurity risk management operations.
• Maintain and enhance cybersecurity risk management processes and documentation.
• Conduct business-as-usual (BAU) risk assessments for applications, systems, and business processes.
• Perform on-demand cybersecurity risk assessments for projects, system changes, and technology initiatives.
• Support and execute third-party cybersecurity risk management activities.
• Conduct cybersecurity assessments of vendors, suppliers, and external service providers.
• Analyze cybersecurity risks and recommend mitigation strategies.
• Ensure alignment with cybersecurity governance and regulatory requirements.
• Review technical architectures and security controls to assess cybersecurity risks.
• Collaborate with business, technology, and security stakeholders to manage risk exposure.
• Support compliance with banking and cybersecurity regulatory frameworks in Saudi Arabia.
• Prepare risk reports, findings, recommendations, and management documentation.

Requirements & Qualifications

• Bachelor’s degree in Computer Science, Information Security, Cybersecurity, Information Technology, or a related field.
• Minimum 7 years of relevant cybersecurity risk management experience.
• Mandatory experience within the banking or financial services industry.
• Strong experience leading cybersecurity managed risk operations.
• Comprehensive understanding of the cybersecurity risk management lifecycle.
• Experience conducting application, business process, project, and third-party risk assessments.
• Strong knowledge of cybersecurity technologies, architecture principles, and security controls.
• Extensive knowledge of KSA cybersecurity regulations and frameworks including:
  • SAMA Cybersecurity Framework (SAMA-CSF)
  • NCA Essential Cybersecurity Controls (NCA-ECC)
  • NCA Cloud Cybersecurity Controls (NCA-CCC)
• Strong analytical, risk assessment, and documentation capabilities.
• Excellent communication, stakeholder management, and reporting skills.
• Professional certifications such as CISSP, CISM, or equivalent are preferred.

Salary, Benefits & Career Growth

Benefits

• Yearly renewable contract with a leading banking organization.
• Opportunity to work within a highly regulated cybersecurity environment.
• Exposure to enterprise cybersecurity governance and risk management programs.
• Involvement in strategic cybersecurity and regulatory compliance initiatives.
• Collaborative and professional work environment.

Career Growth

• Develop advanced expertise in cybersecurity governance and risk management.
• Gain extensive experience with banking cybersecurity regulations and compliance frameworks.
• Strengthen leadership capabilities in cybersecurity operations and risk assessment.
• Build long-term career opportunities within banking, cybersecurity, governance, risk, and compliance functions.
• Enhance professional development through exposure to large-scale cybersecurity programs.

Application Process

Application Process (Website):

Apply only through the official job link.
Click Apply Now on the website.

HR Email for Application

Send your updated CV directly

Please mention the position title in the email subject line and include:

• Total Years of Experience
• Relevant Years of Experience
• Current Location
• Current Salary
• Expected Salary
• Notice Period