Associate - Cybersecurity Risk (SMP)

The primary objective of the Cyber Risk Associate is to establish and maintain cybersecurity policies, procedures, and governance frameworks within the NEOM ecosystem. This role involves overseeing the implementation of cybersecurity methodologies, monitoring cybersecurity Key Performance Indicators (KPIs), and managing cybersecurity committees, working groups, and executive reporting.

Key Responsibilities:

• Ensure compliance of cybersecurity policies and procedures with industry standards, laws, regulations, and NEOM's requirements.
• Supervise the development of a governance framework and operating model aligned with best practices.
• Monitor the implementation of cybersecurity methodology and manage roles and responsibilities for timely detection and mitigation of cyber threats.
• Define and update cybersecurity policies, procedures, and governance frameworks based on organizational requirements and regulatory changes.
• Maintain and update the Unified Cybersecurity Framework, Risk and Control Matrix, and implementation trackers.
• Establish consistent cybersecurity governance methodologies across NEOM.
• Analyze existing cybersecurity tools and provide recommendations for enhancements.
• Manage and monitor cybersecurity KPIs across NEOM.
• Conduct regular audits of cyber programs and provide improvement input.
• Collaborate with internal groups to address policy and risk management matters.

Requirements:

• Bachelor’s degree in Computer Engineering, Computer Science, or a related field.
• 7+ years of experience in cyber risk management.
• Experience with industry regulations and frameworks such as ISO27001, NIST, and others.
• Proficiency in GRC (Governance, Risk, and Compliance) tools.
• Cybersecurity certifications (ISO 27001, CISA, CISM, CRISC, etc.) are preferred.
• Strong background in security controls, auditing, network, and system security.