Cybersecurity Governance, Risk and Compliance Manager

About the Job:
Riyadh Air (RX), headquartered in the Saudi Capital, is the new national airline that’s shaping the future of flying. The organization seeks to transform Saudi Arabia into a global aviation and trade hub by becoming a digitally native airline connected to more than 100 destinations.

Role Overview:
As a Cybersecurity GRC professional, you will be responsible for safeguarding the organization’s assets, data, and reputation. Your tasks will include establishing effective governance, managing cybersecurity risks, and ensuring compliance with regulatory requirements and standards such as NCA and ISO 27001. You will provide advisory support to IT and Business teams to ensure that information security practices align with regulatory requirements, industry standards, and internal policies.

Key responsibilities include:

• Developing and maintaining cybersecurity policies, standards, and baselines.
• Creating Information Security Awareness and Training programs for all users.
• Developing and maintaining a comprehensive Risk Management Framework for assessments, threat management, and audits.
• Implementing the GRC strategy to ensure robust risk management and compliance.

This position offers the opportunity to drive cybersecurity trust, resilience, and regulatory excellence within a dynamic organization.

About You:

• You must have a degree and a minimum of 6 years of experience in Cybersecurity GRC roles within large complex organizations that handle critical data and assets.
• An in-depth understanding of regulatory compliance requirements and designing associated policies and procedures (NCA, ISO 27001, NIST, PCI DSS, GDPR, etc.) is essential.
• Experience using eGRC tools for risk management and audit functions is required.
• Relevant cybersecurity certifications such as GIAC GCCC, CISA, CISM, ISO 27001 LA, or equivalent are preferred.

This is your opportunity to shape the future of air travel with Riyadh Air. Please submit your application to be considered for this role.