Cybersecurity Governance, Risk and Compliance Manager

About The Role:
Riyadh Air (RX) is the new national airline of Saudi Arabia, focused on transforming the aviation sector and connecting the kingdom to over 100 destinations. We are seeking a driven Cybersecurity Governance, Risk and Compliance (GRC) professional who possesses excellent communication and teamwork skills.
In this role, you will be responsible for safeguarding our assets, data, and reputation by establishing effective governance, managing cybersecurity risks, and ensuring compliance with regulatory requirements and standards such as NCA and ISO 27001. You will advise IT and Business teams to ensure that information security practices align with regulatory requirements, industry standards, and internal policies.
Key responsibilities include:

• Developing and maintaining cybersecurity policies, standards, and baselines.
• Creating Information Security Awareness and Training programs for all users.
• Developing and maintaining a comprehensive Risk Management Framework.
• Implementing the GRC strategy to ensure robust risk management and compliance.
  This role offers the opportunity to drive cybersecurity trust, resilience, and regulatory excellence within a dynamic organization.

About You:

• A degree qualified candidate with a minimum of 6 years of experience in Cybersecurity GRC roles within large, complex organizations handling critical data and assets.
• In-depth understanding of regulatory compliance requirements and experience in designing related policies and procedures (NCA, ISO 27001, NIST, PCI DSS, GDPR, etc.).
• Familiarity with eGRC tools for risk management and audit functions.
• Relevant cybersecurity certifications such as GIAC GCCC, CISA, CISM, ISO 27001 LA, or equivalent are preferred.
  If you are ready to shape the future of air travel and eager to demonstrate your capability in this position, we invite you to submit your application.