Join NTT DATA, a company renowned for its technical excellence and leading innovations in cybersecurity. We prioritize diversity and inclusion, creating a workplace where you can grow, belong, and thrive.
Ready to apply for roles like this?
Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.
Unlock employer & apply directly
Key Responsibilities
- Identify and assess cybersecurity risks and vulnerabilities.
- Conduct threat modelling and analyze potential impacts.
- Develop strategies to address cybersecurity risks.
- Implement cybersecurity frameworks (e.g., NCA, NIST, ISO 27001) and ensure compliance with regulations and national/international standards.
- Advise on remediation steps to mitigate security gaps.
- Assist with business continuity and disaster recovery plans.
- Set up continuous monitoring systems for security threats.
- Report on security metrics and process improvements.
- Advise senior management on cybersecurity risks and collaborate with IT, legal, and other departments.
- Evaluate and recommend cybersecurity tools and technologies.
- Assess the security posture of third-party vendors.
- Advise on secure vendor relationships and data sharing protocols.
Technical Competencies
- Network Security Architecture: Knowledge of designing and configuring firewalls.
- Cloud & Application Security: Knowledge of securing cloud environments, application vulnerabilities, and best practices (e.g., OWASP Top 10).
- Understanding of emerging technologies and threats.
Knowledge of Relevant Regulatory Frameworks
- NCA (ECC, DCC, CSCC)
- NDMO (National Data Management Office)
- GDPR (General Data Protection Regulation)
- HIPAA (Health Insurance Portability and Accountability Act)
- NIST (National Institute of Standards and Technology)
- ISO/IEC 27001 & 27002
Cyber Security Knowledge
- Risk Assessment: Ability to identify, evaluate, and prioritize cybersecurity risks to an organization.
- Risk Mitigation: Knowledge of strategies to reduce, transfer, or eliminate identified risks.
- Threat and Vulnerability Management: Understanding of how to manage vulnerabilities through patching, configuration management, and vulnerability scanning.
- Risk Reporting: Ability to communicate risks to stakeholders in clear terms.
- Excellent communication and documentation skills to effectively communicate complex cybersecurity and compliance concepts to technical and non-technical stakeholders and coordinate with executive leadership to communicate security posture and make strategic recommendations.
Academic Qualifications and Certifications
- Bachelor's degree or equivalent in Business, Information Security, Risk Management, or related field.
- Relevant certifications such as CISM, CRISC, CISSP, CIPP preferred.
Required Experience
- Minimum 4 years of experience as a Risk Analyst, preferably in a global organization with diverse operations.
Workplace Type
On-site Working
Location
Riyadh, Saudi Arabia
