Senior Cybersecurity GRC Specialist

Mozn is a rapidly growing technology firm headquartered in Riyadh, Saudi Arabia, revolutionizing the field of Artificial Intelligence and Data Science. Our mission aligns with Vision 2030, and we support and grow the tech ecosystem in Saudi Arabia and the GCC region. We partner with large government organizations, corporations, and startups to provide AI-powered products and solutions that ensure the growth and prosperity of our digital humanity.

We are seeking a highly skilled and motivated Cybersecurity GRC Specialist to join our Governance, Risk, and Compliance (GRC) team. This role is pivotal in ensuring our cybersecurity practices align with both Saudi regulatory frameworks and international standards. The ideal candidate will possess hands-on experience in conducting risk assessments, demonstrate expertise in compliance, and have a solid understanding of cloud environments and their associated risks.

Responsibilities:

• Conduct comprehensive cybersecurity risk assessments across business units and IT systems.
• Ensure compliance with Saudi regulatory frameworks including NCA ECC, SAMA CSF, and PDPL.
• Support audits and assessments related to regulatory and international standards.
• Develop, review, and update cybersecurity policies, procedures, and control mappings.
• Collaborate with internal stakeholders to ensure effective implementation and monitoring of security controls.
• Assist in implementing data privacy controls and breach notification procedures in line with PDPL and GDPR.
• Track and manage risk treatment plans, exceptions, and compliance gaps using GRC platforms.
• Evaluate and monitor security controls in cloud environments to ensure compliance and risk mitigation.
• Stay informed on AI technologies and assess their impact on cybersecurity posture, including risks related to data leakage, model integrity, and regulatory compliance.

Qualifications:

• Bachelor’s degree in Information Security, Computer Science, or a related field.
• 3–5 years of experience in cybersecurity risk management, compliance, or audit.
• Strong knowledge of NCA ECC, SAMA CSF, PDPL, ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, and GDPR.
• Relevant certifications such as ISO 27001 Lead Auditor, CISA, CISM, CIPM, or CRISC are preferred.
• Proficiency in English is required for documentation, communication, and collaboration across teams.
• Understanding of cloud environments and related security and compliance considerations is essential.
• Awareness of AI technologies and their associated risks.

Preferred Attributes:

• Strong analytical and problem-solving skills.
• Excellent communication and documentation abilities.
• Ability to work independently and collaboratively in a fast-paced environment.

Benefits:

• Competitive compensation with top-tier health insurance.
• A dynamic and fun workplace culture, allowing you to focus on what you do best.
• Opportunity to work alongside some of the greatest minds in AI.

Note: In line with the Saudization (Nitaqat) initiative, this role is open to Saudi nationals only.