About the job
Position Overview:
We are seeking a skilled and certified Cyber security advisory consultant for a long term contract position, based onsite in Riyadh.
Candidate mandate and capability
- 10+ years of experience in the cybersecurity advisory field.
- Experience in leading large Cybersecurity Advisory Projects.
- Cybersecurity Strategy Development.
- Cybersecurity Operating Model Development.
- Cybersecurity Management Framework Development includes cybersecurity charter, policies, standards, guidelines, and procedures.
- Cybersecurity Risk Framework Development and Assessments.
- Risk Compliance Development and Assessments.
- Business Continuity Management Framework Development and Assessments.
- Cybersecurity Awareness Program design and implementation.
- Experience in Data Protection & Privacy Compliance Framework Development and Assessments.
The candidate must have experience in the following Cybersecurity frameworks:
- NCA (ECC, CCC, OSMACC, TCC, CSCC, OTCC, DCC, SCYWF, NCS, SCYBER-EDU, CGEC, and CGESP)https://www.nca.gov.sa/en/legislation
- NDMO Saudi Data Governance regulation and Personal Data Protection Law
- NIST (CSF, RMF, 800-30, 800-53, 800-55)
- ISO (27001, 27002, 27005, 27701, 22301)
- Service Organization Control (SOC2)
- Payment Card Industry Data Security Standard (PCI-DSS)
- Control Objectives for Information and related Technology (COBIT)
- Cloud Control Matrix (CCM)
- Cybersecurity Maturity Model Certification (CMMC 2.0)
- Center for Internet Security (CIS) Control Framework
Candidate Skills
- Certified as CISSP.
- Certified as CISM, or CISA, or CRISC.
- Certified as ISO27001 Lead Implementer or Lead Auditor.
- Certified as ISO22301 Lead Implementer or Lead Auditor.
- Ability to deliver the project end to end by himself/herself.
- Teamwork mentality.
If the above matches your skillset, please get in touch.