Reporting directly to the Head of Information Security, you will play a pivotal role in safeguarding Tabby's information assets, managing risks, and driving the implementation of robust security frameworks in compliance with SAMA's guidelines.
Key Responsibilities
Compliance and Governance:
Ensure adherence to SAMA requirements and standards.
Develop, implement, and maintain information security policies, procedures, and guidelines.
Monitor compliance with internal security policies and external regulatory requirements.
Risk Management:
Conduct risk assessments and vulnerability analyses to identify and mitigate security threats.
Develop and implement risk management strategies and controls.
Monitor and report on the effectiveness of security measures.
Security Operations:
Oversee the implementation and management of security tools and technologies.
Coordinate with IT and other departments to ensure robust security measures are in place.
Manage incident response and investigation processes.
Training and Awareness:
Develop and deliver security awareness training programs.
Promote a culture of security awareness within the organization.
Project Involvement:
Participate in projects, including the onboarding and implementation of new systems, such as GRC tools.
Attend workshops and contribute to the integration of security requirements into new projects.
Reporting and Documentation:
Prepare regular reports on the status of information security programs.
Maintain documentation related to security policies, procedures, and incidents.
Skills, Knowledge & Expertise
Proven experience in information security.
Strong knowledge of SAMA requirements and standards.
Experience with governance, risk management, and compliance (GRC) tools such as Archer and Cyber Arrow.
Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
Ability to work in a fast-paced, dynamic environment.