Cybersecurity Governance Engineer

Job Summary:

We are looking for a Cybersecurity Governance Analyst to develop, maintain, and enforce cybersecurity policies, procedures, and governance frameworks. The ideal candidate will ensure compliance with industry standards such as ISO 27001, NIST CSF, and CIS Controls, while working closely with cross-functional teams to integrate security governance across the organization.

Location: KSA

Key Responsibilities:

Governance & Policy Development:

• 
  Develop, maintain, and enforce cybersecurity policies, procedures, and frameworks in line with ISO 27001, NIST CSF, and industry standards.
  
• 
  Define and manage security governance models, ensuring alignment with business objectives.
  
• 
  Ensure compliance with data protection regulations (e.g., GDPR, CCPA) and internal security policies.
  

Security Awareness & Compliance:

• 
  Support the development of a security awareness and training program for employees.
  
• 
  Work closely with IT, legal, and risk management teams to integrate cybersecurity governance across all functions.
  
• 
  Monitor KPIs and security metrics to measure governance effectiveness and report findings to senior leadership.
  

Requirements:

• 
  Bachelor’s degree in Cybersecurity, Information Security, or a related field.
  
• 3+ years of experience in cybersecurity governance, policy development, and regulatory compliance.
  
• 
  Strong understanding of ISO 27001, NIST CSF, CIS Controls, and other security frameworks.
  
• 
  Experience in security awareness training and stakeholder communication.
  
• 
  Certifications such as CISM, CGEIT, CISSP (Governance focus), or ISO 27001 Lead Implementer are a plus.
  

Skills & Competencies:

• 
  Strong communication and problem-solving skills.
  
• 
  Ability to collaborate with cross-functional teams and ensure compliance across departments.
  
• 
  High attention to detail, adaptability, and initiative.
  
• 
  A strong work ethic and willingness to learn in a dynamic environment.