Cybersecurity Manager

Company Description:

Naseej is a leading technology company committed to harnessing the power of digital transformation in learning & knowledge management by enabling our customers to provide rich experiences for their users and adapt to a dynamic technology landscape while reducing their technical burden enabling them to focus on achieving their strategic objectives. And for almost 36 years, Naseej with its branches all over the MENA region had made many contributions to be one of the market leaders in the fields of E-Learning, Edu-Tech & Digital transformation. Naseej website: https://www.naseej.com/

Job Summary:

The Cybersecurity Manager is responsible for leading and governing cybersecurity operations across Naseej and its affiliates (Corporate and subsidiaries) within Saudi Arabia and regional operations (UAE, Qatar, Egypt, etc.).

The role ensures the protection of information assets, infrastructure, and digital platforms through effective cybersecurity governance, risk management, compliance, and operational security controls, while building a security-first culture across the organization.

Key Responsibilities:

Cybersecurity Governance & Compliance

• Develop, implement, and maintain cybersecurity governance frameworks aligned with NCA, SAMA, CST, and ISO 27001 requirements.

• Ensure continuous compliance with national cybersecurity regulations and regulatory mandates.

• Define and maintain cybersecurity policies, standards, procedures, and guidelines.

• Manage cybersecurity maturity assessments and improvement roadmaps.

Risk Management

• Lead enterprise cybersecurity risk assessments and maintain the cybersecurity risk register.

• Identify, assess, and monitor cyber risks and recommend appropriate mitigation strategies.

• Oversee vulnerability management and penetration testing programs.

Security Operations & Incident Response

• Oversee Security Operations Center (SOC) activities and incident response readiness.

• Lead cybersecurity incident handling, investigation, and post-incident reviews.

• Ensure implementation and effectiveness of security controls including firewalls, endpoint protection, IDS/IPS, and DDoS mitigation.

Business Continuity & Resilience

• Develop, maintain, and test Business Continuity (BCP) and Disaster Recovery (DR) plans from a cybersecurity perspective.

• Ensure cyber resilience across critical systems and platforms.

Reporting & Stakeholder Management

• Prepare and present periodic cybersecurity posture reports to senior management and relevant regulators.

• Act as the primary point of contact for cybersecurity audits, assessments, and regulatory reviews.

Awareness & Capability Building

• Lead cybersecurity awareness and training programs for employees and management.

• Promote a security-first mindset across business and technical teams.

• Mentor and manage cybersecurity team members and external service providers.

Requirements:

• Bachelor’s degree in Cybersecurity, Computer Science, Computer Engineering, or a related field.

• 6–8 years of cybersecurity experience, with at least 3 years in a managerial or leadership role.

• Proven experience in SaaS and Cloud sectors

• Deep understanding & Hands-on experience with NCA cybersecurity compliance, CST, and ISO 27001.

• Solid knowledge of security operations, incident response, and vulnerability management.

• Good understanding of IT Service Management (ITIL) and enterprise IT environments.

Other Preferred Qualifications:

• Master’s degree in Cybersecurity or a related discipline.

• Professional certifications such as:

  • CISSP, CISM, CISA

  • ISO 27001 / ISMS Lead Implementer or Lead Auditor

  • CEH

  • ITIL (preferred)