Senior Risk Officer

Proudly voted a Great Place to Work®, we are a dynamic startup in the SaaS space that is revolutionizing the way businesses communicate. Our team is made up of 500 energetic and passionate Unifones who are dedicated to delivering the best possible experience to 5000+ customer-centric companies.

We pride ourselves on our fun and collaborative work environment, where creativity and new ideas are constantly encouraged. As shareholders in the business, we’re so much more than a group of passionate communicators. We are Unifones. Join our team and be a part of something big!

Meet the team!

The Senior Risk Officer is responsible for leading and advancing Unifonic’s Enterprise Risk Management (ERM) framework, ensuring proactive identification, assessment, mitigation, and monitoring of strategic, operational, technology, regulatory, cybersecurity, privacy, and AI-related risks.

Help us shape the future of communication by:

• Design, implement, and continuously enhance Unifonic’s Enterprise Risk Management Framework aligned with local and global standards and best practices.
• Maintaining and governing the Enterprise Risk Register, including risk taxonomy, scoring methodology, and risk ownership.
• Facilitating periodic risk assessments, workshops, and executive risk reviews across business units.
• Monitoring emerging risks (AI, data, regulatory, geopolitical, third-party, cloud, and operational risks).
• Assessing and monitoring compliance risks related to Saudi and international regulations (e.g., PDPL, NCA ECC, CST, SAMA, CMA, ISO standards).
• Translating regulatory requirements into actionable risk controls and mitigation plans.
• Supporting regulatory audits, assessments, and external reviews.
• Partner with Security, Privacy, Product, and Engineering teams to assess:
• Cybersecurity and cloud risks
• AI model and AI governance risks
• Data protection and privacy risks
• Supporting AI risk assessments, system impact assessments, and responsible AI initiatives.
• Leading or supporting third-party risk assessments (vendors, partners, cloud providers).
• Monitoring operational risks related to business continuity, resilience, and scalability.
• Tracking remediation actions and ensuring timely risk closure.
• Developing and maintaining risk dashboards, KRIs, and executive-level reporting.
• Providing clear, concise risk insights to senior leadership for informed decision-making.
• Ensuring accurate documentation and audit-ready evidence.

What you will bring:

• Bachelor’s degree in Risk Management, Business, IT, Cybersecurity, Law, or related field
• Master’s degree (preferred)
• 4-8 years of experience in risk management, GRC, audit, or compliance roles
• Strong exposure to technology, SaaS, cloud, cybersecurity, or AI-driven environments
• Experience supporting IPO readiness, regulatory audits, or board reporting is a strong advantage

Certifications

• CRISC, CISM, CISSP, ISO 31000, ISO 27001, or similar
• Risk, audit, or compliance-related certifications are highly valued

Key Skills & Competencies

• Enterprise Risk Management & Risk Assessment
• Regulatory & Compliance Risk (Saudi market focus)
• Cybersecurity, Data Protection & AI Risk Awareness
• Executive & Board-level Communication
• Strong analytical, documentation, and stakeholder management skills
• Ability to operate independently in a fast-paced, scaling organization

As a Unifone, you will receive a range of benefits:

• Competitive salary and bonus.
• GOSI deduction coverage.
• Unifonic share scheme (we are all owners!).
• 30 holiday days after the first anniversary.
• Your Birthday off!
• Spend up to 5 weeks per year working from anywhere in the world!
• Paid leave for new parents.