Location: KSA

Job Type: Full-time, On-site

Qualifications

• Bachelor's degree in Cybersecurity or a related Computer Science field.
• Minimum of 5 years of experience in Cybersecurity Controls
• Professional certifications in the same field.
• Certified Cybersecurity Controls Assessor.
• ISO 27001 certification for Cybersecurity Controls or equivalent.
• Proficiency in spoken and written English.
• Successful completion of the personal interview.
• Excellent working understanding of Information Security and standards such as ISO 27001,NIST, CIS, SANS, CSA SOC consulting, ISO/IEC 270XX, ISO 22301, ISO/IEC 20000-1, NCA, SAMA CSF, and CITC standards/ regulations/ requirements.
• Good knowledge on Application & Infrastructure operations including ITSM
• Knowledge of regulatory compliance such as SOX, PCI etc
• Good knowledge of Risk Management and Control Auditing principles
• Knowledge of Data Privacy Requirements and Cyber Laws across countries.
• Hands-on working experience in relation to third party cybersecurity risk management project execution.
• Hands-on experience in delivery project activities related to the above.
• Excellent consulting skills
• Track record in implementing cybersecurity-related frameworks.

Responsibilities

• Evaluate current entity status, identify gaps, and develop a comprehensive cybersecurity development plan.
• Establish a Governance Framework, clarifying roles and responsibilities in cybersecurity management.
• Create a streamlined compliance strategy for cybersecurity controls.
• Develop the financing system, defining projects within the program's scope.
• Prepare a comprehensive brochure covering all controls of the National Cybersecurity Authority.
• Submit monthly detailed reports, outlining accomplishments, and conduct necessary meetings.
• Provide a qualified operating team for the duration of the contract as per specifications.
• Engage a remote cybersecurity consulting team for the duration of the contract.
• Conduct comprehensive cyber examinations of specific systems and devices.
• Respond to and report on cybersecurity incidents promptly.
• Review and optimize cybersecurity system and program settings.
• Scrutinize documents and forms for cybersecurity compliance.
• Hands-on delivery of strategic consultancy projects related to but not limited to third party cybersecurity risk management, SOC consulting, data classification, ISO/IEC 270XX, ISO 22301, ISO/IEC 20000-1, NCA, SAMA, and CITC standards/regulations/requirements.
• Conduct presales and sales enablement activities in relation to the identified consulting services.
• Interface with management for project-related matters.
• Familiarity with the technical products in the Help AG portfolio to guide staff in integrating this knowledge for the management system consultancy.
• Support the standardization activities.
• Identify own areas of work and further developing existing work areas in strategic security consulting.
• Provide feedback on service lines enhancement.
• Represent Help AG Consulting team in event/PR.