Head of Cybersecurity (KSA National)

Head of Cybersecurity directs cybersecurity work within an organization, establishes vision and direction for its cybersecurity and related strategies, resources and activities and advises the leadership on the effective management of the organization’s cyber risks

Requirements

• Bachelor's degree in Cyber Security, Computer Science, or any IT-related field
• 8+ years of experience
• Knowledge of network components, their operation and appropriate network security controls and methods
• Knowledge of risk assessment, mitigation and management methods
• Knowledge of relevant cybersecurity aspects of legislative and regulatory requirements, relating to ethics and privacy
• Knowledge of the principles of cybersecurity and privacy
• Knowledge of cybersecurity related threats and vulnerabilities
• Knowledge of the likely operational impact on an organization of cybersecurity breaches
• Knowledge of vulnerabilities in applications and their likely impact
• Knowledge of cybersecurity aspects of business continuity and disaster recovery planning and including testing
• Knowledge of system and application security threats and vulnerabilities
• Knowledge of security system design tools, methods and techniques
• Knowledge of the components of a network attack and their relationship to threats and vulnerabilities
• Knowledge of best practices for supply chain risk management
• Knowledge of the national cybersecurity regulations and requirements relevant to the organization
• Knowledge of cybersecurity threats, risks and issues posed by new technologies and malicious actors
• Knowledge of the organization's risk management processes
• Knowledge of cybersecurity best practices for IT supply chain management
• Knowledge of critical information systems that were designed with limited technical cybersecurity controls
• Knowledge of potential vulnerabilities in all network equipment and how it is used
• Knowledge of cybersecurity vulnerabilities across a range of industry standard technologies
• Knowledge of penetration testing and red teaming principles, tools and techniques
• Knowledge of public sources detailing common application security risks and mitigations
• Knowledge of how capture the flag and other cybersecurity related exercises and competitions can assist in improving practical skills
• Skill in determining the normal operational state for security systems and how that state is affected by change
• Skill in effectively communicating with all levels of staff
• Skill in identifying new cybersecurity threats in a timely manner
• Skill in developing policies which reflect the organization's business and cybersecurity strategic objectives
• Skill in evaluating the viability and legitimacy of suppliers and products
• Skill in continually identifying new technologies and their potential impact on cybersecurity requirements
• Skill in using critical thinking to recognize organizational challenges and relationships
• Ability to demonstrate critical comprehension of documentation
• Ability to use experience to understand poorly written policies
• Ability to understand and relate legislative, regulatory and contractual requirements to the cybersecurity objectives of the organization
• Ability to communicate technical and planning information at the same level as a stakeholder's understanding
• Ability to apply critical thinking
• Ability to effectively and efficiently prioritize cybersecurity resources
• Ability to align business and security strategies for the benefit of the organization
• Ability to recognize organizational challenges from a business, management and technological perspective
• Ability to relate basic cybersecurity concepts to the impact they may have on an organization
• Ability to apply the organization's chosen framework for describing, analyzing and documenting its IT architecture
• Ability to employ best practice when implementing cybersecurity controls within a system
• Ability to develop strategy, policy and related documentation to support business strategy and maintain compliance with legislative, regulatory and contractual obligations

Benefits

• health insurance
• dental insurance
• vision insurance
• retirement plan
• paid time off
• medical leave
• life insurance
• disability insurance