Cybersecurity Manager

Job Summary

The Cybersecurity Manager is responsible for developing, implementing and managing GlobeMed Saudi’s information security framework. This role involves identifying threats, managing risk, and ensuring compliance with relevant cybersecurity standards and regulations in order to ensure confidentiality, integrity and availability of data at any time.

The Cybersecurity Manager will lead the cybersecurity team, oversee daily security operations, and act as a key advisor to senior management on emerging threats and risk mitigation strategies.

Duties & Responsibilities

1- Strategy, policy and architecture

-       Develop, implement and maintain GlobeMed Saudi’s:

·      Cybersecurity strategy

·      Cybersecurity policies

·      Cybersecurity architecture

·      Cybersecurity risk management process

-       Ensure detailed cybersecurity standards and procedures are established, approved, and effectively implemented

-       Deliver risk-based cybersecurity solutions addressing people, process, and technology

-       Develop an annual security program and follow up on its completion

2- Leadership and team development

-       Develop and mentor cybersecurity team members to deliver effective security solutions in a business-driven context

-       Build a high-performance team capable of addressing emerging threats and risks

3- Cybersecurity Operations

-       Oversee and coordinate cybersecurity activities across the organization, including:

·      SOC monitoring and threat detection

·      Monitoring compliance with cybersecurity regulations, policies, standards, and procedures

·      Overseeing the investigation and resolution of cybersecurity incidents

·      Gathering and analyzing threat intelligence from internal and external sources

·      Performing cybersecurity reviews to assess effectiveness of controls

4- Risk Management & Assessment

-       Conduct cybersecurity risk assessments on GlobeMed Saudi’s information assets

-       Identify, evaluate, and recommend risk treatment options and mitigations

-       Support and participate in audits and risk assessments with special focus on cybersecurity areas

5- Business & Project Support:

-       Provide proactive cybersecurity support to other functions, including:

·      Information and system classifications

·      Determining cybersecurity requirements for critical business projects

·      Performing cybersecurity reviews and approvals as part of project lifecycles

6- Awareness & Culture

-       Define, implement, and maintain cybersecurity awareness programs across GlobeMed Saudi

-       Promote a security-first culture and reduce human-related risks

-       Coordinate with IT, HR, and Compliance teams to enforce cybersecurity best practices

7- Reporting metrics

-       Define, measure, and report KRIs (Key Risk Indicators) and KPIs (Key Performance Indicators) related to:

-       Cybersecurity strategy

-       Cybersecurity policy compliance

-       Cybersecurity standards and procedures

-       Cybersecurity programs (e.g., awareness program, data classification program, key security improvements)

8- Member of the Information Governance Committee

-       Member of the Information Governance Committee ensuring all security concerns are being raised, contributing to strategic decisions, reviews and risk discussions

-       Align with the Information Governance team of the ASP department at GlobeMed Group regarding cybersecurity practices

Skills/Qualifications

·      Bachelor’s degree in Computer Science, Information Security or related field

·      5 years’ experience in cybersecurity, information security or IT security roles, with at least 3 years in a leadership role

·      Strong understanding of security technologies, cybersecurity frameworks and regulations

·      Previous experience in SOC operations, risk management, incident response, and threat intelligence

·      Fluent spoken and written English and Arabic

·      Excellent leadership, communication, and stakeholder engagement skills

·      Excellent communication and training abilities

·      Meticulous and detail oriented

·      Ability to work under pressure in a fast-paced environment under rapid business and digital transition

·      Ability to work with cross-functional teams (IT, HR, Operations)

·      Possess high level of integrity, ethics and confidentiality

·      Active listening and problem-solving skills

·      Presentation skills

·      Professional certifications preferred: ISO 27001 or equivalent.