Cybersecurity Risk Lead
7 days ago
Who Are We
HALA is a leading fintech player in the MENAP region that aims to redefine financial services and build the future bank of SMEs. HALA aims at empowering SMEs to start, run, and grow their businesses by providing them with cutting-edge financial and technological tools.
HALA currently holds multiple entities in UAE, Saudi Arabia and Egypt (including HALA Payments, HALA Cashier and HALA Logistics) and offers solutions that enable merchants to digitize their payments as well as manage their sales and operations.
Founded in 2017, HALA is currently duly licensed by the Saudi Arabian Central Bank as well as the Financials Services Regulatory Authority (FSRA) in Abu Dhabi Global Market.
Job Summary:
The Cybersecurity Risk Lead's primary function is to develop and govern the overarching risk management methodology to systematically identify, assess, and prioritize cybersecurity threats, vulnerabilities, and potential business impacts; this includes maintaining a corporate risk register, defining the acceptable risk appetite with senior leadership, monitoring the effectiveness of security controls against compliance frameworks (like CSF or NCA), and translating complex technical risk scenarios into clear, actionable business language for executive reporting and resource allocation to ensure risk mitigation aligns with organizational objectives and regulatory requirements.
Tasks & Responsibilities:
Lead HALA's cyber risk management program aligned to SAMA CSF and NCA ECC-2.
Own risk assessments, control testing, risk registers, and treatment plans across tech, product, cloud, and third parties.
Define cyber risk appetite, KRIs/KPIs, and executive dashboards (residual risk, control maturity, audit findings).
Support regulatory exams, internal/external audits, and policy/standard lifecycle.
Oversee third-party cyber risk for vendors, PSPs, and critical fintech partners.
Qualifications:
Bachelor's in Cybersecurity, IT, Business, or related field.
8–12+ years in cyber GRC/risk, including financial-sector exposure preferred.
Strong grasp of risk frameworks (ISO 27001, NIST CSF/ and mapping to SAMA/NCA controls.
Excellent audit, documentation, and stakeholder skills.
Certs preferred: CISSP-ISSMP, CISM, CRISC, ISO 27001 LA/LI.
What We Offer YouWe believe you will love working at HALA
- We have an inclusive and diverse culture that encourages innovation and flexibility in remote, in-office, and hybrid work setups.
- We offer highly competitive compensation packages, including the potential for shares.
- We prioritize personal development and offer regular training and an annual learning stipend to tackle new challenges and grow your career in a hyper-growth environment.
- Join a talented team of over 30 nationalities working in 7 countries and gain valuable experience in an exciting industry.
- We offer autonomy, mentoring, and challenging goals that create incredible opportunities for both you and the company.
- You will be given a lot of responsibility and trust. We believe that the best results come when the people responsible for a function are given the freedom to do what they think is best.
If you think you have what it takes to join a remarkable team #apply_now
-
Cybersecurity Risk
5 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia Amazon Full timeJoin a transformative team at AWS and play a pivotal role in shaping Saudi Arabia's digital security landscape. You'll be at the forefront of interpreting complex cybersecurity regulations, developing innovative compliance frameworks, and bridging the gap between global cloud technology and local regulatory requirements.Key job responsibilities• Interpret...
-
Cybersecurity Risk
5 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia Amazon Web Services (AWS) Full timeDescriptionJoin a transformative team at AWS and play a pivotal role in shaping Saudi Arabia's digital security landscape. You'll be at the forefront of interpreting complex cybersecurity regulations, developing innovative compliance frameworks, and bridging the gap between global cloud technology and local regulatory requirements.Key job...
-
Cybersecurity Governance, Risk
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia MIS Connect Full time 90,000 - 120,000 per yearKey Responsibilities:Governance & Policy ManagementDevelop and implement cybersecurity policies, standards, and procedures in alignment with the SAMA Cybersecurity Framework.Establish a governance framework for cybersecurity roles, responsibilities, and decision-making.Ensure policies are approved, communicated, and enforced across the organization.Risk...
-
Cybersecurity Risk Specialist
5 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia Dimension Data NTT ltd Full timeKey responsibilities:Identify and assess cybersecurity risks and vulnerabilities.Conduct threat modelling and analyses potential impacts.Develop strategies to address cybersecurity risks.Implement cybersecurity frameworks (e.g., NCA, NIST, ISO and Ensure compliance with regulations, national and international standards.Advise on remediation steps to mitigate...
-
Cybersecurity Risk Specialist
5 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia NTT DATA Full timeMake an impact with NTT DATAJoin a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.Your day at NTT DATAThe Cyber...
-
Cybersecurity Risk Specialist
5 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia NTT DATA, Inc. Full timeMake an impact with NTT DATAJoin a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.Key responsibilities:Identify and...
-
Cybersecurity Risk Specialist
7 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia NTT Ltd. Full time 60,000 - 120,000 per yearMake an impact with NTT DATAJoin a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive. Key responsibilities:Identify and...
-
Head of Cybersecurity
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia Raqmiyat Full time 150,000 - 200,000 per yearWe are looking for an experienced CISO to lead the organization's cybersecurity strategy, governance, operations, and compliance. The role will ensure protection of information assets, alignment with regulatory frameworks, and continuous improvement of the cybersecurity posture.Key ResponsibilitiesDevelop and maintain the cybersecurity strategy, policies,...
-
Regional Digital Sales Lead
2 weeks ago
Riyadh, Ar Riyāḑ, Saudi Arabia NuSummit Cybersecurity Full time 100,000 - 150,000 per year• Job Title: Regional Digital Sales Lead• Location: Middle East & GCC• Experience: Years• Industry: IT ServicesAbout NuSummit Technologies:With over 15+ years of experience, NuSummit specializes in empowering financial services firms to navigate complex challenges with cutting-edge, technology-driven solutions. Our deep industry expertise enables us...
-
Cybersecurity Section Head
5 days ago
Riyadh, Ar Riyāḑ, Saudi Arabia Leader Investment Group - LIG Full timeJob PurposeLead and oversee all cybersecurity initiatives within the organization and externally for clients and projects. Ensure compliance with national and international regulations (CST-CRF, NCA, ISO 27001, GDPR), protect digital assets, and deliver expert-level cybersecurity services for internal environments and external enterprise/government...
