Senior Cybersecurity GRC Specialist

About Mozn
Mozn is a rapidly growing technology firm revolutionizing the field of Artificial Intelligence and Data Science headquartered in Riyadh, Saudi Arabia and it's working to realize Vision 2030 with a proven track record of excellence in supporting and growing the tech ecosystem in Saudi Arabia and the GCC region. Mozn is the trusted AI technology partner for some of the largest government organizations, as well as many large corporations and startups.

We are in an exciting stage of scaling the company to provide AI-powered products and solutions both locally and globally that ensure the growth and prosperity of our digital humanity. It is an exciting time to work in the field of AI to create a long-lasting impact.

About The Role
We are seeking a highly skilled and motivated Cybersecurity GRC Specialist to join our Governance, Risk, and Compliance (GRC) team. This role is pivotal in ensuring our cybersecurity practices align with both Saudi regulatory frameworks and international standards. The ideal candidate will possess hands-on experience in conducting risk assessments, demonstrate expertise in compliance, and have a solid understanding of cloud environments and their associated risks.

*Please note: In line with the Saudization (Nitaqat) initiative, this role is open to Saudi nationals only.
*What You'll Do

• Conduct comprehensive cybersecurity risk assessments across business units and IT systems.
• Ensure compliance with Saudi regulatory frameworks including NCA ECC, SAMA CSF, and PDPL.
• Support audits and assessments related to regulatory and international standards.
• Develop, review, and update cybersecurity policies, procedures, and control mappings.
• Collaborate with internal stakeholders to ensure effective implementation and monitoring of security controls.
• Assist in implementing data privacy controls and breach notification procedures in line with PDPL and GDPR.
• Track and manage risk treatment plans, exceptions, and compliance gaps using GRC platforms.
• Evaluate and monitor security controls in cloud environments to ensure compliance and risk mitigation.
• Stay informed on AI technologies and assess their impact on cybersecurity posture, including risks related to data leakage, model integrity, and regulatory compliance.

Qualifications

• Bachelor's degree in Information Security, Computer Science, or a related field.
• 3–5 years of experience in cybersecurity risk management, compliance, or audit.
• Strong knowledge of NCA ECC, SAMA CSF, PDPL, ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, and GDPR.
• Relevant certifications such as ISO 27001 Lead Auditor, CISA, CISM, CIPM, or CRISC are preferred.
• Proficiency in English is required for documentation, communication, and collaboration across teams.
• Understanding of cloud environments and related security and compliance considerations is essential.
• Awareness of AI technologies and their associated risks

Preferred Attributes

• Strong analytical and problem-solving skills.
• Excellent communication and documentation abilities.
• Ability to work independently and collaboratively in a fast-paced environment.

Benefits

• You will be at the forefront of an exciting time for the Middle East, joining a high-growth rocket-ship in an exciting space.
• You will be given a lot of responsibility and trust. We believe that the best results come when the people responsible for a function are given the freedom to do what they think is best.
• The fundamentals will be taken care of: competitive compensation, top-tier health insurance, and an enabling culture so that you can focus on what you do best
• You will enjoy a fun and dynamic workplace working alongside some of the greatest minds in AI.
• We believe strength lies in difference, embracing all for who they are and empowered to be the best version of themselves