Associate Consultant

JOB DESCRIPTION

Associate Consultant – Cyber Security

Saudi National Fresh Graduate Hiring Program

Position Title

Associate Consultant – Cyber Security

Service Line

Technology Consulting – Cyber Security & Digital Risk

Location

Riyadh, Kingdom of Saudi Arabia

Reporting To

Manager/Director – Cyber Security

Experience

0 – 1 year (Fresh Graduates / Early Career)

Nationality

Saudi Nationals only (Saudization program)

Employment Type

Full-time, Permanent

Work Model

Hybrid (Client-site / Office / Remote)

1. About the Opportunity

Join one of the fastest-growing Technology Consulting practices in the Kingdom of Saudi Arabia and start your career at the heart of the Vision 2030 cyber transformation agenda. As an Analyst / Associate Consultant – Cyber Security, you will be part of a high-energy team that helps Saudi Arabia's largest banks, government entities, energy companies, and digital giga-projects protect themselves against cyber threats.

This role is open exclusively to Saudi nationals as part of our continued investment in developing local cyber talent. You will receive structured on-the-job training, world-class mentorship, sponsored international certifications, and exposure to landmark engagements – all designed to set you up for an accelerated career path in cyber security consulting.

2. What You Will Do

2.1 Day-to-Day Responsibilities

• Support senior team members in delivering cyber security consulting engagements across Banking, Government, Energy, Telecom, and Healthcare clients.
• Conduct research and benchmarking on cyber security frameworks, standards, regulations, threats, and industry leading practices.
• Help draft information security policies, standards, procedures, and risk registers under the guidance of senior consultants.
• Assist in performing cyber risk assessments, control testing, gap analyses, and maturity assessments aligned to NCA ECC, SAMA CSF, ISO 27001, and NIST CSF.
• Prepare professional client-ready deliverables – PowerPoint reports, Word documents, and Excel-based analyses.
• Maintain project trackers, status reports, and engagement documentation.
• Support proposal preparation, RFP responses, and internal practice-building activities.

2.2 Learning & Development Opportunities

• Structured onboarding bootcamp covering cyber security fundamentals, consulting skills, and firm methodology.
• Sponsored preparation and examination fees for industry-recognized certifications (e.g., ISO 27001 Foundation, CompTIA Security+, CC by ISC2, CEH, AZ-900/AWS-CCP).
• Hands-on exposure to leading clients and projects across KSA.
• Dedicated mentor (Buddy & Coach) to support your professional growth and well-being.
• Regular technical training, knowledge-sharing sessions, and access to global learning platforms.
• Clear career progression path from Analyst → Consultant → AM.

3. Who We Are Looking For

3.1 Eligibility

• Saudi National (mandatory) – this position is part of our Saudization commitment and is open to Saudi nationals only.
• Recent graduate (2024, 2025, or 2026 batch) or up to 1 year of post-graduation work experience.
• Open to candidates returning from undergraduate or master's programs abroad, as well as graduates from Saudi universities.

3.2 Education

• Bachelor's degree (or Master's) in one of the following disciplines:
• – Cyber Security / Information Security
• – Computer Science / Computer Engineering / Software Engineering
• – Information Systems / Information Technology
• – Electrical / Electronics / Communications Engineering
• – Management Information Systems (MIS)
• Minimum cumulative GPA of 3.5 / 5.0 (or 3.0 / 4.0) from a recognized university.
• Graduates from top Saudi universities (KFUPM, KAUST, KSU, KAU, PNU, Prince Sultan, Effat) and reputed international universities are strongly encouraged to apply.

3.3 Foundational Knowledge

• Solid understanding of cyber security fundamentals – CIA triad, threat landscape, attack vectors, defense-in-depth, and incident-response basics.
• Awareness of key cyber security domains – network security, application security, identity and access management, cloud security, data protection, and SOC operations.
• Familiarity with one or more frameworks: NCA ECC, SAMA CSF, ISO 27001, NIST CSF, OWASP Top 10, MITRE ATT&CK.
• Basic knowledge of cloud platforms (AWS / Azure / GCP) and operating systems (Windows / Linux).

3.4 Certifications (Preferred, not Mandatory)

• CC – Certified in Cybersecurity (ISC2)
• CompTIA Security+
• Certified Ethical Hacker (CEH)
• ISO/IEC 27001 Foundation
• Note: Candidates who do not yet hold a certification are still encouraged to apply – the firm will sponsor your first certification within your initial year.

4. Skills & Attributes

• Strong analytical mindset and curiosity to learn new technologies and concepts.
• Excellent written and verbal communication skills in both Arabic and English.
• Professional presence, ability to interact confidently with senior client and firm stakeholders.
• Strong proficiency in Microsoft Office – PowerPoint, Word, Excel.
• Familiarity with AI productivity and consulting tools is highly preferred — e.g., Claude (including Cowork mode), Microsoft Copilot, ChatGPT, or GitHub Copilot — and the ability to apply them to accelerate cyber security tasks such as policy drafting, control mapping, and research.
• Awareness of responsible-AI use, prompt-engineering basics, and data-confidentiality considerations when working with AI tools on client information.
• Team-player attitude with willingness to support seniors and peers.
• High ownership, attention to detail, and ability to deliver under deadlines.
• Willingness to travel within Saudi Arabia as required by client engagements.