Team: Finance and Business Services
Activity: Full-time
Role grade: Manager (6)
Direct reports: 0
Indirect reports: 0
Reporting to: Senior Manager Cybersecurity
Role location: Riyadh, Saudi Arabia
Job Purpose: As the Manager Cybersecurity Data, you will be responsible for safeguarding the organization's data assets by establishing and enforcing robust data governance and cybersecurity frameworks. This role ensures strict compliance with national privacy and data protection laws while maintaining high standards of data quality, integrity, confidentiality, availability, and safety. A critical component of the role includes strategic oversight of Managed Service Providers (MSPs) and third-party operating companies to ensure all external partners consistently meet the organization's cybersecurity, data protection, and risk management requirements.
Duties And Responsibilities
- Establish and maintain a privacy risk management framework to ensure compliance and monitor assurance efforts.
- Analyze personal data structures and develop alignment programs with relevant privacy regulations and data protection controls.
- Conduct Privacy Threshold Assessments (PTA) and Privacy Impact Assessments (PIA) to ensure the protection of personally identifiable information (PII).
- Manage data governance processes, including defining roles, responsibilities, and access privileges for sensitive data.
- Ensure that the organization's cybersecurity requirements are included in all third-party operations, mergers, and acquisitions.
- Evaluate the cybersecurity aspects of potential vendors and operating companies during the selection and assessment phase.
- Monitor and audit third-party service providers to ensure compliance with established privacy and cybersecurity standards.
- Identify and document supply chain risks for critical system components provided by external operators.
- Work closely with the CISO, legal counsel, and senior leadership to manage privacy incidents and breaches in accordance with legal requirements.
- Collaborate with relevant regulatory institutions and legal entities regarding investigations and compliance reviews.
- Ensure all technical and operational processes align with national legislations, specifically the Saudi Personal Data Protection Law (PDPL) and NCA requirements.
- Build and develop a secure data infrastructure that facilitates advanced analytics without compromising data privacy.
- Manage data linking and integration between various systems to ensure secure and encrypted data transit.
- Oversee data quality standards and structuring to protect information accuracy against unauthorized tampering.
Education And Experience
- Bachelor's degree in Cybersecurity, computer science, Information Technology, or a related field.
- 5+ years of experience in Data Management or Cybersecurity, with a focus on governance and third-party oversight.
Knowledge, Skills, And Abilities
- Strong understanding of data governance frameworks, data protection laws, and privacy regulations (e.g., Saudi PDPL, GDPR).
- In-depth knowledge of cybersecurity principles, risk management, and controls, with the ability to assess data structures and vendor security posture.
- Project management and analytical skills to lead cross-functional initiatives and translate complex regulatory requirements into actionable processes.
- Ability to drive continuous improvement in data quality, integrity, and security.
- Proven capability to oversee third-party and MSP compliance, ensuring alignment with organizational cybersecurity and privacy standards.
- Professional certifications such as CDPSE, CISM, CIPP/E, or CDMP are a plus.
Benefits
- Relocation support
- Transportation allowance
- Competitive compensation
- Housing allowance
- VIP medical insurance
- Opportunity to work on a new exciting project with a group of passionate professionals. You will get the freedom to excel and make a real impact
Diversity disclaimer
Our mission is to build a diverse organization where our members, regardless of background or identity, have a sense of belonging. We genuinely believe that thanks to creating a collaborative environment where different perspectives are valued, we can achieve more. Together, we want to reshape the boundaries of what is achievable in the esports domain.
