Cybersecurity Governance, Risk & Compliance Manager

Job Purpose:

Manage KAFD’s cutting edge cybersecurity Cyber Security strategy, architecture, capabilities and governance framework, and Identity & Access Governance standards and standard operating procedures at the corporate and district levels and ascertain strict compliance with them. Guide the assessment and evaluation of associated risks and the development and implementation of risk mitigation measures to guarantee business continuity.

Main Accountabilities:

• Contribute to the development of KAFD’s Cyber Security strategy and architecture and manage the implementation of Cyber Security governance framework that encompass people, process, and technology.
• Lead the development and implementation of Identity & Access Governance standards and standard operating procedures, in line with internal policies and global frameworks.
• Secure strict compliance with the applicable Cyber Security laws, regulations and guidelines at the corporate and district levels. Identify and report on non-compliance incidents.
• Develop initiatives aimed at enhancing the effectiveness of security process control and governance, reducing operational costs, and improving service levels and availability at the corporate and district levels. Follow up on effective resourcing and execution according to set timelines and budgets.
• Administer risk and vulnerability assessments at the corporate and district levels. Analyze results and provide insights on KAFD’s cybersecurity risk posture.
• Devise risk mitigation plans to guarantee a proactive approach in managing cyber risks.
• Review analysis of cybersecurity risk metrics for emerging risk trends and work with relevant stakeholders to address the risks.
• Advise related KAFD functions on the effective implementation and operations of Cyber Security measures and safeguards.
• Continuously evaluate Cyber Security controls to ensure effectiveness, compliance and adherence to key controls and policies and drive its remediation efforts.
• Liaise with relevant regulatory body to achieve reasonable level of cybersecurity assurance and compliance.
• Contribute to the creation of an open, inclusive, and professional Cyber Security culture to influence Cyber Security best practices that proactively benefit KAFD.
• Manage the design and delivery of continuous Cyber Security awareness and training sessions at the corporate and district levels to foster a strong Cyber Security culture at KAFD.

• Strong understanding of cybersecurity governance frameworks and best practices
• Knowledge of risk management principles and methodologies
• Experience in developing and implementing compliance programs.
• Familiarity with industry regulations and standards such as GDPR, ISO 27001, and NIST.
• Ability to conduct risk assessments and gap analyses.
  
  

Computer Science, Information Systems or any ICT-related field.