Senior Information Security / Senior Cyber Security Assessor (Certification)

We are seeking a highly experienced Senior Information Security / Senior Cyber Security Assessor (Certification) to lead and support cyber security certification and compliance assessment activities. The role is responsible for reviewing certification applications, evaluating organizations’ compliance with national and international security standards, conducting cyber security risk assessments and audits, and ensuring consistency, impartiality, and quality throughout the certification lifecycle.

The ideal candidate will possess strong technical expertise in information security governance, risk management, compliance, auditing, and certification frameworks, along with proven leadership and stakeholder management capabilities.

Key Responsibilities:

• Lead and deliver certification assessment and review activities for organizations seeking Information Security / Cyber Security certification.
  
• Manage assessment teams, assign cases, and oversee daily certification operations.
  
• Review and evaluate organizations’ compliance with national and international cyber security standards and frameworks.
  
• Assess the design and operating effectiveness of cyber security and information security controls
  
• Conduct cyber security risk assessments, audits, and compliance reviews.
  
• Maintain accurate, complete, and organized records of certification and assessment activities.
  
• Ensure impartiality, confidentiality, consistency, and compliance throughout certification processes.
  
• Document assessment observations and findings based on objective evidence and ensure traceability.
  
• Develop and maintain certification procedures, methodologies, and supporting tools aligned with national compliance frameworks.
  
• Develop compliance measurement mechanisms and monitoring tools to track improvements.
  
• Provide recommendations and assessment outcomes to stakeholders and decision-makers.
  
• Manage external communication throughout the audit and certification lifecycle, from application to final decision issuance.
  
• Stay updated on emerging cyber security threats, technologies, standards, and industry best practices.
  
• Develop and deliver internal training sessions and workshops to enhance team capabilities in cyber security, compliance, assurance, and auditing.
  
• Collaborate effectively with internal teams, clients, and stakeholders across multiple projects.
  
  
  
  

Requirements

Education:

• Bachelor’s degree in Information Technology, Computer Information Systems, Cyber Security, or a related field.
  

Professional Certifications:

One or more relevant professional certifications are preferred, such as:

• CISSP
  
• CISA
  
• CISM
  
• CRISC
  
• ISO 27001 Lead Auditor / Implementer
  

Experience:

• Minimum 7 years of professional experience in Information Security / Cyber Security.
  
• Minimum 4 years of experience in one or more of the following areas:
  • Information Security Auditing
    
  • Cyber Security Auditing
    
  • Risk Management
    
  • Information Security Management
    
• Experience in consulting or implementing cyber security programs aligned with national or international standards is highly desirable.
  

Technical Skills & Knowledge:

• Strong knowledge of cyber security governance, risk assessment, and audit methodologies.
  
• Experience with security frameworks and standards such as:
  • ISO 27001
    
  • NIST
    
  • NIA Controls
    
  • CSF Q2022
    
• Familiarity with certification and audit standards including:
  • ISO/IEC 17021
    
  • ISO/IEC 17024
    
  • ISO/IEC 27006
    
  • ISO/IEC 17065
    
  • ISO 19011
    
  • ITAF
    
  • ISA
    
• Hands-on experience in Information Security Auditing and Information Security Management.
  
• Strong understanding of cyber security trends, threats, and emerging technologies.
  
• Excellent technical report writing and documentation skills.
  

Soft Skills:

• Strong analytical and problem-solving abilities.
  
• Excellent communication and stakeholder management skills.
  
• Ability to work independently and manage multiple priorities effectively.
  
• High attention to detail and ability to work under pressure and meet deadlines.
  
• Strong interpersonal and team collaboration skills.
  
• Experience in delivering workshops, training sessions, and awareness programs.
  

Language Requirement:

• Fluency in English is required.
  
• Arabic is a plus.
  
  

The contract duration is 12 months, with the possibility of extension based on departmental requirements.