img
نوع العقددوام كامل
طبيعة الوظيفةبالموقع
الموقعالرياض

وصف الوظيفة

About the Role

Qiddiya is seeking an experienced Expert in Vulnerability Management to lead its program and strategy. This full-time position is based in Riyadh, Riyadh Province, and requires a professional with over 10 years of experience in the field.

Program Leadership and Strategy

The primary focus of this role is to develop and implement the organization's comprehensive Vulnerability Management program and strategy. This includes defining the approach to identifying, assessing, and mitigating security risks across the enterprise.

Key Responsibilities

  • Oversee all aspects of vulnerability scanning, assessment, prioritization, and remediation activities.
  • Monitor the progress of vulnerability remediation efforts and ensure adherence to agreed Service Level Agreements (SLAs).
  • Coordinate effectively with IT, Cloud, Infrastructure, Application, and Security teams to address identified vulnerabilities.
  • Manage the response process for critical and zero-day vulnerabilities.
  • Develop Key Performance Indicators (KPIs), dashboards, and executive reports to communicate vulnerability risk posture and remediation status.
  • Support internal and external audits, compliance assessments, and cybersecurity governance requirements.

Team and Vendor Management

This role involves leading and mentoring the Vulnerability Management team, as well as managing relationships with relevant third-party vendors to ensure effective service delivery and program execution.

Qualifications and Experience

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
  • A minimum of 8 years of experience in cybersecurity, with at least 4 years specifically focused on Vulnerability Management or Security Operations.
  • Hands-on experience with vulnerability management tools such as Tenable, Qualys, Rapid7, Microsoft Defender, or similar platforms.
  • A strong understanding of vulnerability management principles, risk management frameworks, cloud security best practices, and patch management processes.
  • Preferred certifications include CISSP, CISM, CRISC, or GIAC.

متطلبات الوظيفة

  • تتطلب اكثر من ١٠ سنوات خبرة

وظائف مشابهة