Position Summary:
We are seeking a highly experienced Risk professional to lead the organization’s enterprise risk, cyber security, and business continuity functions. The Principal – Risk will be responsible for building and maintaining robust risk management frameworks that ensure organizational resilience, operational security, and regulatory compliance. This includes managing all risk-related activities, from risk assessments and incident reporting to policy oversight and information security governance.
Key Responsibilities:
- Design and implement a comprehensive enterprise risk management framework.
- Establish governance processes using the Three Lines of Defense model.
- Oversee information security, cyber risk, and regulatory compliance efforts.
- Conduct risk and control self-assessments (RCSA) and maintain updated risk registers.
- Lead business continuity and crisis management planning and testing.
- Deliver employee awareness programs on risk, compliance, and cyber hygiene.
- Review internal policies, vendor contracts, and audit findings to ensure risk mitigation.
- Manage external risk/security vendors and certification processes (e.g., ISO 27001, 22301).
- Support internal audit planning and maintain alignment between audit and risk functions.
- Report risk findings and KPIs/KRIs to the Director General and Audit & Risk Committee.
Requirements:
- Minimum 15 years’ experience in risk management, with leadership experience.
- Bachelor’s degree required; Master’s degree preferred.
- Relevant certifications (e.g., CERA, FRM, CRM, PRM) are mandatory.
- Strong knowledge of governance, audit, compliance, and information security.
- Industry experience in financial services, credit bureaus, or tech-driven environments preferred.
- Strong analytical, communication, and leadership skills.
Job Type: Full-time
Application Question(s):
- 8+ in risk management ?
Education:
- Bachelor's (Required)
Language:
- arabic (Required)
License/Certification:
- FRM, PRM, CERA, CRM (Required)