Job Description:
Key Responsibilities:
Lead and manage a team comprising:
Security Compliance Officer
L2/L3 F5 Application Security Engineers
Lead Network Security Engineer
L3 Network Security Engineer
L2 Network Security Engineers
L3 IAM & PKI Engineer
L2 IAM & PKI Engineers
L3 Data and Endpoint Security Engineers
L2 Data and Endpoint Security Engineers
Act as the primary point of contact for client stakeholders for all security operations and delivery matters.
Ensure consistent, high-quality delivery of security services as per the agreed SLAs and KPIs.
Coordinate and manage team schedules, deliverables, and performance reviews.
Lead incident response coordination, RCA (Root Cause Analysis), and reporting efforts when required.
Oversee compliance with internal security policies, client security policies, and relevant regulatory frameworks (e.g., SAMA, NCA ECC).
Drive continuous service improvement and operational efficiency across all security disciplines.
Facilitate knowledge transfer, mentoring, and skill development within the team.
Provide regular delivery updates, risk assessments, and reporting to client and internal management.
Collaborate with other business units, project managers, and technology leaders to ensure integrated security support across the client’s environment.
Required Qualifications:
Bachelor’s degree in Information Security, Computer Science, or a related field.
Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership or delivery management role.
Strong understanding of security domains: network, application, data, IAM, and endpoint security.
Experience managing geographically dispersed teams and multi-vendor environments.
Proven track record of delivering managed security services in banking or highly regulated environments.
Saudi National Only
Desired Skills and Certifications:
Professional certifications such as CISSP, CISM, CISA, CRISC, PMP, or ITIL are highly desirable.
Technical certifications across security platforms such as:
F5 ASM, BIG-IP, or Advanced WAF
Palo Alto, Cisco ASA/Firepower
Microsoft, SailPoint, or similar IAM platforms
Symantec, CrowdStrike, or Microsoft Defender
Familiarity with regulatory frameworks such as SAMA Cybersecurity Framework, NCA ECC, and ISO 27001.
Strong leadership, analytical, communication, and stakeholder engagement skills.
Fluency in Arabic & English
Working Conditions:
Location: On-site at client premises in Saudi Arabia.
Working Hours: Sunday to Thursday, full-time (typical business hours), with availability for escalations or incidents as needed.
Duration: Long-term engagement, with potential for extension based on performance and client satisfaction.
May require occasional travel within the Kingdom for coordination with branch offices or regulatory bodies.
Compliance with local labor laws and client-specific security clearance procedures is mandatory.
At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive.
Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.