Security Apps Lead

Role overview

The Security Apps Lead is a growing leadership position focused on day-to-day ownership of an organization’s information security program. The role supports the rollout of security and governance strategies, frameworks, policies, and operational practices that help the business run securely and at scale.

This position works closely with cross-functional teams, managers, and other stakeholders to strengthen the security posture while encouraging a collaborative, innovative, and high-performing team environment.

Key responsibilities

• Oversee the operational delivery of an enterprise information security strategy that supports business goals.
• Maintain and roll out security policies, procedures, standards, and guidelines in line with industry expectations and regulatory obligations.
• Lead the identification, evaluation, and management of security risks across data, systems, networks, and third-party partners.
• Build security awareness through training, learning sessions, and ongoing communication with employees.
• Coordinate incident response activities to contain, manage, and reduce the impact of security events.
• Help ensure adherence to applicable security laws, regulations, and industry frameworks.
• Support the evaluation and selection of security technologies and solutions that safeguard digital assets.
• Implement monitoring tools and systems that help detect and respond to threats, while preparing regular updates for senior leadership and stakeholders.
• Track new threats, emerging risks, and security trends to continuously improve the organization’s defenses.
• Communicate incidents, response actions, and mitigation progress clearly to relevant stakeholders.
• Coordinate internal and external audits and security assessments.
• Guide the information security team and help ensure consistent compliance with security policies and procedures.

Skills and knowledge

The role requires strong familiarity with security frameworks, security tools, communication with non-technical audiences, team leadership, problem-solving, and business-aligned security planning.

Qualifications and experience

A bachelor’s degree or an equivalent qualification in business administration or a technology-related discipline is required.

Preferred certifications include CompTIA Security+, CISSP, CISM, CISA, and/or CEH.

Relevant experience should include a mix of risk management, information security, and IT responsibilities in a global organization. Experience in contract and vendor negotiations, Agile or scaled software delivery, cloud and elastic computing in virtualized environments, and regulatory compliance is also expected.

Practical knowledge is needed in areas such as information policy development, information security management, business risk management, IT risk assessment, IT continuity management, IT governance, organizational change management, IT financial management, and IT audit.

Workplace

This role is based on-site in Riyadh, Riyadh, Saudi Arabia.

About the employer

The company is a global technology and services organization known for innovation, technical expertise, and a commitment to helping clients and communities move forward responsibly. It emphasizes diversity, inclusion, and an environment where employees can grow and thrive.

Equal opportunity and hiring notice

The employer maintains an inclusive hiring approach and does not tolerate discrimination or harassment on any protected basis, including age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, or veteran status.

Applicants should be cautious of fraudulent recruitment attempts. Genuine recruiter emails use the company domain, and candidates should never be asked for payment or banking details during hiring.