Senior Manager - Third Party Security
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Lead and manage Qiddiya's Third-Party Security Risk Management program to ensure vendors, partners, consultants, and service providers comply with cybersecurity requirements and.
Key Skills for This Role
Responsibilities
- Develop and maintain the Third Party Security Risk Management (TPSRM) framework
- Conduct cybersecurity due diligence and risk assessments for vendors and suppliers
- Review security requirements during procurement, RFP, and contract stages
- Assess cloud providers, SaaS platforms, managed service providers, and strategic partners
- Define vendor security controls aligned with NCA ECC, ISO 27001, NIST, and Qiddiya cybersecurity standards
- Establish vendor risk classification and assessment methodologies
- Monitor remediation plans and track closure of identified security gaps
- Collaborate with Procurement, Legal, Compliance, Enterprise Risk, and Technology teams
- Lead periodic reassessments of critical vendors
- Report third party cyber risks, trends, and KPIs to senior management
- Manage external security audits, questionnaires, and assurance activities
- Lead and develop the Third Party Security team
Requirements
- Develop and maintain the Third Party Security Risk Management (TPSRM) framework
- Conduct cybersecurity due diligence and risk assessments for vendors and suppliers
- Review security requirements during procurement, RFP, and contract stages
- Assess cloud providers, SaaS platforms, managed service providers, and strategic partners
- Define vendor security controls aligned with NCA ECC, ISO 27001, NIST, and Qiddiya cybersecurity standards
- Establish vendor risk classification and assessment methodologies
- Monitor remediation plans and track closure of identified security gaps
- Collaborate with Procurement, Legal, Compliance, Enterprise Risk, and Technology teams
- Lead periodic reassessments of critical vendors
- Report third party cyber risks, trends, and KPIs to senior management
- Manage external security audits, questionnaires, and assurance activities
- Lead and develop the Third Party Security team
Full Job Posting
Overview
- Lead and manage Qiddiya's Third Party Security Risk Management program to ensure vendors, partners, consultants, and service providers comply with cybersecurity requirements and do not introduce unacceptable risks to Qiddiya's information assets, systems, and operations.
Key Responsibilities
- Develop and maintain the Third Party Security Risk Management (TPSRM) framework.
- Conduct cybersecurity due diligence and risk assessments for vendors and suppliers.
- Review security requirements during procurement, RFP, and contract stages.
- Assess cloud providers, SaaS platforms, managed service providers, and strategic partners.
- Define vendor security controls aligned with NCA ECC, ISO 27001, NIST, and Qiddiya cybersecurity standards.
- Establish vendor risk classification and assessment methodologies.
- Monitor remediation plans and track closure of identified security gaps.
- Collaborate with Procurement, Legal, Compliance, Enterprise Risk, and Technology teams.
- Lead periodic reassessments of critical vendors.
- Report third party cyber risks, trends, and KPIs to senior management.
- Manage external security audits, questionnaires, and assurance activities.
- Lead and develop the Third Party Security team.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Qiddiya Investment Company
Senior Manager - Development Audit
Riyadh, KSA
Plan and execute risk-based audits across capital project activities. Review governance, processes, and control environments related to development such as design and delivery f...
Senior Legal Counsel
Saudi Arabia, KSA
Manage litigation, arbitration, mediation, and other dispute resolution matters. Provide legal advice on disputes, claims, and regulatory investigations. Develop dispute resolut...
Assistant Manager - Motorsport Strategy
Riyadh, KSA
Support strategic planning and delivery of motorsport assets, conduct feasibility studies, coordinate cross-functional projects, and manage partnerships and events.
Senior Manager - Talent Acquisition
Riyadh, KSA
Lead end-to-end recruitment lifecycle, manage a team, develop talent acquisition strategies, optimize processes, and track recruitment metrics for effective hiring.
Senior Legal Counsel
الرياض, KSA
Qiddiya Investment Company is seeking a Senior Legal Counsel to manage litigation, arbitration, and dispute resolution matters. The role involves providing legal advice, developing dispute resolution strategies, and mana
Assistant Manager - Motorsport Strategy
Riyadh, KSA
Qiddiya Investment Company seeks an Assistant Manager to support strategic planning and delivery of the Motorsport portfolio. The role involves developing business cases, coordinating cross-functional projects, and manag
Manager - Smart Systems
Riyadh, KSA
Lead development and enhancement of smart application solutions, manage applications team, drive innovation, and ensure technology delivers business value.
Director - Contracts & Procurement
Riyadh, KSA
Lead procurement planning, manage contract lifecycle, support vendor performance, and coordinate with various functions; requires strong procurement and contracts management exp...
Senior Manager - Development Audit
Riyadh, KSA
Senior Legal Counsel
Saudi Arabia, KSA
Assistant Manager - Motorsport Strategy
Riyadh, KSA
Senior Manager - Talent Acquisition
Riyadh, KSA
Senior Legal Counsel
الرياض, KSA
Assistant Manager - Motorsport Strategy
Riyadh, KSA
Manager - Smart Systems
Riyadh, KSA
Director - Contracts & Procurement
Riyadh, KSA

