Company Description Damin Insurance Brokerage is a Saudi-licensed insurance brokerage and insurtech company, operating advanced digital platforms that serve both individuals and corporate clients. Damin focuses on digital transformation, regulatory compliance, and building secure, scalable insurance technology platforms aligned with the Kingdom’s regulatory and governance requirements.
Job Summary The Cybersecurity Manager is responsible for leading and governing the cybersecurity function across Damin Insurance Brokerage and its digital platforms. The role ensures the protection of information assets, infrastructure, and critical systems through effective cybersecurity governance, risk management, regulatory compliance, and operational security controls, while fostering a strong security-first culture across the organization.
Key Responsibilities Cybersecurity Governance & Compliance Develop, implement, and govern the organization’s cybersecurity framework, policies, and procedures. Ensure compliance with regulatory and legislative requirements and related cybersecurity regulations. Define, maintain, and regularly update cybersecurity policies, standards, and guidelines. Conduct cybersecurity maturity assessments and drive continuous improvement initiatives. Risk Management Lead cybersecurity risk assessments and maintain the cybersecurity risk register. Identify, assess, and monitor cyber risks and recommend appropriate mitigation strategies. Oversee vulnerability management and penetration testing programs. Security Operations & Incident Response Oversee Security Operations Center (SOC) activities, whether in-house or through managed service providers. Lead cybersecurity incident response, investigations, and post-incident reviews. Ensure effective implementation of security controls across networks, systems, applications, and data. Business Continuity & Resilience Develop, review, and test Business Continuity (BCP) and Disaster Recovery (DR) plans from a cybersecurity perspective. Ensure cyber resilience across critical systems and digital platforms. Reporting & Stakeholder Management Prepare and present periodic cybersecurity posture and risk reports to senior management. Act as the primary point of contact for cybersecurity audits, assessments, and regulatory reviews. Awareness & Capability Building Lead cybersecurity awareness and training programs for employees and management. Promote a security-by-design and security-first culture across technical and business teams. Manage and develop cybersecurity team members and external service providers.
Requirements Saudi Nationality (mandatory). Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.6–8 years of cybersecurity experience, with at least 3 years in a managerial or leadership role. Hands-on experience in digital platforms, enterprise IT, or technology-driven environments. Strong knowledge of cybersecurity governance, risk management, and incident response. Solid understanding of enterprise IT environments and IT service management practices.
Preferred Qualifications Master’s degree in Cybersecurity or a related discipline. Professional certifications such as:CISSPCISMCISAISO 27001 (Lead Implementer / Lead Auditor) CEHITIL