About the Company:

Aligned with Saudi Arabia’s Vision 2030, we harness the Kingdom’s rapidly developing talent and technological advancements to support economic diversification and drive industry transformation through cutting-edge AI, computer vision, and automation. Our solutions are strategically designed to empower startups and enterprises with a competitive edge by leveraging local talent and infrastructure, advancing the region’s human capital development. Through ethical innovation and transparency-focused partnerships, we actively contribute to the Kingdom’s ambitious objectives, championing a high-tech, sustainable future. 

We are seeking a highly skilled Technology Risk Analyst to support IT Governance Framework (ITGF) initiatives within the banking sector. The ideal candidate will bring strong experience in IT controls implementation, effectiveness testing, and technology risk assessments, along with hands-on technical expertise across APIs, middleware, operating systems, databases, and infrastructure. This role will work closely with audit, compliance, and technology teams to ensure a robust and regulatory-aligned control environment.

• Implement and maintain IT governance and control frameworks aligned with banking regulations and industry standards.
• Conduct design and operational effectiveness testing of IT General Controls (ITGC) and application controls.
• Identify control gaps, document findings, and recommend remediation actions.
• Support internal and external audits related to IT governance and controls.
• Maintain detailed control testing documentation, evidence, and reporting.

• Perform technology risk assessments across infrastructure, applications, and data environments.
• Evaluate risks associated with:
  • APIs
  • Middleware platforms
  • Operating systems
  • Databases
  • Core infrastructure components
• Develop and maintain risk registers, control matrices, and remediation tracking plans.
• Monitor key risk indicators (KRIs) and escalate issues to governance stakeholders.

• Conduct hands-on testing of technical controls, including:
  • API authentication, authorization, encryption
  • Middleware logging and integrity controls
  • OS hardening, patching, privileged access controls
  • Database access rights, backup/recovery, audit logging
  • Infrastructure security monitoring and change controls
• Validate segregation of duties (SoD) and privileged access management.
• Support business continuity and disaster recovery control testing.

• Prepare detailed control testing reports with findings and recommendations.
• Present governance and risk posture updates to management committees.
• Collaborate with IT, business, compliance, and audit teams to drive remediation closure.