Experience & skills

• Possess a Bachelor’s or Master’s degree in IT, Finance, or a related field, with MBA or Engineering qualifications preferred to support advanced governance and risk management responsibilities.
• Demonstrate 10+ years of experience in IT Governance, Risk, and Compliance, including at least 5 years within banking or financial services environments, ensuring familiarity with sector-specific regulatory frameworks.
• Exhibit hands-on experience in implementing and managing SAMA IT Governance Framework (ITGF) or equivalent regulatory frameworks within regulated financial institutions.
• Demonstrate strong knowledge of governance and compliance frameworks including COBIT, COBIT2019, ITIL, ISO 27001, ISO 20000, NIST, and PCI DSS, ensuring ability to align organizational practices with global standards.
• Possess proven experience in conducting IT audits, performing risk assessments, executing compliance reviews, and implementing effective risk mitigation strategies.
• Hold or demonstrate knowledge of professional certifications such as CISA, CISM, CISSP, CGEIT, GRCP/GRCA, COBIT2019, and ITIL to validate expertise in governance, risk, and compliance disciplines.
• Demonstrate experience in business continuity planning (BCP) and disaster recovery planning (DRP), ensuring operational resilience and continuity of IT services.
• Exhibit strong capability in vendor management, IT contract advisory, budgeting, and licensing compliance to support governance and financial oversight functions.
• Show familiarity with regulatory environments in Saudi Arabia or GCC region, including interaction with regulators such as SAMA and maintaining audit readiness.