Job Title

Role Overview We are seeking a skilled and detail-orientedData Privacy Specialistto join our client’s compliance and cybersecurity team inRiyadh, Saudi Arabia . This role is critical to ensuring that all personal data processing activities comply with the applicable data protection laws and standards, particularly those enforced bySAMA ,NCA , and thePersonal Data Protection Law (PDPL)in Saudi Arabia. The ideal candidate has hands-on experience in implementing privacy frameworks, conducting privacy impact assessments, and collaborating with cross-functional teams to embed privacy by design principles across systems and processes.Roles and Responsibilities Develop, implement, and maintain a comprehensiveData Privacy Programin alignment withSAMA ,NCA ECC , andPDPLrequirements. ConductPrivacy Impact Assessments (PIAs)andData Protection Impact Assessments (DPIAs)for new projects, systems, and services. Serve as the point of contact fordata subject rights (DSR) , including access, correction, deletion, and consent management. Collaborate with cybersecurity, legal, IT, HR, and compliance teams to embedprivacy by designandprivacy by defaultprinciples. Maintain and update records of processing activities (ROPAs) as required by law. Monitor data flows and cross-border transfers to ensure regulatory compliance. Provide input during vendor onboarding to assess third-party data protection risk and ensure data processing agreements (DPAs) are in place. Develop privacy training, awareness sessions, and communication campaigns for internal stakeholders. Stay current with evolvingKSA privacy regulations , global privacy standards (e.g., GDPR), and emerging privacy risks. Support audit readiness and regulatory interactions, including responses to inquiries or investigations bySAMA, NCA , orSaudi Data & AI Authority (SDAIA) .Requirements Technical & Professional Skills 8 to 10 years of professional experience indata privacy ,information governance , orcybersecurity compliance , preferably infinancial. KSA PDPL ,SAMA Cybersecurity Framework , andNCA ECC Global standards such asGDPR ,ISO/IEC 27701 , andNIST Privacy Framework Privacy tools and technologies for consent management, data classification, and data mapping Strong experience conducting PIAs, managing DSARs, and advising on legal and technical data protection requirements. Familiarity withdata loss prevention (DLP) ,data governance ,cloud privacy , andthird-party risk management .Preferred Certifications CIPT / CIPP/E / CIPP/M / CIPM– (IAPP Certifications) ISO/IEC 27701 Lead Implementer / Auditor SAMA / NCA Compliance Training / Certifications CISA / CISSP / CISM– (a plus for hybrid privacy-security roles)Personal Attributes Ethical, discreet, and highly organized with a strong sense of confidentiality and integrity. Proactive communicator with excellent interpersonal and stakeholder management skills. Independent, reliable, and able to manage complex regulatory requirements with minimal oversight. Immediate availability preferred. Willingness to work onsite in Riyadh, Saudi Arabia.#DataPrivacy #PrivacyJobs #CyberSecurity #PDPL #SAMA #NCA #SaudiArabiaJobs #RiyadhJobs #InformationGovernance #CIPP #CIPM #GDPR #ISO27701 #CISSP #CyberCompliance #KSAJobs #MiddleEastJobs #DataProtectionOfficer #PrivacyByDesign #PrivacyCompliance #HiringNow #ImmediateJoiners #DataProtectionLaw #NAZZTEC #SecurityAndPrivacy #CyberLaw #DataGovernance #PrivacyFramework #RiskAndCompliance