SiFi
Fintech • SaaS • B2B
SiFi is a Saudi-based expense management platform that provides businesses with corporate cards (physical and virtual), real-time expense tracking, automated accounting, reimbursement workflows, and payments automation. Licensed by the Saudi Central Bank, SiFi offers a mobile app and platform tools for budgeting, spend controls, analytics, and integrations with business software, aiming to improve financial governance, efficiency, and security for organizations.
Cybersecurity Risk & Architecture Lead
Job not on LinkedIn
May 9
SiFi
Fintech • SaaS • B2B
SiFi is a Saudi-based expense management platform that provides businesses with corporate cards (physical and virtual), real-time expense tracking, automated accounting, reimbursement workflows, and payments automation. Licensed by the Saudi Central Bank, SiFi offers a mobile app and platform tools for budgeting, spend controls, analytics, and integrations with business software, aiming to improve financial governance, efficiency, and security for organizations.
📋 Description
• Lead the cyber risk assessment process, ensuring identification, evaluation, and treatment risks in line with SAMA CSF Maturity Level 3. • Own and maintain the cybersecurity risk register with clear risk ownership and treatment tracking. • Conduct a multi-tier risk assessment that includes people, process, and technology. • Conduct risk assessments for new products, SaaS platforms, infrastructure, and third-party engagements. • Perform vendor/outsourcing risk assessments in compliance with SAMA and NCA regulations. • Integrate risk-based decision-making into product, business, and technology initiatives. • Define and maintain the enterprise security architecture blueprint, covering cloud infrastructure, microservices, APIs, SaaS platforms, and endpoints. • Review and validate technical designs and deployments to ensure compliance with security requirements and regulatory standards. • Establish reference architectures and technical standards (IAM, encryption, secure APIs, network segmentation, cloud workloads). • Promote security by design practices across product and technology teams. • Develop and track cybersecurity KPIs and KRIs to measure the effectiveness of risk management and architecture controls. • Provide metrics-driven insights to support CISO decision-making and continuous improvement of controls.
🎯 Requirements
• Minimum 8-10 years of experience in cybersecurity with proven expertise in risk management and security architecture. • Experience in financial services or fintech, preferably in a SAMA regulated environment. • Strong knowledge of SAMA CSF domains: Risk Management, Cybersecurity Architecture, Third Party Management, Compliance. • Expertise in cloud security, SaaS environments, APIs, and modern fintech architectures. • Familiarity with regulatory and industry standards: SAMA CSF, NCA ECC/DCC, PDPL, NDMO, PCI DSS, ISO 27001, NIST. • Preferred certifications: CISSP, CISM, CRISC, ISO 27001 LI/LA.
🏖️ Benefits
• Health insurance • Paid time off • Flexible work arrangements • Professional development opportunities
Apply Now