Infrastructure System Security Manager

Position Overview:

Lucid KSA is seeking a dynamic and visionary IT Security professional to join our growing team in King Abdullah Economic City (KAEC). As we scale operations in the Kingdom and expand across the Middle East, this role will be pivotal in managing Data Loss Prevention (DLP) and Email Security platforms, while also contributing to Cyber Operations and Security Operations strategy. The ideal candidate combines technical expertise, leadership skills, and strategic thinking to safeguard Lucid’s digital assets and ensure compliance with global and regional security standards.

Key Responsibilities:

• Lead security awareness programs and training initiatives for Lucid staff in KSA and the Middle East.
• Mentor IT/Cyber staff, introducing current technologies and best practices to strengthen team capabilities.
• Stay updated on emerging threats, trends, and best practices in data security, email protection, and cyber defense.
• Collaborate with IT leadership to implement security-by-design principles for new deployments and expansions in KAEC.
• Perform risk assessments and implement controls to mitigate cybersecurity risks. Governance, Compliance & Awareness
• Administer and manage enterprise DLP solutions (e.g., Microsoft Purview, Forcepoint, Netskope).
• Develop, implement, and fine-tune DLP policies to protect sensitive data across endpoints, email, and cloud services.
• Monitor, investigate, and respond to DLP incidents, ensuring timely remediation and root cause analysis.
• Collaborate with business stakeholders to classify sensitive data and align DLP controls with regulatory and organizational requirements.
• Manage and optimize email security gateways (e.g., Microsoft Defender, Mimecast,).
• Configure anti-phishing, anti-spam, and advanced threat protection policies.
• Investigate suspicious emails, phishing attempts, and compromised accounts.
• Implement DMARC, DKIM, and SPF to prevent email spoofing and impersonation attacks.
• Oversee Cyber Operations functions, including incident response, threat intelligence, and vulnerability management.
• Ensure DLP, email security, and cyber controls comply with ISO 27001, and regional regulations.
• Prepare reports, dashboards, and metrics for management review and audit compliance.

Skills:

• Strong knowledge of DLP technologies, email security platforms, and regulatory frameworks.
• Hands-on experience with enterprise security tools (Microsoft 365 Defender, SIEM, CrowdStrike, Code42, Netskope etc.).
• Familiarity with SOC operations, threat intelligence, and incident response.
• Understanding of cloud security (Microsoft 365, Google Workspace, SaaS DLP) and network security concepts.
• Excellent leadership, analytical, and communication skills.

Minimum Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field (Master’s preferred).
• 5+ years of progressive experience in IT Security or Cybersecurity, with at least 2 years focusing on DLP and email security.
• Professional certifications such as CISSP, CISM, CCSP, CEH, or Microsoft Security certifications are preferred.
• Fluency in English required; proficiency in Arabic is an asset.
• Experience in the automotive industry is a plus.