Compliance Manager (PCI-DSS, GDPR & Saudi PDPL)

We are seeking a highly skilled Compliance Manager (GDPR & Saudi PDPL) to ensure adherence to regulatory, security, and data protection standards across our organization. The ideal candidate will have strong expertise in global and regional compliance regulations, especially PCI-DSS, GDPR, and Saudi PDPL, along with experience managing incident response and risk assessment activities in fast-paced, regulated environments.Key Responsibilities:Ensure compliance with PCI-DSS, including implementation, documentation, and monitoring.Manage GDPR and Saudi PDPL compliance, including policy development and compliance reviews.Handle incident management: reporting, investigation, mitigation, and documentation.Interpret and apply Saudi regulatory requirements (SAMA, NCA, DMO) across internal processes.Conduct risk assessments, internal audits, and ongoing compliance monitoring.Develop, implement, and maintain compliance policies, SOPs, and procedures.Prepare compliance reports and communicate findings to stakeholders.Collaborate with internal teams to ensure compliance integration across operations.Support training and awareness programs on data protection and regulatory requirements.QualificationsBachelor’s in Computer Science, Information Security, Software Engineering, or related field.3+ years of professional experience in Quality Assurance (QA), Information Security, or Compliance.Strong knowledge of PCI-DSS (mandatory); implementation experience preferred.Proven experience with GDPR, Saudi PDPL, and data privacy laws (mandatory).Experience in incident handling and security event management.In-depth understanding of SAMA, NCA, and DMO regulatory frameworks.Strong documentation, analytical, and communication skills.Experience in FinTech/financial institutions/regulated environments is a plus.Certifications such as CISA, CISM, CRISC, or ISO 27001 Lead Implementer/Auditor are an advantage.