Cognita is a global leader in independent education. Founded in 2004, we are a growing community of 100+ schools in 16 countries - in Europe, North America, Latin America, Asia and the Middle East - serving more than 85,000 students. Each of our schools are proudly unique, however our collective purpose is to create an environment where everyone can, ‘Thrive in a rapidly evolving world’.
At Cognita, we know every student is unique. We nurture their distinct personalities and strengths. We support them academically, socially, and emotionally, wherever they are in the world, wherever they’re starting from. We protect what’s special about them, while offering them rich knowledge, opportunities, and best practices. And they get to be part of something bigger; ensuring they get an education that’s, quite literally, world class.
We are looking for a Regional Cyber Security Lead to join the team. The successful candidate will play a pivotal role in safeguarding our Middle East operations. Reporting to the Group Manager of Cyber Governance, Risk, and Compliance (GRC), you will ensure the effective implementation of cyber security policies and lead regional initiatives to protect and enhance our security posture.
Key Responsibilities Include
Regional Expertise and Leadership
Understand regional nuances, new technologies, and regulatory landscapes to tailor security strategies.
Oversee and lead cyber security initiatives aligned with regional and global objectives.
Incident Response
Lead regional incident response efforts, acting as the primary liaison during major incidents.
Develop and implement robust response plans in alignment with Group policies.
Implementation of Security Best Practices
Support local teams in implementing controls based on Group policies, the NIST CSF 2.0 framework, and local regulations.
Regularly review security configurations, recommending enhancements.
Assurance and Compliance
Conduct assurance activities to ensure compliance with security standards and policies.
Support adherence to regional regulatory requirements.
Reporting and Metrics
Develop and maintain key performance indicators (KPIs) and risk indicators (KRIs) to monitor the region's security programme.
Contribute insights to group-level reports for senior leadership.
Security Awareness and Training
Drive regional security awareness initiatives, including tailored training programmes.
Equip staff with knowledge of emerging threats and mitigation techniques.
Collaboration and Transformation
Build strong relationships with regional IT, business, and operations teams to foster collaboration.
Lead remediation efforts for vulnerabilities and drive security transformation initiatives.
What We’re Looking For
Essential Skills
Proven ability to implement security controls and strategies.
Strong knowledge of governance, risk, and compliance frameworks (e.g., NIST, CIS).
Expertise in incident response, risk management, and security best practices.
Minimum 5 years in cyber security or GRC roles within an international organization.
Excellent analytical and communication skills in English.
Desirable Skills
Proficiency in Arabic (written and verbal).
Familiarity with regulatory frameworks in the Middle East.
Experience with security tools (e.g., SIEM, DLP) and reporting tools like Power BI.
Experience in education or decentralised international business models.
Qualifications
Relevant degree in Information Security, IT, or related fields.
Certifications such as CISA, CISSP, or CRISC.
Ready to Lead the Way? Join us in building a safer future for education in the Middle East. Apply now with your current, up-to-date CV.
The company reserves the right to interview and appoint strong candidates before the official closing date, and therefore we would encourage candidates to apply early in the process.
Cognita is committed to safeguarding the welfare of children and young people and expects the same from its employees. All new staff will be subject to detailed and enhanced pre-employment clearance, including identity checks, criminal background checks for all countries lived in, qualification checks, employment checks to include an exploration of any gaps in employment, and satisfactory reference checks for all employment in the last 5 years.
