Certification Lead

The Certification Lead is responsible for leading the end-to-end delivery of cybersecurity certification programs and assurance services. The role oversees certification assessments, critical sector audits, and the development of standardized methodologies and frameworks. It ensures the effectiveness, consistency, and continuous improvement of certification operations while translating strategic objectives into executable programs. The role also leads stakeholder engagement, team management, and the delivery of national-level cybersecurity certification initiatives.

Key Responsibilities:

• Lead end-to-end delivery of all certification services and programs
  
• Oversee certification review assessment for all certification programs
  
• Responsible for critical sector audits as the Certification Lead
  
• Establish, monitor and enhance standardized audit methodologies, practices, and certification standards.
  
• Continuously assess and improve the efficiency and effectiveness of the Certification program.
  
• Translate the strategic direction from the department head into actionable projects and programs.
  
• Plan, build and operate cybersecurity certification standards and related assurance mechanisms
  
• Plan, prioritize, and oversee delivery of projects and initiatives within the Certification Services portfolio
  
• Provide solutions for challenges encountered in the operation and promotion of assurance services.
  
• Follow-up with the top management on resources and requirements for the benefits of the department.
  
• Manage, monitor and support the planning, preparation and delivery of certification related public events (workshops, trainings, conferences, etc.)
  
• Interact with stakeholders, providing expert feedback on challenges and insights to the operation team.
  
• Coordinate with other departments activities in relation to assurance.
  
• Manage stakeholder interaction for collaboration with internal and external projects
  
• Manage, mentor and lead the certification team and improve service delivery (operational guidance, professional development, and capability enhancement)
  

Requirements

Education & Experience:

• Master’s degree in IT, Cybersecurity, Risk Management, or related field, or minimum 15 years of relevant experience.
  
• At least 6 years of experience in cybersecurity assessment, IT auditing, or certification-related roles.
  
• Strong background in cybersecurity governance, risk, and compliance.
  

Certifications (Preferred):

• CISA, ISO 27001 Lead Auditor/Implementer.
  
• COBIT, CRISC, CGEIT, or other governance and risk management certifications.
  

Technical Skills:

• Strong knowledge of cybersecurity and information security standards (ISO 27001, NIA, COBIT, Common Criteria, etc.).
  
• Understanding of accreditation and certification frameworks (ISO 17021, 17024, 17065, 17025, 27006).
  
• Experience in developing standards, technical directives, SOPs, and audit documentation.
  
• Strong background in risk management and compliance assessment.
  
• Proven project management experience delivering initiatives on time, within scope, and budget.
  
• Experience in regulatory compliance and national cybersecurity standard development.
  

Core Skills:

• Strong technical report writing and documentation skills.
  
• Excellent communication and presentation skills, including briefing senior executives.
  
• Strong analytical, problem-solving, and critical thinking abilities.
  
• Ability to manage multiple projects and stakeholders in complex environments.
  

Behavioral Competencies:

• Strong leadership and team management capabilities.
  
• Ability to work under pressure and manage competing priorities effectively.
  
• High attention to detail with a commitment to quality and accuracy.
  
• Strong interpersonal and stakeholder engagement skills.
  
• Ability to work independently and drive initiatives proactively.
  

Language: English (required)
Availability: As soon as possible

The contract duration is 12 months, with the possibility of extension based on departmental requirements.