ABDULRAHMAN M. BIN OBAID
Cybersecurity & GRC Leader
I build cybersecurity governance programs for healthcare and telecom organizations in Saudi Arabia. Over 9 years, I moved from network engineering through product management into GRC leadership. Six consecutive years of zero audit findings across two organizations.
Oct 2025 – Present
Sehati for Information Technology
Senior Manager, Cybersecurity & GRC
- —Lead the Cybersecurity and GRC team, reporting directly to the CISO on risk posture and compliance
- —Plan and execute the department budget ($3M+) covering security tooling, staffing, and compliance
Feb 2025 – Oct 2025
Sehati for Information Technology
Manager, Cybersecurity & GRC
- —Revamped the cybersecurity framework: restructured governance, updated compliance policies, enhanced audit procedures
- —Passed all compliance audits with zero critical findings during engagement with national regulators
Mar 2020 – Aug 2024
Solutions by stc
Manager, Operations & Products Governance
- —Led ISO 27001 and PCI-DSS certification efforts; maintained certifications throughout 4+ year tenure
- —Maintained zero flagged audit findings across all certification cycles for over four consecutive years
Apr 2019 – Mar 2020
Solutions by stc
Senior Product Manager II, Cloud & Digital
- —Managed cloud and IoT product lifecycles, refining business models and go-to-market strategies
- —Onboarded new Cloud Service Providers onto STC and Bluvalt cloud marketplaces
Jan 2018 – Apr 2019
Solutions by stc
Engineer II, IoT Field Services
- —Led teams to deliver and maintain IoT products for government, enterprise, and SME clients
- —Managed large CCTV deployment projects end-to-end: from survey and design through implementation
Aug 2016 – Jan 2018
Solutions by stc
Engineer I, Network Field Services
- —Installed and tested complex IT networks including FTTx and Managed Router Services for enterprise clients
- —Led diverse teams of internal and external technicians on multi-phase network infrastructure projects
Career
Oct 2025 – Present
Sehati for Information Technology
Senior Manager, Cybersecurity & GRC
- —Lead the Cybersecurity and GRC team, reporting directly to the CISO on risk posture and compliance
- —Plan and execute the department budget ($3M+) covering security tooling, staffing, and compliance
Feb 2025 – Oct 2025
Sehati for Information Technology
Manager, Cybersecurity & GRC
- —Revamped the cybersecurity framework: restructured governance, updated compliance policies, enhanced audit procedures
- —Passed all compliance audits with zero critical findings during engagement with national regulators
Mar 2020 – Aug 2024
Solutions by stc
Manager, Operations & Products Governance
- —Led ISO 27001 and PCI-DSS certification efforts; maintained certifications throughout 4+ year tenure
- —Maintained zero flagged audit findings across all certification cycles for over four consecutive years
Apr 2019 – Mar 2020
Solutions by stc
Senior Product Manager II, Cloud & Digital
- —Managed cloud and IoT product lifecycles, refining business models and go-to-market strategies
- —Onboarded new Cloud Service Providers onto STC and Bluvalt cloud marketplaces
Jan 2018 – Apr 2019
Solutions by stc
Engineer II, IoT Field Services
- —Led teams to deliver and maintain IoT products for government, enterprise, and SME clients
- —Managed large CCTV deployment projects end-to-end: from survey and design through implementation
Aug 2016 – Jan 2018
Solutions by stc
Engineer I, Network Field Services
- —Installed and tested complex IT networks including FTTx and Managed Router Services for enterprise clients
- —Led diverse teams of internal and external technicians on multi-phase network infrastructure projects
Projects
Cybersecurity Framework Revamp at Sehati
Revamped the cybersecurity framework including governance processes, compliance policies, and audit procedures. Achieved zero critical findings.
ISO 27001 and PCI-DSS Certification Program
Led end-to-end certification effort for Solutions by stc products and services. Coordinated across operations, cybersecurity, and internal audit.
Cloud Marketplace Onboarding Platform
Managed CSP onboarding onto STC and Bluvalt cloud marketplaces. Created standardized processes and a cloud certification e-learning program.
Enterprise IoT and CCTV Deployment Program
Led large-scale CCTV and IoT deployments for government, enterprise, and SME clients. Improved processes to meet SLA targets.
Core Competencies
Writing
Why Large Organizations Need a GRC-First Approach to Cybersecurity
Frameworks like NCA, ISO 27001, and PCI-DSS define the minimum. Evidence cross-mapping and a compliance calendar turned multi-framework chaos into a sustainable operation at Solutions by stc.
Building a GRC Function from Scratch: Lessons from Solutions by stc
From zero policies to zero critical audit findings in four years. How ownership mapping, a unified control framework, and a compliance calendar built a GRC program for 500+ employees.
Vendor Risk Management: Lessons from Managing Niche Technology Vendors
When your vendor has a locked-down OS and a global monopoly, questionnaires are not enough. How contract renegotiation and tiered assessments solved vendor risk at Solutions by stc.
From Network Engineer to GRC Leader: The Value of Cross-Domain Experience
A career spanning field engineering, product management, and cybersecurity governance at Solutions by stc. What junior vs senior auditors teach you, and why non-linear careers produce stronger leaders.