Head of Information Security & Governance

Job Title: Head of Information Security & Governance

Location: Dubai or Abu Dhabi, UAE

Employment Type: Full-Time | Individual Contributor

Overview:

We are seeking a seasoned Head of Information Security & Governance to lead all matters related to IT governance, cyber risk, and regulatory compliance within a digital assets or financial services environment. This is a highly specialized individual contributor role, ideal for professionals with deep hands-on experience working directly with ADGM and DFSA, and a strong background in regulatory frameworks for financial institutions or virtual asset service providers.

Key Responsibilities:

• Develop and implement an effective IT governance and information security risk management framework aligned with UAE regulatory requirements and international best practices.
• Act as the key liaison with regulatory authorities, ensuring all governance and security obligations are met and any recommendations are implemented in full.
• Maintain robust security governance practices including reporting structures for board and committee-level oversight.
• Drive regulatory readiness and compliance for audits, inspections, and external reviews, particularly in alignment with ADGM and DFSA standards.
• Lead the implementation and ongoing improvement of policies, standards, and controls across cyber risk, data protection, and vendor risk.
• Oversee the governance of third-party integrations and ensure compliance with contractual SLAs and internal security standards.
• Support and influence technology teams to align with risk-based governance strategies, acting as the subject matter expert on cybersecurity and regulatory compliance.
• Contribute to internal investigations, incident response processes, and regulatory breach reporting as required.
• Ensure proactive alignment with evolving regulations related to virtual assets and financial markets in the UAE.

Requirements:

• Must be currently based in Dubai or Abu Dhabi with a full understanding of the UAE regulatory landscape.
• Extensive experience (10+ years) in IT governance, cybersecurity, or information risk management within financial services or digital assets.
• Direct and hands-on experience engaging with ADGM and DFSA is essential.
• Demonstrated track record in implementing and managing governance frameworks in regulated entities.
• Experience working independently in high-impact roles, with the ability to influence senior stakeholders and regulatory bodies.
• Deep understanding of international standards such as ISO 27001, NIST, CIS, and PCI-DSS.
• Professional certifications such as CISSP, CISM, ISO 27001 Lead Auditor, or similar are preferred.
• Exceptional communication skills, with the ability to translate complex security risks into clear business language.
• Bilingual in English/Arabic is an advantage but not essential.

About Edison Smart

Edison Smart is a global provider of specialized recruitment solutions, supporting the technology industry's most innovative companies. Headquartered in the UK, we connect talent with opportunity, driving the 'Industry 4.0' revolution. With over 30 years of experience, Edison Smart partners with forward-thinking organizations to help achieve their strategic growth goals while fostering groundbreaking technological advancements.