-
emaratech
View all jobs
Information Security Risk & Compliance Manager
United Arab Emirates
· Full-time
·
Mid-Senior
Role Overview
The Information Security Risk and Compliance (Governance, Risk, and Compliance) Manager implements and maintains frameworks to manage security risks, ensure regulatory compliance, and enforce security policies. He / She is responsible to:
Key Responsibilities
Governance, Policy & ISMS
The Information Security Risk and Compliance (Governance, Risk, and Compliance) Manager implements and maintains frameworks to manage security risks, ensure regulatory compliance, and enforce security policies. He / She is responsible to:
- oversee audits, manage third-party risks, and report to senior management on the security posture
- ensuring the effective implementation and continuous improvement of the Information Security Management System (ISMS), PCI DSS compliance, and UAE Central Bank (CBUAE) regulatory requirements
Key Responsibilities
Governance, Policy & ISMS
- Responsible for overseeing the execution of the GRC program in collaboration with the executive team as well as maintaining the group's library of security controls
- Lead the implementation, maintenance, and continuous improvement of the Group ISMS aligned with ISO/IEC 27001 standards
- Develop, update, implement, and maintain information security policies, standards, and procedures
- Ensure consistent implementation of information security governance across the group
- Develop goals for data privacy based on legal regulations and other compliance needs, designs and implement privacy policies and practices, and assess these practices for effectiveness
- Update security controls and provide support to all stakeholders on security controls covering internal assessments, laws, and regulations
- Manage the organization's PCI DSS compliance program, including scope definition, risk assessments, and coordination with Qualified Security Assessors (QSAs)
- Track remediation activities and ensure continuous compliance with PCI DSS requirements
- Ensure compliance with UAE Central Bank (CBUAE) information security and risk management regulations
- Monitor regulatory updates and assess their impact on the organization
- Identify, assess, evaluate, and mitigate IT Security risks by conducting information security risk assessments and maintain centralized risk registers
- Track risk mitigation actions and report the security risk posture to management
- Ensure compliance with legal, regulatory, and contractual requirements
- Coordinate internal audits, external certification audits, and regulatory assessments (ISO 27001, ISO 27005, NIST, PCI DSS, etc.)
- Track audit findings and ensure timely remediation and closure
- Oversee organization-wide security awareness and compliance training programs
- Bachelor's degree in:
- Engineering
- Information Security
- Computer Science
- IT Risk Management or a related discipline
- 8-12 years of experience in Cybersecurity, Information Security Governance, Risk Management and Compliance Audit
- Deep understanding of frameworks like ISO 27001, PCI-DSS, DESC ISR, etc
- CISSP
- CISM
- CISA
- CRISC
- ISO 27001 Lead Implementer / Lead Auditor
Key Skills
Ranked by relevance
dss
pci dss
cybersecurity
nist
isr
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Software Sales Assistant
2026-04-07
Full-time
Entry
United Arab Emirates
IT Services
Other
View Job Details
Related
Chief Data Officer - CDI
2026-04-11
Full-time
Not Applicable
Luxembourg
IT Services
Other
View Job Details
Related
WD_User Experience / User Interaction
2026-04-11
Full-time
Not Applicable
India
IT Services
Other
Login to Apply
- Posted
- Apr 09, 2026
- Type
- Full-time
- Level
- Mid-Senior
- Location
- Dubai
- Company
- emaratech
Industries
IT Services
IT Consulting
Categories
Other
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Software Sales Assistant
2026-04-07
Full-time
Entry
United Arab Emirates
IT Services
Other
View Job Details
Related
Chief Data Officer - CDI
2026-04-11
Full-time
Not Applicable
Luxembourg
IT Services
Other
View Job Details
Related
WD_User Experience / User Interaction
2026-04-11
Full-time
Not Applicable
India
IT Services
Other