Information Security Risk & Compliance Manager
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
The Information Security Risk and Compliance (Governance, Risk, and Compliance) Manager implements and maintains frameworks to manage security risks, ensure regulatory compliance, and enforce security policies.
Key Skills for This Role
Full Job Posting
Role Overview
- The Information Security Risk and Compliance (Governance, Risk, and Compliance) Manager implements and maintains frameworks to manage security risks, ensure regulatory compliance, and enforce security policies.
- He / She is responsible to:
- oversee audits, manage third-party risks, and report to senior management on the security posture.
- ensuring the effective implementation and continuous improvement of the Information Security Management System (ISMS), PCI DSS compliance, and UAE Central Bank (CBUAE) regulatory requirements.
- The role is responsible for strengthening security governance, managing enterprise security risks, maintaining regulatory compliance, and supporting executive oversight of cybersecurity programs across all group entities.
Governance, Policy & ISMS
- Responsible for overseeing the execution of the GRC program in collaboration with the executive team as well as maintaining the group’s library of security controls.
- Lead the implementation, maintenance, and continuous improvement of the Group ISMS aligned with ISO/IEC 27001 standards.
- Develop, update, implement, and maintain information security policies, standards, and procedures.
- Ensure consistent implementation of information security governance across the group.
- Develop goals for data privacy based on legal regulations and other compliance needs, designs and implement privacy policies and practices, and assess these practices for effectiveness.
- Update security controls and provide support to all stakeholders on security controls covering internal assessments, laws, and regulations.
Pci Dss Compliance
- Manage the organization’s PCI DSS compliance program, including scope definition, risk assessments, and coordination with Qualified Security Assessors (QSAs).
- Track remediation activities and ensure continuous compliance with PCI DSS requirements.
Cbuae Regulatory Compliance
- Ensure compliance with UAE Central Bank (CBUAE) information security and risk management regulations.
- Monitor regulatory updates and assess their impact on the organization.
Risk Management
- Identify, assess, evaluate, and mitigate IT Security risks by conducting information security risk assessments and maintain centralized risk registers.
- Track risk mitigation actions and report the security risk posture to management.
Audit & Compliance Management
- Ensure compliance with legal, regulatory, and contractual requirements.
- Coordinate internal audits, external certification audits, and regulatory assessments (ISO 27001, ISO 27005, NIST, PCI DSS, etc.).
- Track audit findings and ensure timely remediation and closure.
Security Awareness & Training
- Oversee organization-wide security awareness and compliance training programs.
- **Requirements*** Bachelor’s degree in:
- o Engineering
- o Information Security
- o Computer Science
- o IT Risk Management or a related discipline.
Experience & Skills
- 8–12 years of experience in Cybersecurity, Information Security Governance, Risk Management and Compliance Audit.
- Deep understanding of frameworks like ISO 27001, PCI-DSS, DESC ISR, etc.
Preferred Certifications
- CISSP
- CISM
- CISA
- CRISC
- ISO 27001 Lead Implementer / Lead Auditor
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at emaratech
Senior UX Designer
Dubai, UAE
We are looking for a Senior UX Designer . The ideal candidate will be responsible for creating intuitive, engaging, and accessible digital experiences while collaborating closely with product managers, developers, and ot
Senior UX Designer
Dubai, UAE
We are looking for a Senior UX Designer. The ideal candidate will be responsible for creating intuitive, engaging, and accessible digital experiences while collaborating closely with product managers, developers, and oth
Senior Product Owner (Arabic Speakers)
Dubai, UAE
Emaratech is a technology and consulting group delivering digital platforms, product engineering, systems integration, and managed services for government and enterprise clients. Working across areas such as smart govern
Senior Product Owner (Arabic Speakers)
, UAE
Emaratech is a technology and consulting group delivering digital platforms, product engineering, systems integration, and managed services for government and enterprise clients. Working across areas such as smart govern
Performance Testing Engineer (DevOps)
Dubai, UAE
We are looking for a highly technical Performance Test Engineer to bridge the gap between development and operations. In this role, you will champion performance as a continuous process, embedding testing seamlessly into
Performance Testing Engineer (DevOps)
Dubai, UAE
We are looking for a highly technical Performance Test Engineer to bridge the gap between development and operations. In this role, you will champion performance as a continuous process, embedding testing seamlessly into
Senior Product Owner (Arabic Speakers)
Dubai, UAE
Responsibilities: The Product Owner is responsible for focusing the vision of a product and managing the execution of that vision through their entire life cycle. Work closely with the technical team to develop and main
Automation Testing Engineer
Dubai, UAE
Job Summary We are looking for a Quality Engineer with solid hands-on experience across manual, automation, mobile, and API testing. You'll play a key role in ensuring the quality and reliability of our web and mobile pr
Senior UX Designer
Dubai, UAE
Senior UX Designer
Dubai, UAE
Senior Product Owner (Arabic Speakers)
Dubai, UAE
Senior Product Owner (Arabic Speakers)
, UAE
Performance Testing Engineer (DevOps)
Dubai, UAE
Performance Testing Engineer (DevOps)
Dubai, UAE
Senior Product Owner (Arabic Speakers)
Dubai, UAE
Automation Testing Engineer
Dubai, UAE