Principal Security Consultant (Risk & Resillience)

Overview

Job Purpose

• Senior technical and client-facing role based at AESG’s Dubai headquarters, leading security risk, resilience, threat and vulnerability assessment, security strategy and built environment security consultancy services across the UAE, KSA and wider international markets.
• Translate complex security risks into clear, proportionate and practical mitigation strategies for clients, designers, operators and project stakeholders.

Qualifications & Experience

• Bachelor’s or Master’s degree in security, risk management, resilience, engineering, architecture, built environment, criminology, emergency management, safety, security management or a related discipline.
• Professional membership, or progression towards membership, of a recognised body such as the Security Institute, ASIS International, Register of Security Engineers and Specialists, Institute of Strategic Risk Management, Business Continuity Institute or Institution of Civil Engineers.
• Desirable certifications include CSyP, CPP, PSP, CBCI, CMIRM, ISO 31000, ISO 22301, CPTED, SABRE, HCIS, SIRA or equivalent credentials.
• Minimum 10+ years’ relevant professional experience in security risk consulting, resilience advisory, protective security, built environment security, critical infrastructure security or security management.
• Microsoft Project or equivalent project planning tools.
• Bluebeam Revu and Adobe Acrobat for design review, mark-up and document coordination.
• AutoCAD, Revit, Navisworks, Autodesk Construction Cloud / BIM 360 or equivalent platforms for multidisciplinary design review and coordination.
• Google Earth, GIS mapping tools, risk registers, matrix-based risk assessment models and comparative risk assessment tools.
• CRM, proposal, project management and workflow platforms as required by AESG and project-specific delivery processes.

Skills / Expertise Critical To Business Objectives

• Security threat, vulnerability and risk assessment; resilience advisory; risk appetite, residual risk and risk treatment planning.
• Built environment security strategy, security masterplanning, Operational Requirements, protective security design integration and critical asset protection.
• Public realm and hostile vehicle mitigation advisory, security zoning, access strategy, screening strategy and operational security planning.
• Stakeholder engagement, workshop facilitation, technical report writing, proposal support, client relationship management and mentoring.

Role And Responsibilities

• Lead security threat, vulnerability and risk assessments for built environment, infrastructure and critical asset projects.
• Analyse credible threat information from client intelligence, stakeholder interviews, site observations, open-source research and regional security advisories.
• Assess asset criticality, single points of failure, operational dependencies, business impacts, resilience requirements and residual risk.
• Prepare security strategies, security masterplans, security needs assessments, operational requirements, risk treatment plans and implementation roadmaps.
• Develop proportionate physical, operational, procedural and technical recommendations aligned with client risk appetite and project context.
• Support security zoning, access control, public realm, hostile vehicle mitigation, screening, surveillance, control room and resilience strategies.
• Initiate Level 1 Operational Requirements and coordinate Level 2 Operational Requirements with specialist security engineering input.
• Coordinate security inputs with architects, masterplanners, engineers, landscape architects, cost consultants, project managers and client representatives.
• Lead client meetings, risk workshops, stakeholder interviews, design coordination sessions and project presentations.
• Prepare and review professional reports, technical notes, risk registers, presentations and security advisory deliverables.
• Manage project scope, programme, deliverables, budgets, internal resources, quality requirements and client expectations.
• Identify scope gaps, commercial risks, change control matters, project constraints and programme risks, escalating appropriately where required.
• Support bid preparation, proposal development, technical methodologies, fee submissions, tender clarifications and client presentations.
• Provide technical guidance, mentoring and quality review support to consultants, graduate consultants, coordinators and technical team members.

Essential Skills

• Security Risk / Resilience Advisory - Strong capability in threat, vulnerability and risk assessment, resilience advisory, risk treatment planning and proportionate mitigation selection.
• Communication / Collaboration - Excellent writing, presentation and stakeholder engagement skills, with the ability to explain complex security risks to technical and non-technical audiences.
• Project and Commercial Management - Ability to manage multiple projects or workstreams with limited supervision, including programme, fee, scope, resources and client expectations.
• Technical Quality / Leadership - Able to quality assure reports, drawings, specifications, risk registers and strategy documents, while mentoring junior team members.

Preferred Industry And Experience

• Experience in security risk consulting, resilience advisory, protective security, security management or critical infrastructure security.
• Experience across major real estate, mixed-use, hospitality, commercial, banking, government, defence, public realm, transport or infrastructure projects.
• Middle East project experience, particularly in the UAE and KSA, is highly desirable.
• Experience within international consultancy, engineering, architecture, risk advisory or multidisciplinary design environments.

Professional Commitment

• Maintain structured CPD and remain informed on emerging threats, technologies, standards, regional regulatory expectations and industry best practice.
• Uphold AESG core values, professional ethics, confidentiality, collaboration, client-centricity, adaptability and continuous improvement.