78 Cissp jobs in Dubai

We are seeking a highly skilled Security Engineer with extensive experience in deploying and migrating Microsoft Defender solutions, including Microsoft Defender for Endpoint (MDE), Microsoft Defender for Cloud (MDC), and Microsoft Defender for Identity (MDI). The successful candidate will lead the deployment and migration efforts, ensuring robust security postures and seamless transitions for our clients. This role involves working closely with clients to understand their security needs and providing ongoing support and optimization.

• Plan, design, and implement Microsoft Defender solutions (MDE, MDC, and MDI) for clients.
• Manage the end-to-end migration process from existing security solutions to Microsoft Defender suite.
• Ensure seamless integration and minimal disruption during the migration process.
• Integrate MDE, MDC, and MDI with existing client infrastructure and other security tools.
• Customize and configure each Defender solution to meet specific client security policies and requirements.
• Optimize security features and settings to enhance threat detection and response capabilities.
• Provide expert-level support during and after the migration phase.
• Troubleshoot and resolve issues related to MDE, MDC, and MDI deployments.
• Liaise with Microsoft support and other vendors as necessary to resolve complex issues.

Any Bachelor's degree in Computer Science, IT, Cybersecurity, or equivalent experience.

5+ years of experience as a Security Engineer.

Proficiency in MDI, MDC, MDE.

Excellent analytical and communication skills.

Netsentries FZCO is seeking a Security Engineer with expertise in CI/CD Security (DevSecOps). This role is integral in ensuring the security and integrity of our CI/CD Platform, particularly focusing on DevSecOps and Kubernetes security. A significant aspect of the role involves conducting security assessments, recommending designs and enhancements, troubleshooting.

Key Responsibilities:

• Conduct security assessments and audits within CI/CD pipelines. Familiarity with tools such as Jenkins, ArgoCD and GitHub Actions
• Review and enhance security measures for Kubernetes and container deployments.
• Implement and review security practices in cloud-native environments, knowledge about service mesh architectures, API gateways and the CNCF landscape into DevOps processes.
• Oversee security aspects of orchestration platforms like OpenShift.
• Collaborate with various development teams to bring continuous improvement in DevSecOps processes and tools.
• Develop and maintain security documentation and guidelines for CI/CD pipeline tools and processes.
• Relevant certifications (e.g., Certified DevSecOps Professional (CDP)) are a plus.
• Work Closely with engineering teams to ensure security while architecting and building new systems.

Qualifications:

• Strong background in CI/CD and container technologies.
• Proven experience in securing Kubernetes and containerized environments.
• Proficiency in at least one scripting language: Python, Bash, NodeJS
• Familiarity with OpenShift, ArgoCD, GitHub Actions, Istio, and DevSecOps methodologies.
• In-depth knowledge of containers, Kubernetes, docker, API Gateway, Jenkins
• Ability to design and implement robust security protocols and measures.
• Understanding of network segmentation, Network Policies, Egress policies etc.
• Strong analytical and problem-solving skills.

Soft skills:

• Ability to collaborate with multiple stakeholders and manage their expectations from a security perspective.
• Holistic thinking; must balance security and functionality using practical demonstrable examples. Must also contribute to and implement "good architecture principles" to lower technical debt.
• Assertive personality; should be able to hold her/his own in a project board or work group setting.
• Superlative written and verbal communication skills; should be able to explain technical observations in an easy-to-understand manner.
• Can work independently and self-motivated.

Preferred Certifications:

• Certified DevSecOps Professional (CDP)
• Certified Kubernetes Security Specialist (CKS)
• Any other equivalent certification for DevSecOps

Bayut & dubizzle are iconic, homegrown brands with a strong presence across the seven emirates in the UAE. Connecting millions of users, we aim to deliver the best online search experience.

As part of Dubizzle Group, we are among the market's strongest classified brands, with over 123 million monthly users trusting our platform.

As an Application Security Engineer, you will:

• Collaborate with internal teams to implement security controls, address vulnerabilities, and improve security practices across platforms & services.
• Conduct penetration testing on web applications, mobile applications, APIs, networks, and systems, coordinating with external partners as needed.
• Identify, document, and process vulnerabilities, threats, and risks according to our risk management policies.
• Participate in security incident resolution and help develop, maintain, and evaluate the Incident Response Plan.
• Monitor internal alerting systems and ensure timely resolution of security events.
• Participate in audits, including user access reviews, and ensure remediation of findings within agreed timelines.
• Enhance security awareness within technical teams through educational materials and campaigns.
• Review and update internal security policies and controls regularly.

Minimum qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 2+ years in application development.
• 3-5 years of experience in information security or similar roles.
• Proven experience as a Security Analyst, Engineer, Penetration Tester, or similar.
• Experience with security frameworks like ISO 27001, NIST, and Data Protection.
• Understanding of securing corporate environments and applications.
• Knowledge of hosting platforms, cloud services, and enterprise networking.
• Technical understanding of backend architectures.
• Familiarity with secure coding practices and vulnerability management frameworks (OWASP).
• Strong knowledge of identity and access management practices.
• Experience with security technologies such as firewalls, IDS/IPS, vulnerability scanning tools.
• Proficiency in programming languages like Python or C++.
• Understanding of network protocols and encryption algorithms.
• Knowledge of compliance standards like PCI DSS, GDPR.
• Excellent communication skills and analytical problem-solving abilities.
• Willingness to stay updated with emerging threats and technologies.

Benefits:

• Fast-paced, high-performing team environment.
• Multicultural workplace with over 50 nationalities.
• Competitive tax-free salary and comprehensive health insurance.
• Annual air ticket allowance and employee discounts.
• Recognition programs and learning opportunities.

Bayut & dubizzle are equal opportunity employers, committed to diversity and inclusion.

#dubizzlegroup

Netsentries FZCO is seeking a Security Engineer with expertise in CI/CD Security (DevSecOps). This role is integral in ensuring the security and integrity of our CI/CD Platform, particularly focusing on DevSecOps and Kubernetes security. A significant aspect of the role involves conducting security assessments, recommending designs and enhancements, troubleshooting.

Key Responsibilities:

• Conduct security assessments and audits within CI/CD pipelines. Familiarity with tools such as Jenkins, ArgoCD and GitHub Actions
• Review and enhance security measures for Kubernetes and container deployments.
• Implement and review security practices in cloud-native environments, knowledge about service mesh architectures, API gateways and the CNCF landscape into DevOps processes.
• Oversee security aspects of orchestration platforms like OpenShift.
• Collaborate with various development teams to bring continuous improvement in DevSecOps processes and tools.
• Develop and maintain security documentation and guidelines for CI/CD pipeline tools and processes.
• Relevant certifications (e.g., Certified DevSecOps Professional (CDP)) are a plus.
• Work Closely with engineering teams to ensure security while architecting and building new systems.

Qualifications:

• Strong background in CI/CD and container technologies.
• Proven experience in securing Kubernetes and containerized environments.
• Proficiency in at least one scripting language: Python, Bash, NodeJS
• Familiarity with OpenShift, ArgoCD, GitHub Actions, Istio, and DevSecOps methodologies.
• In-depth knowledge of containers, Kubernetes, docker, API Gateway, Jenkins
• Ability to design and implement robust security protocols and measures.
• Understanding of network segmentation, Network Policies, Egress policies etc.
• Strong analytical and problem-solving skills.

Soft skills:

• Ability to collaborate with multiple stakeholders and manage their expectations from a security perspective.
• Holistic thinking; must balance security and functionality using practical demonstrable examples. Must also contribute to and implement “good architecture principles” to lower technical debt.
• Assertive personality; should be able to hold her/his own in a project board or work group setting.
• Superlative written and verbal communication skills; should be able to explain technical observations in an easy-to-understand manner.
• Can work independently and self-motivated.

Preferred Certifications:

• Certified DevSecOps Professional (CDP)
• Certified Kubernetes Security Specialist (CKS)
• Any other equivalent certification for DevSecOps

Bayut & dubizzle have the unique distinction of being iconic, homegrown brands with a strong presence across the seven emirates in the UAE. Connecting millions of users across the country, we are committed to delivering the best online search experience.

As part of Dubizzle Group, we are alongside some of the strongest classified brands in the market. With a collective strength of 6 brands, we have more than 123 million monthly users that trust in our dedication to providing them with the best platform for their needs.

As an Application Security Engineer, you will work closely with the Head of Group IT and with the other relevant stakeholders from the IT and development teams to ensure that security is a core component of our systems and practices. You will be responsible for helping define, implement, and audit the effectiveness of our security controls and providing actionable recommendations to mitigate risks across a broad range of applications and services.

In this role you will:

• Collaborate with internal teams to implement security controls, address vulnerabilities and improvesecurity practices in the relevant platforms & services.
• Conduct penetration testing on web applications, mobile applications, APIs, networks, and system and coordinate the pen-testing projects executed by external partners.
• Ensure identified vulnerabilities, threats and risks are captured and processed in line with our risk management policy and procedure.
• Take part in security incident resolution and contribute to the development, maintenance and assessment of the Incident Response Plan’s effectiveness.
• Monitor the internal alerting systems and drive the events to closure.
• Participate in regular internal and external audits (including periodic user access reviews) on critical systems and ensure audit findings are remediated in the agreed timeframe.
• Reduce the information security knowledge gap within the technical teams by contributing to the creation of educational materials and awareness campaigns.
• Implement and regularly review the internal security policies and controls across all business-critical services.

• Bachelor’s degree in computer science, Information Security, or a related field.
• Minimum of 2 years in application development role
• 3-5 years of experience in information security or a related role.
• Proven experience as a Security Analyst, Security Engineer, Penetration Tester or
• similar role.
• Experience with the current Security frameworks such as ISO 27001, NIST and Data Protection.
• Good understanding of how to secure corporate environments and business applications.
• Solid understanding of hosting platforms, public cloud services and enterprise networking.
• Technical understanding of backend engineering architectures.
• Familiarity with secure coding practices and vulnerability management frameworks (OWASP);
• Strong knowledge of secure identity and access management practices.
• Strong knowledge of security technologies, including firewalls, IDS/IPS, and open-source vulnerability scanning tools.
• Proficiency in programming languages commonly used in security, such as Python or C++;
• Familiarity with network protocols and encryption algorithms.
• Understanding of regulatory frameworks and compliance standards (e.g., PCI DSS,GDPR).
• Able to define and select solutions for the cybersecurity space and monitor their effectiveness.
• Good communication skills, both written and verbal, with the ability to drive alignment with technical and business stakeholders.
• Strong analytical and problem-solving skills.
• Continuous learning mindset to stay on top of emerging threats and technologies, with a willingness to apply processes unique to the challenges at Dubizzle Group;
• Disciplined and logical thinker with the ability to draw conclusions from large data sets.

• A fast paced, high performing team.
• Multicultural environment with over 50 different nationalities
• Competitive Tax-free Salary
• Comprehensive Health Insurance
• Annual Air Ticket Allowance
• Employee discounts at multiple vendors across the emirates
• Rewards & Recognitions
• Learning & Development
  

Bayut & dubizzle is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

#dubizzlegroup

Location: Remote, with the ability to overlap hours with CET, UAE, and USA.

About Flare:

Flare is a Layer 1 blockchain focused on delivering decentralized data access, making it easier for applications to integrate high-quality, real-world data. We're building an ecosystem where innovation thrives, enabling developers, partners, and investors to unlock the full potential of Web3.

Reports to: CTO

Flare is seeking a Security Engineer to fortify our smart contracts and blockchain protocols against emerging threats. In this role, you'll lead security audits, develop automated scanning tools, and conduct real-time vulnerability assessments to safeguard our ecosystem. You'll refine security frameworks and implement best practices to mitigate risks proactively. If you're proficient in Solidity, EVM, and languages like Go, Python, or TypeScript and have experience auditing complex smart contract systems, we want to hear from you.

Responsibilities

• Conduct security audits and reviews on smart contracts and related protocols. Summarise findings in high-quality audit reports.
• Design automated scanning and monitoring tools for smart contracts.
• Utilise scanning tools to detect vulnerabilities in online contracts and promptly issue risk warnings.
• Develop and monitor fast response processes.
• Conduct root cause analysis on various hacking incidents, examining the causes, processes, prevention, correction and basic fund tracing.
• Demonstrate a good understanding of EVM chains and be familiar with DeFi design patterns.
• Perform a review analysis on newly disclosed vulnerabilities for smart contracts and summarise the root cause behind the exploits for early detection in the future.
• Develop on-chain security strategies and perform security assessments and threat modelling of various blockchain protocols.
• Provide expert technical guidance to the team in building new frameworks, analysis tools, and security products.
• Lead the way in establishing best practices and engaging with product and engineering teams to get them adopted.
• Coach and mentor Protocol Security team members to build new skills and be crypto-forward.
• Conduct penetration testing

Requirements

• Bachelor's degree (or higher) in Computer Science or a related field.
• Proficient in Solidity and EVM
• Proficient in either one of the programming languages: GO, Python, Typescript
• Basic understanding of common Smart Contract security vulnerabilities, current incidents and simulation testing.
• Basic understanding of blockchain and smart contract principles, experienced with reading Blockchain explorers and creating scripts to track and scan data.
• Understanding of different types of solidity libraries and security associated with it.
• Familiar with smart contract development testing cycle and transaction analysis.
• Excel in identifying machine-level, transaction-level, and business logic-level vulnerabilities in smart contracts and protocol infrastructure.
• 3+ years of smart contract auditing experience and have led the audit of several complex protocols.

We're hiring a Red Team Cybersecurity Specialist to lead our offensive security operations and proactively identify weaknesses before real attackers do. You'll simulate advanced persistent threats (APTs), exploit vulnerabilities, and think like an adversary to rigorously test our systems, people, and infrastructure. This is a high-impact role for someone who thrives in red teaming, ethical hacking, and penetration testing, and wants to build a best-in-class offensive security function in a fast-moving fintech environment.

What You'll Do

• Design and execute red team engagements simulating real-world threat actors.
• Conduct full-scope internal and external penetration tests.
• Perform social engineering assessments (phishing, vishing, physical intrusion).
• Identify vulnerabilities, develop custom exploits, and escalate privileges.
• Map attack surfaces using tools like BloodHound, SharpHound, and AD recon.
• Conduct malware development, payload obfuscation, and bypass EDR/XDR tools.
• Utilize C2 frameworks like Cobalt Strike, Sliver, Mythic, or Empire.
• Generate actionable reports for blue team with clear risk analysis and remediation.
• Collaborate with threat intel and blue team to enhance detection and response.
• Stay ahead of adversary TTPs using MITRE ATT&CK and emerging threat data.

What You Bring

• Bachelor's degree in Cybersecurity, Information Security, or related field.
• 4+ years of hands-on offensive security/red team experience.
• Strong command of Metasploit, Cobalt Strike, Burp Suite, Nmap, and manual testing.
• Experience with custom script development in Python, Bash, or PowerShell.
• Deep understanding of AD exploitation, lateral movement, and privilege escalation.
• Familiar with frameworks like MITRE ATT&CK, NIST, and OWASP.
• Ability to write detailed reports and communicate technical findings to non-technical stakeholders.

Preferred Certifications

• OSCP (required)
• CRTP, OSCE, GPEN, or OSEP
• CEH or other ethical hacking certifications (nice to have)

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at

28th Floor, One by Omniyat Building, Business Bay Dubai | U.A.E., PO Box - 124805, Dubai, United Arab Emirates (UAE)

Seeking a Senior Android Developer to enhance app security, optimize performance, and work with cybersecurity experts. 5+ years experience in Android, Java, Kotlin, C/C++, with a focus on security and optimization.

We are seeking a highly skilled Senior Android Developer with deep expertise in building and maintaining secure mobile applications. Your primary role will be to enhance the security, performance, and reliability of our mobile application shield, ensuring it is robust enough to prevent potential vulnerabilities such as memory corruption, race conditions, and other critical issues. As a key contributor to our security team, you will be involved in refining codebases in Java, Kotlin, and C/C++ , with a strong focus on Android internals, native code integration, and performance optimization. You will also have the opportunity to work closely with our cybersecurity experts to develop advanced defense mechanisms, ensuring that our shield is resilient to modern mobile attacks.

1. Analyze and optimize existing Android codebases to prevent memory corruption, race conditions, and security vulnerabilities.
2. Build and maintain robust shields for mobile applications, with a focus on low-level Android development and native code (C/C++).
3. Collaborate with the security team to implement cutting-edge security features and defense mechanisms against mobile threats.
4. Debug and analyze complex crashes, particularly those involving memory issues, threading, and Android kernel interactions.
5. Review and optimize native Android components (JNI, NDK) for performance, security, and stability.
6. Ensure that the Android shield is resistant to reverse engineering, hooking, and injection attacks.
7. Develop and maintain Android SDKs, ensuring seamless integration with hybrid runtimes and third-party apps.
8. Stay updated with the latest in Android security research and contribute to improving the mobile application's resilience against emerging threats.

1. 5+ years of experience in mobile application development with a strong focus on Android internals and security.
2. In-depth knowledge of Android kernel, low-level Android development, and hybrid application runtimes.
3. Proven experience in C and C++ development, especially in memory management and concurrent programming.
4. Experience with Android NDK (Native Development Kit), JNI, and the ability to write and debug native code.
5. Expertise in identifying and resolving memory corruption, race conditions, and other performance bottlenecks in Android apps.
6. Hands-on experience with security vulnerabilities (such as buffer overflows, code injection) and defense techniques (anti-debugging, encryption).
7. Experience building, maintaining, and distributing SDKs for Android platforms.
8. Deep understanding of mobile application attacks (e.g., Frida, hooking, root detection) and the ability to implement effective countermeasures.

Competitive salary and benefits package.
Fully remote work option with flexible work hours.
Possibility of relocation to Dubai.
Opportunity to work on a massive scale, protecting millions of users worldwide and facing unique, large-scale security challenges.
Cutting-edge security technology in a dynamic and innovative environment.
Access to groundbreaking security research as part of a research-driven company, where your work contributes to solving some of the most critical security issues in mobile technology.
Room for professional growth and career development in a company that values continuous learning and innovation.
Supportive work environment focused on collaboration, innovation, and pushing the boundaries of mobile security.

We are seeking a highly skilled Senior Android Developer with deep expertise in building and maintaining secure mobile applications. Your primary role will be to enhance the security, performance, and reliability of our mobile application shield, ensuring it is robust enough to prevent potential vulnerabilities such as memory corruption, race conditions, and other critical issues.

As a key contributor to our security team, you will be involved in refining codebases in Java, Kotlin, and C/C++, with a strong focus on Android internals, native code integration, and performance optimization. You will also have the opportunity to work closely with our cybersecurity experts to develop advanced defense mechanisms, ensuring that our shield is resilient to modern mobile attacks.

1. Analyze and optimize existing Android codebases to prevent memory corruption, race conditions, and security vulnerabilities.
2. Build and maintain robust shields for mobile applications, with a focus on low-level Android development and native code (C/C++).
3. Collaborate with the security team to implement cutting-edge security features and defense mechanisms against mobile threats.
4. Debug and analyze complex crashes, particularly those involving memory issues, threading, and Android kernel interactions.
5. Review and optimize native Android components (JNI, NDK) for performance, security, and stability.
6. Ensure that the Android shield is resistant to reverse engineering, hooking, and injection attacks.
7. Develop and maintain Android SDKs, ensuring seamless integration with hybrid runtimes and third-party apps.
8. Stay updated with the latest in Android security research and contribute to improving the mobile application's resilience against emerging threats.

1. 5+ years of experience in mobile application development with a strong focus on Android internals and security.
2. In-depth knowledge of Android kernel, low-level Android development, and hybrid application runtimes.
3. Proven experience in C and C++ development, especially in memory management and concurrent programming.
4. Experience with Android NDK (Native Development Kit), JNI, and the ability to write and debug native code.
5. Expertise in identifying and resolving memory corruption, race conditions, and other performance bottlenecks in Android apps.
6. Hands-on experience with security vulnerabilities (such as buffer overflows, code injection) and defense techniques (anti-debugging, encryption).
7. Experience building, maintaining, and distributing SDKs for Android platforms.
8. Deep understanding of mobile application attacks (e.g., Frida, hooking, root detection) and the ability to implement effective countermeasures.

Competitive salary and benefits package. Fully remote work option with flexible work hours. Possibility of relocation to Dubai. Opportunity to work on a massive scale, protecting millions of users worldwide and facing unique, large-scale security challenges. Cutting-edge security technology in a dynamic and innovative environment. Access to groundbreaking security research as part of a research-driven company, where your work contributes to solving some of the most critical security issues in mobile technology. Room for professional growth and career development in a company that values continuous learning and innovation. Supportive work environment focused on collaboration, innovation, and pushing the boundaries of mobile security.