10 Data Protection jobs in the United Arab Emirates

Our client is a well-established financial services organisation in Jeddah.

The Senior Manager - Information Security will:

• Support the CISO in developing and executing the information security strategy and roadmap
• Contribute to long term planning and act as a key advisor on technical risks
• Serve as acting CISO as and when required
• Evaluate and recommend security technologies, tools and methodology ensure the organisation complies with SAMA cybersecurity framework and NCA
• Lead technical input for audits and regularities reviews
• Oversee security monitoring, threat and vulnerability management activities
• Lead incident response efforts
• Collaborate with IT, compliance, audit and other business unit
• Report Information Security KPIs and metrics to executive management
• Represent the Information Security function internally and externally as require

The Senior Manager - Information Security will be/have:

• A Bachelor's or Master's degree in Information Technology, Computer Science or other relevant fields of study
• 6+ years of experience in Information Security, ideally within the Banking/Financial Services sector
• Expertise in information security architecture and engineering
• Strong understanding of Information Security frameworks such as ISO2700
• Relevant certifications such as CISSP, CISM, CCISO, etc. would be preferred
• Excellent knowledge of Saudi regulatory requirements (SAMA, NCA, etc.)
• Track record in designing secure systems and leading cyber security initiatives
• Strong project management skills

Overview

The Information Security - Specialist will report directly to the Information Security Manager and will be responsible for implementing and managing security measures to protect the Bank's information assets. This role focuses on proactive threat detection, incident response, and vulnerability management across all technology domains, including endpoints and cloud environments. In collaboration with IS management, the Specialist will identify gaps in existing information security policies, standards, guidelines, and procedures, recommending updates to ensure alignment with regulatory requirements, industry best practices, and leading security standards.

JOB CONTEXT/ DIMENSIONS The IS Specialist will be responsible for overseeing security technologies like Cloud Security, DLP, Kubernetes, API security, SIEM and EDR, and ensuring compliance with standards and policies. Responsibilities include managing incident response, performing risk assessments, and optimizing security tools across cloud and network environments. The position requires collaboration with internal teams and external stakeholders to enhance security posture and mitigate threats.

• Assist in developing and implementing the information security strategy and roadmap across all security technology domains.
• Research and analyze security standards, systems, and authentication protocols, providing recommendations to IS management.
• Review architectural security designs, Data flow and offer recommendations for approval by IS management.
• Enforce security policies and control across cloud environments to ensure a secure infrastructure.
• Manage and optimize CSPM tools to continuously monitor and enforce security best practices within cloud environments like Azure.
• Lead cloud incident response efforts, investigating and addressing threats in real-time to mitigate potential security risk.
• Lead the ongoing management of DLP technologies to protect sensitive data from unauthorized access and leakage.
• Regularly review and update DLP policies to reflect changes in business needs, technologies, and regulatory requirements.
• Identify and assess security risks in APIs and Kubernetes by evaluating access control, misconfigurations, and vulnerabilities.
• Enforce security policies and controls for APIs and Kubernetes.
• Oversee the management, optimization, and tuning of the SIEM platform to ensure effective security incident monitoring.
• Conduct deep-dive investigations into security alerts and collaborate with teams to resolve incidents efficiently.
• Conduct regular security audits and reviews to ensure compliance with internal policies and industry standards.
• Manage the deployment and operational effectiveness of EDR solutions to monitor, detect, and respond to endpoint threats.
• Lead incident response for security breaches, including investigation, containment, eradication, and recovery.
• Provide post-incident analysis, identify lessons learned, and improve future response strategies.
• Monitor the bank’s networks for security breaches and investigate violations as they occur.
• Advise IS management on emerging security trends and best practices, assist in updating security policies and procedures, and support departments in investigating breaches and pursuing disciplinary or legal actions as needed.
• Contribute to team efforts by accomplishing related results as needed.
• Perform other duties as may be assigned by IS management.

• Work within framework of bank’s information security policies, standards, guidelines and procedures as applicable.

• Work accomplishments will be reviewed by the Information Security Manager.

• Bachelor’s degree in computer science, Network/ Cyber Security or related information technology field.
• Professional / Technical Qualifications / Diplomas: Platform specific (e.g., SIEM/ Networking/ Operating System) certifications.
• Security (e.g. SANS/ ISC2 / CEH/ CISSP) certifications

8 - 10 years’ experience in Information Security or related field.

• In-depth knowledge and understanding in information security and technology infrastructure, ensuring robust protection of systems and applications.

• Expertise in enforcing cloud security policies, IAM configurations, and data protection practices to ensure a secure infrastructure.

• Proficient in managing and optimizing CSPM tools to continuously monitor and enforce security best practices.

• Experienced in reviewing and enhancing security configurations and architectures to align with industry best practices and compliance requirements.

• Proficient in managing API and Kubernetes security policies, including implementing posture management, access controls, encryption, and continuous monitoring to ensure a secure environment.

• Skilled in conducting thorough vulnerability assessments and comprehensive risk analyses, prioritizing risks and implementing remediation strategies to secure systems.

• Proficiency in configuring and managing DLP tools, data classification, policy enforcement, risk assessment, compliance knowledge, and integrating with security systems to prevent unauthorized data loss.

• Skilled in configuring, optimizing, and managing Security Information and Event Management (SIEM), EDR, and DAM platforms for real-time threat detection and effective incident response.

• Committed to enhancing organizational security posture through ongoing monitoring, assessment, and optimization of security tools and processes.

• Demonstrates innovative thinking by exploring alternative approaches and developing conceptual frameworks to address complex security challenges.

• Possesses strong communication skills, capable of conveying complex security concepts to senior non-technical stakeholders in clear, jargon-free language.

• Adept at managing multiple concurrent projects, effectively prioritizing tasks to meet organizational demands and deadlines.

Abu Dhabi, United Arab Emirates | Posted on 08/18/2025

CyberGate Defense, an IHC company, is a leading force in cybersecurity innovation, dedicated to enhancing the digital resilience of organizations across the region. Established with the mission to fortify the region’s cybersecurity landscape, CyberGate harnesses extensive expertise to tackle complex information security and operational challenges.

Our commitment to driving progress is reflected in our broad range of cybersecurity services and solutions. By leveraging cutting-edge, disruptive technologies, we deliver transformative, human-centric security solutions that safeguard organizations and empower them to navigate a secure and dynamic digital future.

With a wealth of in-house knowledge, CyberGate Defense is well-equipped to address the most intricate cybersecurity issues. We strive to make digital transformation secure, accessible, and beneficial, ensuring that organizations throughout the region thrive in an increasingly interconnected digital world.

Job Description:

The Principal Information Security Consultant shall be the primary technical liaison between our clients and our internal security teams. In this critical role, the consultant will leverage their deep understanding of information security concepts and technical expertise to bridge the gap between client needs and the specialized teams, including Security Operations Center (SOC), Vulnerability Assessment and Penetration Testing (VAPT), Azure Security, and Governance, Risk, and Compliance (GRC). This is an individual contributor role with no direct reports or managerial responsibilities.

Key Responsibilities:

1. Act as the primary point of contact for clients, translating their information security requirements and concerns into actionable tasks for CyberGate's internal teams.
2. Provide expert guidance and consultation to clients on a wide range of information security topics, including threat landscapes, best practices, and emerging technologies.
3. Collaborate closely with SOC teams to understand incident response activities, provide client-facing updates, and help clients interpret security alerts and reports.
4. Work with VAPT teams to articulate client scope, interpret vulnerability reports, and advise clients on remediation strategies and prioritize findings.
5. Liaise with Azure security specialists to understand cloud security posture, discuss architecture, and provide recommendations to clients for securing their Azure environments.
6. Engage with GRC teams to ensure client compliance needs are met, assist in policy development, and help clients navigate regulatory frameworks.
7. Conduct technical deep-dives and provide high-level architectural insights to both clients and internal teams to facilitate effective security solutions.
8. Develop and deliver clear, concise, and technically accurate documentation, reports, and presentations for clients and internal stakeholders.
9. Stay up-to-date with the latest information security trends, vulnerabilities, and technologies to provide proactive and informed advice.

Qualifications:

• Extensive experience in information security, with a strong foundational understanding across various domains (e.g., network security, application security, cloud security, incident response, compliance).
• Demonstrable technical proficiency to effectively communicate and collaborate with specialized security teams (SOC, VAPT, Azure, GRC).
• Proven ability to translate complex technical information into understandable terms for both technical and non-technical audiences.
• Exceptional client-facing communication and interpersonal skills, with a track record of building strong client relationships.
• Strong analytical and problem-solving abilities, with a keen eye for detail.
• Ability to work independently and manage multiple client engagements simultaneously in a fast-paced environment.
• Relevant industry certifications (such as CISSP, CISM, CISA, CCSP) are highly desirable.

Education:

Bachelor’s degree in computer science, Information Security, or a related technical field. A master’s degree is a plus.

Binance is a leading global blockchain ecosystem behind the world’s largest cryptocurrency exchange by trading volume and registered users. We are trusted by over 280 million people in 100+ countries for our industry-leading security, user fund transparency, trading engine speed, deep liquidity, and an unmatched portfolio of digital-asset products. Binance offerings range from trading and finance to education, research, payments, institutional services, Web3 features, and more. We leverage the power of digital assets and blockchain to build an inclusive financial ecosystem to advance the freedom of money and improve financial access for people around the world.

The product line Chief Information Security Officer, reporting to the Global Chief Security Officer, aims to develop and implement a comprehensive information security strategy for one of the leading product lines in the Binance product suite. The role will also ensure that the IT Governance and Security Risk Management Systems align to international best practices and adhere to regulatory requirements.

• Experience and expertise in Defi security including blockchain, smart contracts, wallet security, and random number generation.
• Hands‑on implementation of the IT Security Risk Management function.
• Lead Security Risk Management with all stakeholders as per Security Risk Framework.
• Work as part of the three lines of defense model to ensure funds, data and systems are secure.
• Ensure all security obligations for governance, regulatory and compliance matters are delivered.
• Assist the delivery of the internal and external audits related to Technology and Security.
• Drive cyber threat & vulnerability management/penetration tests.
• IT security risk management for new projects and/or any integration with third party vendors.
• Manage Third party integrations risk to ensure alignment with security standards and SLAs.
• Security incident management, including prompt reporting to senior management & other teams.
• Facilitate continual alignment to regulatory compliance obligations and international standards.

• Track record of international company experience and cyber security in a regulatory context.
• A combination of senior management and deep cyber security experience is mandatory.
• Security community contributor either through published material or international conferences.
• Demonstrable experience in a global team with a rich multicultural fast paced environment.
• 10+ years of experience in security & technology compliance in a global firm.
• Bachelor's degree or higher in information technology, cyber security or related field.
• Track record in self motivated leadership and excellent communication and listening skills.
• Proven management of cyber security operations with hands‑on implementation skills.
• Delivery of best practices for international data privacy and information security frameworks.
• NIST Cybersecurity & Privacy Framework, ISO 27001/ISO 27701, CIS and PCI-DSS.
• Must seek excellence by default and show a passion for collaboration and team achievement.
• Demonstrable experience delivering effective business and technical security solutions.
• A passion for the latest cyber security trends and emerging threats is essential.

• Shape the future with the world’s leading blockchain ecosystem
• Collaborate with world‑class talent in a user‑centric global organization with a flat structure
• Tackle unique, fast‑paced projects with autonomy in an innovative environment
• Thrive in a results‑driven workplace with opportunities for career growth and continuous learning
• Competitive salary and company benefits
• Work‑from‑home arrangement (the arrangement may vary depending on the work nature of the business team)

Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success.

By submitting a job application, you confirm that you have read and agree to our Candidate Privacy Notice .

Login for faster access to the best deals. Click here if you don't have an account.

Interview Questions for Information Security Analyst roles often focus on key areas like risk management, network security, incident response, and vulnerability assessment. Candidates may be asked about common security tools, threat detection techniques, encryption methods, and how they would handle real-world security incidents. Preparing for these questions helps build confidence and demonstrates the technical knowledge and problem-solving skills required for a successful career in information security.

CSO - Information Security Assistant Manager - Abu Dhabi Branch

Date: Sep 10, 2025

Location:

Abu Dhabi, AE

Information Security Senior Assistant Manager operates in close cooperation with the local Information Security Officer (ISO) and with the Head Office teams to ensure the definition of the objectives for the Cybersecurity and Business Continuity Programs and monitors compliance with such objectives.

Specific accountabilities of the Information Security Assistant Manager in support of the local ISO:

• Responsible for the oversight of the state of information security and cybersecurity and provides periodic reports (at least annually) on the state of information security to Top management
• Adopt, implement and update Cybersecurity policies, rules, processes and procedures in line with Head Office regulatory Framework
• In reporting to the Top Management, considers to the extent applicable the confidentiality of Nonpublic Information and the integrity and security of Information Systems, the cybersecurity policies and procedures, the material cyber risks, the overall effectiveness of information security and cybersecurity program and possible material cybersecurity events involving the branch
• Work strategically with Head Office to ensure that all aspects of information security and cybersecurity are properly monitored and that security projects and tasks are properly coordinated
• Perform continuous monitoring of Information Security and Cybersecurity programs to ensure compliance with objectives, policies and procedures
• Identify and evaluate changes in local regulations, as well as trends in the Information Security and Cybersecurity sector, such as new products, new attacks and new countermeasures for applicability inside the Branch environment
• Ensure the local execution of Business Continuity activities, including periodical Business Impact Analysis, tests and reporting, in line with the Group model.
• Work with information owners in business units to determine appropriate security objectives
• Monitor network activity for malicious activity
• Monitor and evaluates vulnerability reports, vendor hot-fixes, and vendor patches for applicability to deployed technologies
• Monitor the process of creating, changing, or removing user access across all systems
• Monitor the access control program. Ensure that all appropriate documentation pertaining to the recording of account creations, deletions, and permissions are correctly maintained and approved
• responsible for the Cybersecurity and Business Continuity Training Programs

Previous experience in a similar role preferable.

• Bachelor’s in computer science, Information Technology or related field;
• Background in assuring high level of Information Security management and Business Continuity management in an organization;
• IT/Info/Cyber Security risk management knowledge, including application risk classification and application control assessments;
• Knowledge of financial industry products and related IT platform, a plus.

We are the leading banking group in Italy and one of the Top Tier in Europe. Join us and be part of our successful story!

With over 20 million customers in Italy and abroad, we are a true engine of sustainable growth, with a strong commitment to the environment and a tangible impact on society. People are our driving force. We take care of them and foster an inclusive culture where everyone feels valued and empowered.

Join an international and innovative Group. Don't wait for the future, choose it!

#sharingfuture

We guarantee an inclusive and equal environment. We will consider all applicants regardless of race, religion, sexual orientation, gender identity, marital status, national origin, age, disability, or any other protected category in compliance to D.lgs. 198/2006, 215/03 and 216/03.

For the evaluation of the application, the data will be processed by Intesa Sanpaolo S.p.A. as Data Controller. We invite you to review the dedicated Privacy Information Notice for more details.

Abu Dhabi, United Arab Emirates | Posted on 07/07/2025

CyberGate Defense, an IHC company, is a leading force in cybersecurity innovation, dedicated to enhancing the digital resilience of organizations across the region. Established with the mission to fortify the region’s cybersecurity landscape, CyberGate harnesses extensive expertise to tackle complex information security and operational challenges.

Our commitment to driving progress is reflected in our broad range of cybersecurity services and solutions. By leveraging cutting-edge, disruptive technologies, we deliver transformative, human-centric security solutions that safeguard organizations and empower them to navigate a secure and dynamic digital future.

With a wealth of in-house knowledge, CyberGate Defense is well-equipped to address the most intricate cybersecurity issues. We strive to make digital transformation secure, accessible, and beneficial, ensuring that organizations throughout the region thrive in an increasingly interconnected digital world.

As a Senior Consultant specializing in Data Privacy, you will lead and support client engagements focused on data privacy compliance, data classification and mapping, and data flow analysis. You will work with cross-functional teams to assess privacy risks, implement data governance frameworks, and ensure compliance with global regulations such as GDPR, CCPA, ISO 27701, and others.

• Conduct privacy and data protection assessments, including Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs).
• Design and implement data classification and mapping frameworks to support data governance and compliance.
• Analyze and document data flows across systems, departments, and third parties.
• Develop and maintain Records of Processing Activities (RoPA).
• Advise clients on privacy by design, data minimization, and secure data lifecycle management.
• Support the development and implementation of privacy policies, procedures, and training programs.
• Collaborate with legal, IT, and compliance teams to align privacy strategies with business objectives.
• Monitor and interpret emerging privacy regulations and industry best practices.
• Assist in incident response planning, breach notification, and regulatory inquiries.
• Provide strategic guidance to Data Protection Officers (DPOs) and privacy teams.

• Bachelor’s or master’s degree in law, Information Security, Computer Science, or a related field.
• Minimum 4–6 years of experience in data privacy, data governance, or compliance roles.
• Strong knowledge of GDPR, CCPA, HIPAA, ISO 27701, and other global privacy regulations.
• Proven experience in data classification, mapping, and data flow analysis.
• Excellent communication and stakeholder management skills.

• CIPP/E, CIPP/US – Certified Information Privacy Professional (Europe/US)
• ISO/IEC 27701 Lead Implementer or Auditor
• Experience delivering client-facing data privacy and data governance projects.
• Ability to translate regulatory requirements into actionable project deliverables.
• Strong client engagement and communication skills to support workshops and training.
• Familiarity with data governance tools in client environments.
• Ability to manage multiple client projects and deliverables in a consulting environment.
• Knowledge of standards & frameworks such as:
• UAE National Data Classification Policy (NDC)
• UAE Data Protection Law (Federal Law No. 45 of 2021)
• DAMA-DMBOK (Data Management Body of Knowledge)
• DCAM (Data Management Capability Assessment Model)
• ISO 27001 / ISO 38505 (Data Governance in IT)