171 Data Security jobs in the United Arab Emirates

We are looking for an experienced Data Security Consultant to join our team. The ideal candidate will have over 8 years of experience as a Data Security Consultant.

• Experience: 8+ years
• Technical focal point for security solutions like DLP, Data classification, Web Security (Proxy), DRM/IRM tools, Symantec Security Analytics, HSM, Email Security, Microsoft PKI, etc.
• Conduct risk assessments to identify and prioritize security risks and vulnerabilities related to security solutions.
• Conduct security audits and assessments to ensure compliance with regulatory and industry standards for PDCA.
• Develop and implement security strategies, policies, and procedures to protect client systems, networks, and data.
• Design and implement Data security solutions.
• Provide guidance and training to client teams on security best practices and industry standards.
• Work with client teams to identify and resolve security issues.
• Keep up-to-date with the latest security technologies, trends, and threats.
• Provide technical leadership and mentorship to other members of the security consulting team.
• Collaborate with other teams to ensure effective communication and coordination of security efforts.
• Manage relationships with clients and third-party security vendors and contractors.
• Complement the SOC team for security research and analysis to identify emerging threats and vulnerabilities.

Abhu Dhabi, United Arab Emirates | Posted on 04/22/2025

The Data Security Specialist is responsible for implementing and maintaining data security measures to protect sensitive information and ensure compliance with regulatory requirements. This role involves assessing data security risks, developing policies and procedures, implementing data security controls, and providing guidance on best practices for data protection. The ideal candidate will have a strong understanding of data security principles, technologies, and regulatory frameworks, with the ability to collaborate effectively with cross-functional teams to mitigate security threats and safeguard data assets.

• Data Security Policies and Compliance: Develop and implement data security policies, procedures, and standards that align with organizational goals and regulatory requirements. Ensure compliance with data protection regulations and stay updated on the latest trends and technologies in data security.
• Data Inventory: Collaborate with business units to identify sensitive data types, including PII, intellectual property, and confidential data. Develop and maintain a data inventory and establish data flows to track sensitive data, facilitating the creation of data protection policies.
• Data Loss Prevention: Deploy and manage DLP solutions to prevent unauthorized data exfiltration, leakage, or loss. Configure DLP policies to monitor and control data movement across endpoints, networks, and cloud environments.
• Data Classification Solution: Develop and maintain data classification policies and guidelines to categorize data based on sensitivity and criticality. Implement data classification tools to facilitate labeling data according to predefined criteria.
• Digital Rights Management (DRM): Implement and configure DRM solutions to protect digital assets and intellectual property from unauthorized access or distribution. Develop DRM policies and procedures to define rules for accessing, sharing, and managing digital content.
• Secure Data Transfer: Define requirements for restrictions on sensitive data transfer and create DLP policies to enforce these requirements.
• Encryption and Data Protection Measures: Manage encryption technologies to secure data transmission, storage, and disposal. Advocate for robust data protection measures, including regular backups and restoration testing.
• Security Assessments and Audits: Conduct regular data security assessments to identify vulnerabilities. Recommend and implement mitigation strategies.
• Incident Response and Management: Monitor for data breaches and coordinate with cybersecurity teams to investigate and resolve incidents. Oversee secure disposal of data assets.
• Collaboration and Integration: Work with IT and other departments to embed data security measures into business processes and technology development, including secure coding practices.
• Training and Awareness: Lead training programs on data security best practices to increase organizational awareness.

• Contribute to departmental strategy, policies, and procedures aligned with client needs.
• Manage activities of direct reports to ensure efficiency.
• Assist in budget preparation and risk management.
• Implement continuous improvement initiatives based on international best practices.
• Ensure timely and accurate reporting.

• Protection of organizational data from unauthorized access or loss.
• Compliance with data protection laws.
• Enhanced employee awareness of data security practices.

Internal: Accounting, Procurement, Treasury, Operations Technology, Internal Audit, and other departments.

External: Vendors and service providers.

Education: Bachelor’s degree in Cybersecurity, Computer Engineering, Computer Science, IT, or related field. A Master’s degree is desirable.

Certifications: At least one cybersecurity certification such as CDPSE, CISA, CISSP, or CISM. Additional certifications in information assurance or data privacy are a plus.

Experience: Minimum 5 years of experience in data security or related fields, with expertise in data protection strategies, laws (GDPR, CCPA), cloud security, NIST, and ISO27001 frameworks. Experience in multinational companies and in the energy/utilities sector is preferred.

Why this role matters:
As Data Security Engineer II, you will play a key role in safeguarding the confidentiality, integrity, and availability of Beyond ONE s data. Your contributions will help shape our enterprise data protection strategy and privacy infrastructure, and ultimately the way we disrupt the digital services market through secure innovation.

What success looks like:
In your first year, you will lead enterprise-wide implementation of encryption, anonymization, and data masking solutions; establish compliance alignment with KSA CRF/PDPL and UAE Data Protection Law; and embed data privacy controls into DevSecOps workflows to improve incident response and risk mitigation across environments.

Why this is for you:
If you're keen on solving the massive challenge of securing sensitive information across hybrid environments while aligning with fast-changing data protection laws, hit us up. We're looking for someone ready to tackle this challenge head-on and make an impact from day one.

Key Responsibilities

In this role, you will:

• Lead the design and implementation of robust data security solutions, ensuring sensitive data is protected across structured and unstructured datasets.
• Collaborate with data governance, compliance, engineering, and legal teams, driving alignment between business data usage and security controls.
• Manage enterprise encryption technologies, ensuring effective key management and data confidentiality at rest and in transit.
• Drive initiatives in data masking, anonymisation, and pseudonymisation to support regulatory compliance and secure data sharing.
• Deploy and operationalize Data Loss Prevention (DLP), Data Classification, and Rights Management tools, integrating them with business workflows.
• Conduct security assessments across cloud and on-prem environments to identify risks and implement mitigation strategies.
• Embed data security best practices into DevOps pipelines and infrastructure-as-code practices.
• Respond to and investigate incidents related to data breaches or unauthorized access, ensuring rapid containment and learning.
• Perform regular audits and risk assessments related to sensitive data handling, storage, and transfer.

Qualifications & Attributes

We re seeking someone who embodies the following:

Education:
Bachelor s degree in Computer Science, Information Security, Information Technology, or a related field.

Experience:

• 3 5 years of hands-on experience in information security with a focus on data protection and privacy.
• Demonstrated success implementing encryption, anonymisation, and masking solutions across large-scale data sets.
• Experience working with data protection regulations such as GDPR, KSA CRF/PDPL, or UAE Data Protection Law.
• Proven track record managing DLP tools, key management systems, and other data-centric security technologies.
• Exposure to hybrid data architectures in both cloud and on-premise environments

Must-haves:

• Strong understanding of encryption protocols and key management systems (e.g., AWS KMS, Azure Key Vault, HashiCorp Vault).
• Experience with data protection platforms (e.g., Microsoft Purview, IBM Guardium, Protegrity, Voltage).
• Proficiency in scripting (e.g., Python, PowerShell, Bash) for automation and data discovery.
• Familiarity with IAM, RBAC, ABAC frameworks and security controls for modern data stacks like Snowflake, Databricks, BigQuery.
• Understanding of DevSecOps and integrating data security into CI/CD pipelines.
• Experience with AWS, Azure, or GCP data protection capabilities.

Nice-to-haves:

• Knowledge of network-level security for data protection (TLS, segmentation, firewalls).
• Certifications such as CISSP, CDPSE, CIPT, or CISM.
• Thrives in fast-paced and technically demanding environments.
• Possesses a strong sense of domain ownership and the ability to execute independently.
• Excels with Agile methodologies and DevSecOps principles.

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at

Key Responsibilities:

• We are seeking an experienced data protection expert to join our global team in Dubai.
• You will be responsible for developing and overseeing the organisation's data protection frameworks, ensuring compliance with global and local data privacy regulations.

Main Duties & Responsibilities:

• Support in development and implementation of data protection policies and frameworks in compliance with applicable data privacy laws.
• Ensure the organisation's data processing activities align with legal, regulatory, and contractual requirements.
• Monitor and assess risks related to data protection and advise senior leadership on mitigating measures.
• Conduct Data Protection Impact Assessments (DPIA) and oversee risk mitigation strategies.
• Collaborate with IT and security teams to implement cybersecurity measures protecting personal and sensitive data.
• Lead periodic audits and assessments to identify vulnerabilities and ensure compliance with security standards.
• Design and deliver training programs to educate employees on data privacy best practices and legal obligations.
• Provide guidance to internal teams on privacy-by-design principles in new projects, products, and technologies.
• Serve as an advisor to the leadership team on emerging data protection trends, risks, and regulatory changes.
• Oversee data processing agreements with third-party vendors to ensure compliance with data protection regulations.
• Work with business units, legal, IT, and HR teams to embed privacy requirements into business operations.
• Engage with external regulators, auditors, and legal experts to ensure proactive compliance.

Required Skills & Qualifications:

• A law degree with data protection and privacy certification is required.
• 10-15 years of proven expertise in European Union and global data protection laws, as well as Information Technology systems and programming.

This role offers a competitive salary and benefits package.

You will have opportunities to develop your skills and knowledge in data protection and privacy.

We offer a supportive and collaborative work environment.

Job Summary:

We are seeking a seasoned Cyber Security Consultant to join our team. The successful candidate will be responsible for designing, implementing, and supporting advanced data security solutions.

• Design, implement, and support Forcepoint On-premises and Cloud DLP modules and appliances.
• Troubleshoot issues, engage with end users, and lead outage bridges. Monitor Forcepoint platform services and processes.
• Document setup configurations and maintain as-built drawings as changes occur.
• Support DLP and Data Classification modules, including issue resolution, health checkups, and upgrades.
• Coordinate with end customers and vendors for troubleshooting solutions.
• Implement and support Forcepoint Data Loss Prevention (DLP) solutions (On-premises and Cloud).

• 5+ years of experience in cybersecurity, with at least 3 years focused on Forcepoint security products, especially in DLP and Data Classification tools.
• Extensive knowledge and hands-on experience in Forcepoint DLP modules, including end-to-end implementations (analyzing, designing, implementing, configuring, & troubleshooting).
• Good experience in deploying Data Classification tools and providing data consultancy to prepare DAR.
• Experience in deploying, troubleshooting, and maintaining Web/Email/Network DLP policies and fine-tuning them.
• Good knowledge of Forcepoint / Netskope Proxy / RBI / CASB.
• Experience with Netskope DLP – preferred.
• Strong communication skills and the ability to work effectively with internal teams and external vendors.
• Willing to travel to client locations as required.

• Opportunity to work with a leading organization in the field of cybersecurity.
• Competitive salary and benefits package.
• Chance to work on cutting-edge projects and technologies.

Please submit your resume and cover letter to apply for this exciting opportunity.

• An Engineering Degree, with 5+ Years experience in local / international Data Protection in BFSI.
• Hands on experience in implementing data protection regulations.
• Expertise in data protection laws and regulations (like CBUAE Consumer Data Protection, UAE Privacy Laws and applicable global data protection requirements).
• Certification related to CIPP/E, CIPM, CIPT, CDPO, etc are preferred.
• Strong knowledge of information Security, Data Protection and IT Systems.
  

• Assist in implementing Bank's policies and procedures in accordance with data protection laws and regulations (like CBUAE Consumer Data Protection, UAE Privacy Laws and applicable global data protection requirements) and advising the business on data protection and privacy matters.
• Leading as required and maintaining cross-functional working groups to coordinate data protection efforts, including current projects and initiatives and regulatory awareness across the Bank.
• Executing data protection and privacy monitoring and compliance testing reviews.
• Evaluate the existing data protection framework and identify areas of non or partial compliance and rectify any issues.
• Maintain an inventory of all personal data stored and data processing activities, including how and why the company collects, shares and uses personal data.
• Work with the Contracts, Vendor Management and Compliance/Business departments to ensure that third-party suppliers contracts and operating-level agreements meet privacy requirements.
• To support and promote a culture of awareness of data security / data protection throughout the bank.
• Hold training with staff members across different business units who are involved in data handling or processing.
• Work with and manage external vendors / auditors during assessments.

Join to apply for the Consultant/Senior Consultant - Data Security - Cybersecurity(Arabic Speaking Preferred) role at KPMG Lower Gulf

Join to apply for the Consultant/Senior Consultant - Data Security - Cybersecurity(Arabic Speaking Preferred) role at KPMG Lower Gulf

JOB DESCRIPTION
Data Protection - Consultant/ Senior Consultant

Designation
JOB DESCRIPTION
Data Protection - Consultant/ Senior Consultant
Years Of Experience

• Senior Consultant : 3 – 6 years of experience in data security and protection
• Consultant : 2 – 3 years of experience in data security and protection
  

• English
• Arabic (added advantage)
  

• CDPSE
• CIPT
• CISSP
• CISM
• Microsoft Certified: Information Protection Administrator Associate
• Recognized technical certification such as Symantec CSP in Data Protection, Certified McAfee Security Specialist CMSS DLP Focus, Forcepoint Data Security Suite DSS Professional or similar certifications.
  

• Excellent team player/leader
• Excellent communication and presentation skills
• Excellent report writing skills
• End-to-end Data Protection Programme Design and Implementation
• Experience working for the Big 4 or Global Consulting Companies
• Ability to coordinate and independently drive activities to an end
• Ability to work in a distributed team across multiple time zones
  

• Security architecture experience designing and implementing data security and cloud security solutions.
• Experience assessing or building programs in data protection: data encryption (FPE), tokenization, masking, and key management.
• Assist in the development of point of view, white papers, industry thought leadership, and produce knowledge capital.
• Maintain relationships with technology vendors to develop offerings.
• Lead Data Security and Protection strategy, roadmap, and vision definition.
• Drive Data Security and Protection security opportunities, including solution planning, deal shaping, estimating, and pricing.
• Manage large Data Security delivery programs consisting of multiple projects, workstreams, phases, or releases, including financials.
• Data Protection - Provide immutable capabilities layered on top of data at rest or in motion to secure the contents from unauthorized access.
• Secure Data Governance - Enabling the people & process of an organization to secure the flow of data through the organization.
• Secure Data Strategy- Embedding security into the overall approach and vision for data in an organization.
• Database Security – Implementation of technical capabilities to protect and secure structured and unstructured database assets.
• Deep understanding of data encryption with extensive leadership contacts.
• Experience leading the business development and sales capture process.
• Proficient in following areas related data protection:
• Data Discovery of structured/unstructured data
• Data Classification and Labelling
• Data Security cryptographic controls
• Data Loss Prevention
• Digital Rights Management
• Proven track record of designing and implementing Data Protection technology or equivalent Cybersecurity technology such as Data Loss Prevention, Data Classification, Digital Rights Management, Masking or Tokenization Technology, Encryption etc.
• Driven Data Security and Protection security opportunities, including solution planning, deal shaping, estimating, and pricing.
• Assist in Data Security proposal development and sales/marketing collateral.
• Assist in Data Security and Protection strategy, roadmap, and vision definition.
• Developed new offerings and go to market strategies with data teams.
• Maintained relationships with technology vendors to develop offerings.
• Assisted in the development of point of view, white papers, industry thought leadership, and produce knowledge capital.
• Knowledge of securing Office 365, leveraging Microsoft Secure Score.
• Understanding of Microsoft Information Protection with data classification infrastructures and techniques to classify data both on-premises and in the cloud.
• Relevant experience with Data Loss Prevention technologies across endpoints.
• A deep understanding of the underlying Identity and Access management solutions required to operate Microsoft 365 and Microsoft Threat Protection capabilities is a plus.
• Analytical mind with good troubleshooting skill.
• Experience in Symantec, Forcepoint, McAfee, Microsoft or Digital Guardian as well as competitor products is a plus.
• Development of workflows for incident and alert generation for protected data protection policy infringement.
• Configuration and tuning of DLP systems (such as Symantec DLP, zScaler DLP product), policies and response rules (might be required in specific projects).
  

• Assist and execute Data Protection projects related to the following:
• Data protection gap assessments/ Audits
• Data Protection Programme design, building strategies, frameworks, solution designs and implementation
• Data Discovery
• Data Classification
• Cloud-centric data protection
• Cloud Access Security Broker (CASB) & monitoring
• Data Protection strategy
• Development of the Target Operating Model, policies, procedures and templates that align with data protection laws and regulations
• Assist in project communications involving technology partners and member firms.
• Ensure quality in project deliverables and documentation.
• Lead client presentations.
• Lead project management meetings including:
• Status updates
• Audit / technical assessment reports
• Internal team meetings
• Review and maintain the data protection management workflows that enables clients to identify, log, investigate and resolve data protection-related issues in accordance with industry best practices.
• Assist in and respond to client Request for Proposals (RFP) and pitches.
• Support Thought Leadership and Webinar initiatives for Data Protection.
• Adhere to project management guidelines and financial budget management for engagements.
• Adhere to the firm’s Risk Management guidelines.

• Seniority levelMid-Senior level

• Employment typeFull-time

• Job functionConsulting, Information Technology, and Sales
• IndustriesAccounting

Referrals increase your chances of interviewing at KPMG Lower Gulf by 2x

Get notified about new Senior Consultant jobs in Dubai, Dubai, United Arab Emirates.

Dubai, Dubai, United Arab Emirates 1 year ago

Dubai, Dubai, United Arab Emirates 11 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

We are seeking a skilled professional to join our organization as an Information Security Specialist.

• Implement and monitor information security policies and procedures.
• Detect, analyze, and respond to cyber threats and attacks.
• Manage security tools such as firewalls, intrusion detection/prevention systems, and antivirus software.
• Conduct penetration testing and vulnerability assessments to identify potential security risks.
• Manage user access controls and ensure compliance with established security protocols.
• Support incident response and disaster recovery planning to minimize business disruption.
• Educate employees on cybersecurity best practices and awareness.
• Prepare security reports for management and regulatory bodies.
• Collaborate with technical teams to integrate security into the software development lifecycle.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• Certifications such as CISSP, CEH, CompTIA Security+, CISM, ISO 27001 LA are highly desirable.
• Minimum of 2-3 years of experience in information or cybersecurity.
• Strong knowledge of network protocols, operating systems, and encryption technologies.
• Familiarity with global security frameworks such as NIST, ISO 27001, and MITRE ATT&CK.

We are a leading consulting firm dedicated to providing expert solutions in information and cybersecurity. Our mission is to protect our clients' digital assets and ensure their long-term success.

Dubai, United Arab Emirates | Posted on 16/06/2025

IFZA Dubai is the most dynamic and truly international Free Zone Community in the UAE, optimizing the country's strategic location and world-class infrastructure. We provide easy, reliable, and fast company formation services through our network of Professional Partners and Government Authorities.

Job Overview:

The Information Security Analyst will be responsible for protecting IFZA's information systems by identifying, assessing, and mitigating security risks. This role involves monitoring, analyzing, and responding to security incidents, implementing security measures, and ensuring compliance with industry standards and regulations. The ideal candidate is proactive, detail-oriented, and possesses strong technical and analytical skills.

Main Responsibilities:

• Threat Monitoring and Incident Response :
• Monitor network traffic and security alerts for potential threats using SIEM tools (e.g., Microsoft Sentinel).
• Investigate and respond to security incidents, including malware infections, phishing attacks, and unauthorized access.
• Conduct root cause analysis and document incident reports with remediation recommendations.
• Risk Assessment and Vulnerability Management :
• Perform regular vulnerability scans and penetration testing to identify weaknesses in systems and applications.
• Collaborate with IT teams to prioritize and remediate vulnerabilities.
• Conduct risk assessments to evaluate potential security threats and recommend mitigation strategies.
• Security Policy and Compliance :
• Implement, and enforce security policies, procedures, and standards in alignment with frameworks such as NIST, ISO 27001, or GDPR.
• Ensure compliance with regulatory requirements and industry’s best practices.
• Assist in preparing for and responding to internal and external audits.
• Security Awareness and Training :
• Conduct security awareness training for employees to promote best practices (e.g., password management, phishing prevention).
• Create and distribute educational materials on emerging cyber threats.
• System and Network Security :
• Configure and manage security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection solutions.
• Implement and monitor encryption, authentication, and access control mechanisms.
• Threat Intelligence and Research :
• Stay updated on the latest cyber threats, vulnerabilities, and attack vectors.
• Analyze threat intelligence reports and apply findings to enhance organizational security posture.

• Bachelor’s in Engineering , Computer Science, or related field.
• 8+ years of experience in Information Security.
• Minimum 3 + years hands-on experience in SOC, blue-team, or security engineering roles.
• Proven expertise with Microsoft Sentinel, Microsoft Defender, Incident management, Compromised recovery, patch management and vulnerability management platform .
• Solid grasp of TCP/IP, Windows/Linux internals, AWS/Azure security primitives.
• Scripting for automation (Python, Bash, or PowerShell).
• Familiarity with MITRE ATTACK mapping and threat-hunting methodology.
• CompTIA Security+, CEH, GRC, CCNA or CCNP - Security.
• Analytical mindset with strong investigation and documentation discipline.
• Clear verbal/written communication for incident briefings and executive reports.
• Ability to multitask and stay calm under pressure.
• Experience with Zero Trust architecture projects.
• Knowledge of privacy regulations (GDPR, HIPAA, PDPA).
• Exposure to DevSecOps .
  
• International team (over 60 nationalities)
  
• 24 working days as annual leave
  
• Annual flight home
  
• Life insurance plan
  
• Medical insurance plan (with the option to upgrade at your own cost)