23 Ethical Hackers jobs in the United Arab Emirates

Our client is a well-established financial services organisation in Jeddah.

The Senior Manager - Information Security will:

• Support the CISO in developing and executing the information security strategy and roadmap
• Contribute to long term planning and act as a key advisor on technical risks
• Serve as acting CISO as and when required
• Evaluate and recommend security technologies, tools and methodology ensure the organisation complies with SAMA cybersecurity framework and NCA
• Lead technical input for audits and regularities reviews
• Oversee security monitoring, threat and vulnerability management activities
• Lead incident response efforts
• Collaborate with IT, compliance, audit and other business unit
• Report Information Security KPIs and metrics to executive management
• Represent the Information Security function internally and externally as require

The Senior Manager - Information Security will be/have:

• A Bachelor's or Master's degree in Information Technology, Computer Science or other relevant fields of study
• 6+ years of experience in Information Security, ideally within the Banking/Financial Services sector
• Expertise in information security architecture and engineering
• Strong understanding of Information Security frameworks such as ISO2700
• Relevant certifications such as CISSP, CISM, CCISO, etc. would be preferred
• Excellent knowledge of Saudi regulatory requirements (SAMA, NCA, etc.)
• Track record in designing secure systems and leading cyber security initiatives
• Strong project management skills

Abu Dhabi, United Arab Emirates | Posted on 08/18/2025

CyberGate Defense, an IHC company, is a leading force in cybersecurity innovation, dedicated to enhancing the digital resilience of organizations across the region. Established with the mission to fortify the region’s cybersecurity landscape, CyberGate harnesses extensive expertise to tackle complex information security and operational challenges.

Our commitment to driving progress is reflected in our broad range of cybersecurity services and solutions. By leveraging cutting-edge, disruptive technologies, we deliver transformative, human-centric security solutions that safeguard organizations and empower them to navigate a secure and dynamic digital future.

With a wealth of in-house knowledge, CyberGate Defense is well-equipped to address the most intricate cybersecurity issues. We strive to make digital transformation secure, accessible, and beneficial, ensuring that organizations throughout the region thrive in an increasingly interconnected digital world.

Job Description:

The Principal Information Security Consultant shall be the primary technical liaison between our clients and our internal security teams. In this critical role, the consultant will leverage their deep understanding of information security concepts and technical expertise to bridge the gap between client needs and the specialized teams, including Security Operations Center (SOC), Vulnerability Assessment and Penetration Testing (VAPT), Azure Security, and Governance, Risk, and Compliance (GRC). This is an individual contributor role with no direct reports or managerial responsibilities.

Key Responsibilities:

1. Act as the primary point of contact for clients, translating their information security requirements and concerns into actionable tasks for CyberGate's internal teams.
2. Provide expert guidance and consultation to clients on a wide range of information security topics, including threat landscapes, best practices, and emerging technologies.
3. Collaborate closely with SOC teams to understand incident response activities, provide client-facing updates, and help clients interpret security alerts and reports.
4. Work with VAPT teams to articulate client scope, interpret vulnerability reports, and advise clients on remediation strategies and prioritize findings.
5. Liaise with Azure security specialists to understand cloud security posture, discuss architecture, and provide recommendations to clients for securing their Azure environments.
6. Engage with GRC teams to ensure client compliance needs are met, assist in policy development, and help clients navigate regulatory frameworks.
7. Conduct technical deep-dives and provide high-level architectural insights to both clients and internal teams to facilitate effective security solutions.
8. Develop and deliver clear, concise, and technically accurate documentation, reports, and presentations for clients and internal stakeholders.
9. Stay up-to-date with the latest information security trends, vulnerabilities, and technologies to provide proactive and informed advice.

Qualifications:

• Extensive experience in information security, with a strong foundational understanding across various domains (e.g., network security, application security, cloud security, incident response, compliance).
• Demonstrable technical proficiency to effectively communicate and collaborate with specialized security teams (SOC, VAPT, Azure, GRC).
• Proven ability to translate complex technical information into understandable terms for both technical and non-technical audiences.
• Exceptional client-facing communication and interpersonal skills, with a track record of building strong client relationships.
• Strong analytical and problem-solving abilities, with a keen eye for detail.
• Ability to work independently and manage multiple client engagements simultaneously in a fast-paced environment.
• Relevant industry certifications (such as CISSP, CISM, CISA, CCSP) are highly desirable.

Education:

Bachelor’s degree in computer science, Information Security, or a related technical field. A master’s degree is a plus.

Binance is a leading global blockchain ecosystem behind the world’s largest cryptocurrency exchange by trading volume and registered users. We are trusted by over 280 million people in 100+ countries for our industry-leading security, user fund transparency, trading engine speed, deep liquidity, and an unmatched portfolio of digital-asset products. Binance offerings range from trading and finance to education, research, payments, institutional services, Web3 features, and more. We leverage the power of digital assets and blockchain to build an inclusive financial ecosystem to advance the freedom of money and improve financial access for people around the world.

The product line Chief Information Security Officer, reporting to the Global Chief Security Officer, aims to develop and implement a comprehensive information security strategy for one of the leading product lines in the Binance product suite. The role will also ensure that the IT Governance and Security Risk Management Systems align to international best practices and adhere to regulatory requirements.

• Experience and expertise in Defi security including blockchain, smart contracts, wallet security, and random number generation.
• Hands‑on implementation of the IT Security Risk Management function.
• Lead Security Risk Management with all stakeholders as per Security Risk Framework.
• Work as part of the three lines of defense model to ensure funds, data and systems are secure.
• Ensure all security obligations for governance, regulatory and compliance matters are delivered.
• Assist the delivery of the internal and external audits related to Technology and Security.
• Drive cyber threat & vulnerability management/penetration tests.
• IT security risk management for new projects and/or any integration with third party vendors.
• Manage Third party integrations risk to ensure alignment with security standards and SLAs.
• Security incident management, including prompt reporting to senior management & other teams.
• Facilitate continual alignment to regulatory compliance obligations and international standards.

• Track record of international company experience and cyber security in a regulatory context.
• A combination of senior management and deep cyber security experience is mandatory.
• Security community contributor either through published material or international conferences.
• Demonstrable experience in a global team with a rich multicultural fast paced environment.
• 10+ years of experience in security & technology compliance in a global firm.
• Bachelor's degree or higher in information technology, cyber security or related field.
• Track record in self motivated leadership and excellent communication and listening skills.
• Proven management of cyber security operations with hands‑on implementation skills.
• Delivery of best practices for international data privacy and information security frameworks.
• NIST Cybersecurity & Privacy Framework, ISO 27001/ISO 27701, CIS and PCI-DSS.
• Must seek excellence by default and show a passion for collaboration and team achievement.
• Demonstrable experience delivering effective business and technical security solutions.
• A passion for the latest cyber security trends and emerging threats is essential.

• Shape the future with the world’s leading blockchain ecosystem
• Collaborate with world‑class talent in a user‑centric global organization with a flat structure
• Tackle unique, fast‑paced projects with autonomy in an innovative environment
• Thrive in a results‑driven workplace with opportunities for career growth and continuous learning
• Competitive salary and company benefits
• Work‑from‑home arrangement (the arrangement may vary depending on the work nature of the business team)

Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success.

By submitting a job application, you confirm that you have read and agree to our Candidate Privacy Notice .

Login for faster access to the best deals. Click here if you don't have an account.

Interview Questions for Information Security Analyst roles often focus on key areas like risk management, network security, incident response, and vulnerability assessment. Candidates may be asked about common security tools, threat detection techniques, encryption methods, and how they would handle real-world security incidents. Preparing for these questions helps build confidence and demonstrates the technical knowledge and problem-solving skills required for a successful career in information security.

CSO - Information Security Assistant Manager - Abu Dhabi Branch

Date: Sep 10, 2025

Location:

Abu Dhabi, AE

Information Security Senior Assistant Manager operates in close cooperation with the local Information Security Officer (ISO) and with the Head Office teams to ensure the definition of the objectives for the Cybersecurity and Business Continuity Programs and monitors compliance with such objectives.

Specific accountabilities of the Information Security Assistant Manager in support of the local ISO:

• Responsible for the oversight of the state of information security and cybersecurity and provides periodic reports (at least annually) on the state of information security to Top management
• Adopt, implement and update Cybersecurity policies, rules, processes and procedures in line with Head Office regulatory Framework
• In reporting to the Top Management, considers to the extent applicable the confidentiality of Nonpublic Information and the integrity and security of Information Systems, the cybersecurity policies and procedures, the material cyber risks, the overall effectiveness of information security and cybersecurity program and possible material cybersecurity events involving the branch
• Work strategically with Head Office to ensure that all aspects of information security and cybersecurity are properly monitored and that security projects and tasks are properly coordinated
• Perform continuous monitoring of Information Security and Cybersecurity programs to ensure compliance with objectives, policies and procedures
• Identify and evaluate changes in local regulations, as well as trends in the Information Security and Cybersecurity sector, such as new products, new attacks and new countermeasures for applicability inside the Branch environment
• Ensure the local execution of Business Continuity activities, including periodical Business Impact Analysis, tests and reporting, in line with the Group model.
• Work with information owners in business units to determine appropriate security objectives
• Monitor network activity for malicious activity
• Monitor and evaluates vulnerability reports, vendor hot-fixes, and vendor patches for applicability to deployed technologies
• Monitor the process of creating, changing, or removing user access across all systems
• Monitor the access control program. Ensure that all appropriate documentation pertaining to the recording of account creations, deletions, and permissions are correctly maintained and approved
• responsible for the Cybersecurity and Business Continuity Training Programs

Previous experience in a similar role preferable.

• Bachelor’s in computer science, Information Technology or related field;
• Background in assuring high level of Information Security management and Business Continuity management in an organization;
• IT/Info/Cyber Security risk management knowledge, including application risk classification and application control assessments;
• Knowledge of financial industry products and related IT platform, a plus.

We are the leading banking group in Italy and one of the Top Tier in Europe. Join us and be part of our successful story!

With over 20 million customers in Italy and abroad, we are a true engine of sustainable growth, with a strong commitment to the environment and a tangible impact on society. People are our driving force. We take care of them and foster an inclusive culture where everyone feels valued and empowered.

Join an international and innovative Group. Don't wait for the future, choose it!

#sharingfuture

We guarantee an inclusive and equal environment. We will consider all applicants regardless of race, religion, sexual orientation, gender identity, marital status, national origin, age, disability, or any other protected category in compliance to D.lgs. 198/2006, 215/03 and 216/03.

For the evaluation of the application, the data will be processed by Intesa Sanpaolo S.p.A. as Data Controller. We invite you to review the dedicated Privacy Information Notice for more details.

We are seeking an experienced Penetration Tester to join our dynamic IT operations team in Ajman, UAE. In this critical role, you will be responsible for proactively identifying security vulnerabilities in our systems, networks, and applications before they can be exploited. Your expertise will help safeguard Dicetek’s digital infrastructure and ensure the highest standards of cybersecurity across all platforms. This is an exciting opportunity to work with a forward-thinking team dedicated to building secure and resilient IT environments.

Perform regular penetration testing on web applications, networks, and systems.
Identify, exploit, and document vulnerabilities with precision and clarity.
Conduct risk assessments and security audits to evaluate existing security controls.
Simulate real-world attacks to test the robustness of current defense mechanisms.
Collaborate with the IT and development teams to remediate vulnerabilities and improve security posture.
Stay updated on the latest security threats, tools, and trends.
Prepare detailed reports and presentations on findings for both technical and non-technical stakeholders.
Ensure compliance with security frameworks and industry regulations.

Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or a related field.
Minimum 6+ years of hands-on experience in penetration testing and vulnerability assessments.
In-depth knowledge of penetration testing methodologies, tools (e.g., Metasploit, Burp Suite, Nessus), and frameworks (e.g., OWASP, PTES).
Experience in ethical hacking, red teaming, and social engineering techniques.
Strong understanding of operating systems, networking protocols, and security architectures.
Relevant certifications such as OSCP, CEH, GPEN, or CISSP are highly desirable.
Excellent analytical, problem-solving, and communication skills.

At Dicetek LLC, we are a global IT solutions and services company committed to delivering technology-driven business innovations that empower enterprises across diverse industries. Headquartered in the UAE with a strong presence across the Middle East and Asia, Dicetek prides itself on its client-centric approach, deep domain expertise, and scalable delivery model. Our mission is to transform businesses by aligning cutting-edge technology with core organizational goals, while upholding values of integrity, innovation, and excellence.

Abhu Dhabi, United Arab Emirates | Posted on 04/22/2025

The Data Security Specialist is responsible for implementing and maintaining data security measures to protect sensitive information and ensure compliance with regulatory requirements. This role involves assessing data security risks, developing policies and procedures, implementing data security controls, and providing guidance on best practices for data protection. The ideal candidate will have a strong understanding of data security principles, technologies, and regulatory frameworks, with the ability to collaborate effectively with cross-functional teams to mitigate security threats and safeguard data assets.

1. Data Security Policies and Compliance: Develop and implement data security policies, procedures, and standards that align with organizational goals and regulatory requirements. Ensure compliance with data protection regulations and stay updated on the latest trends and technologies in data security.
2. Data Inventory: Collaborate with business units to identify sensitive data types, including PII, intellectual property, and confidential data. Develop and maintain a data inventory and establish data flows to track sensitive data, facilitating the creation of data protection policies.
3. Data Loss Prevention: Deploy and manage DLP solutions to prevent unauthorized data exfiltration, leakage, or loss. Configure DLP policies to monitor and control data movement across endpoints, networks, and cloud environments.
4. Data Classification Solution: Develop and maintain data classification policies and guidelines to categorize data based on sensitivity and criticality. Implement data classification tools to facilitate labeling data according to predefined criteria.
5. Digital Rights Management (DRM): Implement and configure DRM solutions to protect digital assets and intellectual property from unauthorized access or distribution. Develop DRM policies and procedures to define rules for accessing, sharing, and managing digital content.
6. Secure Data Transfer: Define requirements for restrictions on sensitive data transfer and create DLP policies to enforce these requirements.
7. Encryption and Data Protection Measures: Manage encryption technologies to secure data transmission, storage, and disposal. Advocate for robust data protection measures, including regular backups and restoration testing.
8. Security Assessments and Audits: Conduct regular data security assessments to identify vulnerabilities. Recommend and implement mitigation strategies.
9. Incident Response and Management: Monitor for data breaches and coordinate with cybersecurity teams to investigate and resolve incidents. Oversee secure disposal of data assets.
10. Collaboration and Integration: Work with IT and other departments to embed data security measures into business processes and technology development, including secure coding practices.
11. Training and Awareness: Lead training programs on data security best practices to increase organizational awareness.

1. Contribute to departmental strategy, policies, and procedures aligned with client needs.
2. Manage activities of direct reports to ensure efficiency.
3. Assist in budget preparation and risk management.
4. Implement continuous improvement initiatives based on international best practices.
5. Ensure timely and accurate reporting.

• Protection of organizational data from unauthorized access or loss.
• Compliance with data protection laws.
• Enhanced employee awareness of data security practices.

Internal: Accounting, Procurement, Treasury, Operations Technology, Internal Audit, and other departments.

External: Vendors and service providers.

Education: Bachelor’s degree in Cybersecurity, Computer Engineering, Computer Science, IT, or related field. A Master’s degree is desirable.

Certifications: At least one cybersecurity certification such as CDPSE, CISA, CISSP, or CISM. Additional certifications in information assurance or data privacy are a plus.

Experience: Minimum 5 years of experience in data security or related fields, with expertise in data protection strategies, laws (GDPR, CCPA), cloud security, NIST, and ISO27001 frameworks. Experience in multinational companies and in the energy/utilities sector is preferred.

Location: Dubai, United Arab Emirates | Posted on: 08/18/2025

Position: Network Security Specialist

Experience Required: 3 to 7 years

Employment Type: Full-time

• Manage Netscout AED & AEM appliances, perform daily health checks, and operational monitoring.
• Fine-tune detection thresholds and filters to optimize DDoS detection and minimize false positives.
• Manage mitigation strategies for volumetric and application-layer DDoS attacks.
• Ensure timely software/firmware upgrades.
• Provide reports and analytics on system performance, threat detection, and incident reviews.
• Administer daily firewall operations, including policy reviews, rule optimization, and log analysis.
• Monitor and analyze security events; perform deep packet inspections to identify threats.
• Configure and maintain security policies, NAT, and VPNs.
• Collaborate with incident response teams to contain and resolve threats.
• Manage and monitor Intrusion Prevention Systems (IPS), ensuring signatures and configurations are up-to-date.
• Investigate alerts, fine-tune IPS rules, and reduce false positives while maintaining strong defenses.
• Provide advanced analysis during intrusion attempts or suspicious activities.
• Deliver 24x7 operational support for system and security monitoring with real-time alert triage.
• Generate operational and security reports with insights, trends, and recommendations.
• Serve as a trusted technical advisor for network security, traffic engineering, and threat visibility.
• Conduct training sessions, knowledge transfers, and technical briefings with stakeholders.
• Escalate complex technical issues to vendor TAC/support and drive resolution.

• Hands-on experience with Netscout AED (Arbor Edge Defense) and Arbor Cloud.
• Firewall administration: Palo Alto, Cisco, or Fortigate.
• IPS management and tuning.
• Strong knowledge of DDoS mitigation strategies and traffic engineering.
• Experience in log analysis, incident investigation, and troubleshooting complex network security issues.
• Excellent communication and reporting skills.
• Ability to handle escalations and coordinate with vendor support teams.

• Certifications such as PCNSE, CCNP Security, NSE (Fortinet), or Netscout Certified.
• Experience in a SOC/NOC environment with large-scale enterprise networks.
• Strong analytical skills for pattern recognition and security recommendations.