65 Information Security jobs in the United Arab Emirates

Job Title: Virtual Chief Information Security Officer (vCISO)
Location: Dubai (Remote)
Industries: Healthcare, Shipping, and more

1. Develop and implement security policies and procedures.
2. Conduct risk assessments and manage compliance.
3. Lead incident response and disaster recovery efforts.
4. Provide cybersecurity advice and training.
5. Collaborate with IT teams and present security reports to executives.

1. Proven experience as a CISO or similar role.
2. Knowledge of security frameworks and regulations.
3. Strong communication and leadership skills.
4. Relevant certifications (CISSP, CISM, CCISO) preferred.
5. Experience in healthcare and shipping industries is a plus.

1. Competitive salary.
2. Flexible remote work.
3. Opportunity to work with leading companies.
4. Professional development and training.

Send your resume to .

Dubai, United Arab Emirates | Posted on 16/06/2025

IFZA Dubai is the most dynamic and truly international Free Zone Community in the UAE, optimizing the country's strategic location and world-class infrastructure. We provide easy, reliable, and fast company formation services through our network of Professional Partners and Government Authorities.

Job Overview:

The Information Security Analyst will be responsible for protecting IFZA's information systems by identifying, assessing, and mitigating security risks. This role involves monitoring, analyzing, and responding to security incidents, implementing security measures, and ensuring compliance with industry standards and regulations. The ideal candidate is proactive, detail-oriented, and possesses strong technical and analytical skills.

Main Responsibilities:

• Threat Monitoring and Incident Response :
• Monitor network traffic and security alerts for potential threats using SIEM tools (e.g., Microsoft Sentinel).
• Investigate and respond to security incidents, including malware infections, phishing attacks, and unauthorized access.
• Conduct root cause analysis and document incident reports with remediation recommendations.
• Risk Assessment and Vulnerability Management :
• Perform regular vulnerability scans and penetration testing to identify weaknesses in systems and applications.
• Collaborate with IT teams to prioritize and remediate vulnerabilities.
• Conduct risk assessments to evaluate potential security threats and recommend mitigation strategies.
• Security Policy and Compliance :
• Implement, and enforce security policies, procedures, and standards in alignment with frameworks such as NIST, ISO 27001, or GDPR.
• Ensure compliance with regulatory requirements and industry’s best practices.
• Assist in preparing for and responding to internal and external audits.
• Security Awareness and Training :
• Conduct security awareness training for employees to promote best practices (e.g., password management, phishing prevention).
• Create and distribute educational materials on emerging cyber threats.
• System and Network Security :
• Configure and manage security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection solutions.
• Implement and monitor encryption, authentication, and access control mechanisms.
• Threat Intelligence and Research :
• Stay updated on the latest cyber threats, vulnerabilities, and attack vectors.
• Analyze threat intelligence reports and apply findings to enhance organizational security posture.

• Bachelor’s in Engineering , Computer Science, or related field.
• 8+ years of experience in Information Security.
• Minimum 3 + years hands-on experience in SOC, blue-team, or security engineering roles.
• Proven expertise with Microsoft Sentinel, Microsoft Defender, Incident management, Compromised recovery, patch management and vulnerability management platform .
• Solid grasp of TCP/IP, Windows/Linux internals, AWS/Azure security primitives.
• Scripting for automation (Python, Bash, or PowerShell).
• Familiarity with MITRE ATTACK mapping and threat-hunting methodology.
• CompTIA Security+, CEH, GRC, CCNA or CCNP - Security.
• Analytical mindset with strong investigation and documentation discipline.
• Clear verbal/written communication for incident briefings and executive reports.
• Ability to multitask and stay calm under pressure.
• Experience with Zero Trust architecture projects.
• Knowledge of privacy regulations (GDPR, HIPAA, PDPA).
• Exposure to DevSecOps .
  
• International team (over 60 nationalities)
  
• 24 working days as annual leave
  
• Annual flight home
  
• Life insurance plan
  
• Medical insurance plan (with the option to upgrade at your own cost)
  

In this role, you will have the opportunity to work closely with one of our esteemed clients known for its commitment to quality and innovation. They have chosen Dautom as their trusted partner for their upcoming projects.

Job Title: Senior Information Security Consultant

MAIN DUTIES AND RESPONSIBILITIES:

• Monitoring various IT & Information security tools such as SIEM, Cyber defence system, DLP, Proxy, Email Gateway, Application Control, Advanced threat protection tools, Antivirus systems, etc to ensure that Information security is not compromised.
• Monitor, prioritize and direct responses to enterprise-wide IT & Information security activities from the 24x7x365 Security Operations Center. Conduct triage (level 3) on information security incidents, including root cause analysis, and coordinate with custodians for remediation.
• Conduct regular vulnerability assessments on Applications, Systems & Network of the organization and categorize, prioritize, and remediate vulnerabilities without any negative impact on the systems.
• Conduct Compliance Audits & Security assessments on Applications, Systems, and Network to determine compliance as per CIS Benchmarks and standards requirements.
• Engage in threat hunting activities to ensure the Information systems across the organization are safe & secure and proactively roll out controls (including IOCs).
• Conduct sandbox testing and forensics on affected/infected systems and collect evidence to identify the root causes of infections.
• Project management and implementation/rollout of new IT security/IS solutions. Management and maintenance of IS/IT Security tools and solutions.
• Conduct periodic security assessments such as but not limited to pentesting, configuration reviews, and produce reports.
• Act as a liaison for internal and external audits.
• Ideal candidate should have at least 4-5 years of IT security experience and will report to the Manager - Information Security. Industry certification is an advantage.

Benefits and Perks:

• Competitive salary and bonus structure.
• Comprehensive health and wellness benefits.
• Opportunities for professional development and growth.
• Flexible work arrangements, including remote work options.
• Employee recognition programs and a collaborative team environment.

• Root Cause Analysis
• Remediation
• Information Security
• Project Management
• Testing
• Maintenance Management

Performs user and access administration on designated systems and applications, in accordance with the defined policies, standards and procedures of the organization
Performs system security administration on designated technology platforms, including operating systems, applications and network security devices, in accordance with the defined policies, standards and procedures of the organization, as well as with industry best practices and vendor guidelines
Performs installation and configuration management of security systems and applications, including policy assessment and compliance tools, network security appliances and host-based security systems
Performs threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities
Applies patches where appropriate and, at the direction of (manager responsible for security administrator), removes or otherwise mitigates known control weaknesses, such as unnecessary services or applications or redundant user accounts, as a means of hardening systems in accordance with security policies and standards
Locates and repairs security problems and failures
Collates security incident and event data to produce monthly exception and management reports
Performs normal and exceptional processing of user access and change requests, escalating such requests when appropriate
Reports unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation processes
Assists and trains junior team members in the use of security tools, the preparation of security reports and the resolution of security issues
Develops and maintains documentation for security systems and procedures
Researches, recommends, evaluates and implements cybersecurity solutions that identify and/or protect against potential threats, and respond to security violations
Provides guidance to junior members of the team

Qualifications:

Minimum of (2+) years of IT or network security experience:
(1-2) years of experience for a junior security administrator
(3-5) years of experience for a senior security administrator
Bachelor's degree in information systems, or equivalent work experience
Certifications from (list of required vendor certifications).
Certifications from (list of required independent security organizations offering certification) or other certifications at the discretion of (manager responsible for security administrator)
Strong analytical and problem-solving skills to enable effective security incident and problem resolution
Proven ability to work under stress in emergencies, with the flexibility to handle multiple high-pressure situations simultaneously
Ability to work well under minimal supervision
Strong team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IT-business personnel
Strong written and verbal communication skills
Strong customer/client focus, with the ability to manage expectations appropriately, provide a superior customer/client experience and build long-term relationships
Experience in developing, documenting and maintaining security procedures
Technical Competency
Knowledge of cybersecurity principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management
Technical proficiency with security-related systems and applications, especially (list of technologies used by (company name))
Experience in developing, documenting and maintaining security procedures
Knowledge of network infrastructure, including routers, switches, firewalls and associated network protocols and concepts
Working technical knowledge of current systems' software, protocols and standards
Strong knowledge of TCP/IP and network administration/protocols

Network Infrastructure Information Security Network Security Firewalls Escalation Routers Risk Assessment Information Systems Switches Operating Systems Interpersonal Skills Infrastructure Security Vendors Administration Documentation Software Preparation Communication Management

• An Engineering Degree, with 5+ Years experience in local / international Data Protection in BFSI.
• Hands on experience in implementing data protection regulations.
• Expertise in data protection laws and regulations (like CBUAE Consumer Data Protection, UAE Privacy Laws and applicable global data protection requirements).
• Certification related to CIPP/E, CIPM, CIPT, CDPO, etc are preferred.
• Strong knowledge of information Security, Data Protection and IT Systems.
  

• Assist in implementing Bank's policies and procedures in accordance with data protection laws and regulations (like CBUAE Consumer Data Protection, UAE Privacy Laws and applicable global data protection requirements) and advising the business on data protection and privacy matters.
• Leading as required and maintaining cross-functional working groups to coordinate data protection efforts, including current projects and initiatives and regulatory awareness across the Bank.
• Executing data protection and privacy monitoring and compliance testing reviews.
• Evaluate the existing data protection framework and identify areas of non or partial compliance and rectify any issues.
• Maintain an inventory of all personal data stored and data processing activities, including how and why the company collects, shares and uses personal data.
• Work with the Contracts, Vendor Management and Compliance/Business departments to ensure that third-party suppliers contracts and operating-level agreements meet privacy requirements.
• To support and promote a culture of awareness of data security / data protection throughout the bank.
• Hold training with staff members across different business units who are involved in data handling or processing.
• Work with and manage external vendors / auditors during assessments.

• Information Security Analyst – Identity & Access Governance
  

• A Bachelor Degree, with 3-4 Years experience in Information Security – Identity Access Governance
• Proficiency with Identity & Access Management (IAM) and Privilege Access Management (PAM) solutions
• Strong knowledge of User access management and Privilege Access control methodologies
• Experience in performing user access review and application specific user/privilege access reviews
• Working experience in T24 Core banking Application preferred user access review
• Ability to facilitate both technical and business discussions
• Strong analytical mindset that allows you to deeply understand topics
• Excellent verbal and written communication skills combined with a knack for clear articulation
• Knowledge of Microsoft Office, MS project, MS Share Point
  

• Conduct periodic certification & re-certification process across various Business/IT Applications, Platforms, etc
• Manage and maintain Proficiency with Identity & Access Management (IAM) and Privilege Access Management (PAM) solutions
• Design, develop and maintain the role based user access matrix
• Facilitate Privilege ID Management and Password management for all IT Infrastructure including OS, DB, WAS, Applications, etc.
• Collaborate with stakeholders to ensure security controls are applied effectively around privilege access
• Collaborate with cross-functional teams to ensure timely delivery of IAM services, communicate IAM related updates to stakeholders for both IT and Business Applications.

• Project Manager – Information Security
  

• An Engineering Degree, with 6+ Years experience in Information Security / Data Protection Project Management in BFSI.
• Hands on experience in leading information security/ cyber security projects.
• Proficient in application/ technology architectural security design principles, cyber threat assessments, software development life cycle, firewalls, data protection/ security, vulnerability scanning, application security, etc.
• Demonstrated expertise in the management of technology and application risks and controls
• Proficient in application/ technology architectural design principles, cyber threat assessments, software development life cycle, firewalls, data protection/ security, vulnerability scanning, application security, etc.
• Demonstrated expertise in the management of technology and application risks and controls
• Expertise in Information Security & Data Protection standards (like ISO 27001, PCI DSS, UAE IAS, SWIFT CSP, GDPR, UAE Data Protection, etc.).
• Strong knowledge of information Security, Data Protection and Banking / IT Systems.
• Ability to facilitate both technical and business discussions.
• Strong analytical mindset that allows you to deeply understand topics
• Excellent verbal and written communication skills combined with a knack for clear articulation
• Knowledge of Microsoft Office, MS project, MS Share Point, JIRA, Asana or other project management tools
• Certificates such as CISA, CISM, CISSP, Prince 2, PMP RMP, Agile PM, PMI-ACP, etc.
  

• Day-to-day management of information security projects requirements (agile and waterfall) for implementation of business applications and technology systems and including time, scope, budget, etc.
• Manage the internal relationship with Information Technology (IT) and PMO process owners supporting the service, assisting with the definition and requirements of Information Security requirements in line with Bank’s Information Security Policy.
• Identification and proactive management of projects risks and issues
• Supporting the EPMO / IT Project Managers to manage the backlog/requirement gathering and guide the team in balancing the priorities and scope
• Ensure the implementation of business applications and technology solutions adhere to bank’s information security policy and regulatory standards by cultivating a strong risk and control environment.
• Drive transparent, quantifiable, and long-lasting control improvements by working together with the internal information security team and other project implementation team like EPMO, IT, Business teams, etc.
• Provide clear direction to business, product, and technology stakeholders so they can manage their risks effectively.
• Contribute to the creation of a culture of risk and control that is centered on proactive awareness of and enhancement of the control environments.
• Work with the Contracts, Vendor Management and Compliance/Business departments to ensure that third-party suppliers contracts and operating-level agreements meet information security requirements.
• Lead and oversee budget, staffing, and contracting
• Work with and manage external vendors / auditors during assessments.

Join to apply for the Engineer - information Security role at Roads and Transport Authority

Join to apply for the Engineer - information Security role at Roads and Transport Authority

KEY RESULTS ACCOUNTABILITIES
# Perform other duties and responsibilities related to the job as assigned

Job Description
KEY RESULTS ACCOUNTABILITIES
# Perform other duties and responsibilities related to the job as assigned
# Participate in monitor security alerts and events using Security Information and Event Management (SIEM)
# Participate in escalate complex incidents to higher-level analysts or teams
# Participate in perform initial triage and investigation of security events
# Provide feedback on the effectiveness of existing SIEM rules and recommend enhancements for improved detection capabilities
# Support the development and fine-tuning of SIEM rules, correlation logic, and detection use-cases based on observed trends and emerging threats
# Document incident details, analysis steps, and response actions in a structured and timely manner
# Assist in building and maintaining playbooks and standard operating procedures (SOPs) for incident response and investigation
# Contribute to periodic security reports and summaries for internal stakeholders
# Collaborate with senior SOC analysts to develop threat detection strategies and validate detection logic
# stay up to date on the latest security threats, trends, and technologies
# Assist in security audits, vulnerability assessments, and compliance activities as needed

• Strictly Adhere to RTA Information Security policies, procedures, and processes.
• Strictly follow the Information Security data sharing guidelines for all internal and external data transfers.
• Immediately report any Information Security incidents to your line manager and IT support for prompt guidance and resolution.
• Actively participate in all assigned Information Security training and awareness sessions to enhance your knowledge and address potential Information Security risks.
• Always comply with instructions and guidance provided by your line manager in line to the Information Security requirements.
  

• Seniority levelEntry level

• Employment typeFull-time

• Job functionInformation Technology
• IndustriesGovernment Administration

Referrals increase your chances of interviewing at Roads and Transport Authority by 2x

Get notified about new Information Security Engineer jobs in Dubai, Dubai, United Arab Emirates.

Dubai, Dubai, United Arab Emirates 1 year ago

Dubai, Dubai, United Arab Emirates 1 year ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

VAM Systems is a Business Consulting, IT Solutions and Services company.

VAM Systems is currently looking for an Information Security Consultant for our UAE operations with the following skillsets & terms and conditions:

• Talented and enthusiastic individual to join the Security Operations Team.
• Extensive knowledge and hands-on experience with leading SIEM tools such as Logrhythm, QRadar, Securonix, etc., and integration with security products.
• Very good technical expertise in monitoring the SIEM to detect and identify cybersecurity-related incidents.
• Knowledgeable in managing Privilege Access Management, Data classification, and Data Leakage Prevention toolsets from an administration perspective and upkeep of such data security systems.
• Skilled administrator on leading email security toolsets such as CrowdStrike and next-generation SOC tools such as EDR, Cyber Threat Intelligence, Vulnerability Assessment toolsets, and ZScaler policy management and administration.
• Adept in following concepts such as attack surface management, Security incident response process, and procedures while mitigating and remediating threats.
• Knowledge of the type of events that both Firewalls, Active Directory, and other security-related devices produce.
• Daily duties will include reviewing malicious emails and network files, extracting Indicators of Compromise, and using the resulting data to create rules to block and detect similar activity in the future.
• Strong knowledge of security concepts, latest threats, and vulnerabilities. Network security infrastructure design and implementation experience.
• Use incident, event, problem, configuration, change, and release management practices to report, track, implement solutions, and resolve security-related issues.
• Help analyze and shore up any possible vulnerabilities; must also be aware of any unusual activity and react swiftly to prevent or mitigate breaches.
• Support in maintaining information security risk registers with regular updates and mitigation plans and ensure timely closures of threats and risks.

The selected candidates shall join VAM Systems – UAE and shall be deputed to one of the Organizations in UAE.

Should you be interested in this opportunity, please send your latest resume in MS Word format at the earliest to sheena.riju(at)vamsystems.com.