335 Information Security Officer jobs in the United Arab Emirates

Purpose and summary:

As the Information Security Officer, individual will be responsible for overseeing and implementing the information security program of the company within the regulatory framework of Abu Dhabi Global Market. ISO will play a crucial role in safeguarding company systems, networks, and data from potential threats and ensuring compliance with industry standards and best practices.

Key Responsibilities:

• Information Security Strategy:
  Develop and implement an effective information security strategy aligned with the business objectives of the company and regulatory requirements of Abu Dhabi Global Market.

• Risk Management:
  Conduct regular risk assessments and vulnerability scans to identify potential security threats and vulnerabilities. Develop and implement risk mitigation strategies to minimize security risks to the organization.

• Security Policies and Procedures:
  Develop, review, and enforce information security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.

• Security Awareness Training:
  Coordinate and conduct security awareness training programs for employees to promote a culture of security awareness and compliance throughout the organization.

• Incident Response and Management:
  Establish an incident response plan and coordinate responses to security incidents, including conducting investigations, implementing remediation measures, and reporting incidents to relevant stakeholders.

• Security Monitoring and Compliance:
  Implement security monitoring tools and techniques to detect and respond to security incidents in real-time. Ensure compliance with regulatory requirements, including reporting obligations to Abu Dhabi Global Market authorities.

• Vendor Risk Management:
  Evaluate the security posture of third-party vendors and service providers. Develop and implement vendor risk management processes to ensure that vendors comply with information security requirements.

• Security Audits and Assessments:
  Coordinate and participate in security audits and assessments conducted by internal and external auditors. Implement corrective actions to address findings and ensure continuous improvement of the information security program.

Qualifications:

• Bachelor's degree in information technology, Computer Science, or a related field. Advanced degree or professional certifications (e.g., CISSP, CISM, CISA) preferred.
• Minimum of 10 years of experience in information security management, preferably in the financial services industry or fintech sector.
• In-depth knowledge of information security principles, standards, and best practices, including ISO 27001, NIST Cybersecurity Framework, and PCI DSS.
• Experience in developing and implementing information security policies, standards, and procedures.
• Strong analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex technical concepts to non-technical stakeholders.
• Experience in conducting security awareness training and promoting a culture of security awareness within the organization.
• Familiarity with regulatory requirements applicable to the financial services industry, particularly in Abu Dhabi Global Market.
• Proven track record of managing security incidents and coordinating incident response efforts.
• Experience in conducting security audits, assessments, and compliance reviews.
• Knowledge of security monitoring tools and techniques for detecting and responding to security incidents in real-time.

Work Environment

• Required to work office hours.
• Flexibility to work longer hours from time-to-time as and when the job requires.
• Open to travel requirements if needed.

Job Description

Role Purpose

The overall responsibility to plan and implement policies to protect a DCAA's computer network and data from various forms of security breaches. Also, responsible for identifying vulnerabilities and to resolve them, ensuring that DCAA's network and data remain secure.

Key Responsibilities

1. Identifying vulnerabilities in DCAA technology network.

2. Developing and implementing a comprehensive plan to secure DCAA's computing network.

3. Monitoring network usage to ensure compliance with security policies.

4. Keeping up to date with developments in IT security standards and threats.

5. Performing penetration tests to find any flaws.

6. Collaborating with management and the IT department to improve security.

7. Documenting any security breaches and assessing their damage.

8. Educating DCAA's staff about security systems and best practices for information security.

9. Maintain documents management, and management review of ISO standards related to IT implemented in DCAA, namely ISO27001, and ISO20001.

10. Develop and implement information security policies, protocols and procedures, and implementing those network security policies in accordance with the standards and policies approved by the competent government organizations.

11. Plan and coordinate security operations, and create reports for management on security status

12. Ensure the Implementation of the fundamentals of cyber security governance and risk management framework and standardized processes and tools that enable best practice approach to DCAA and optimize organizational maturity level. Include reviewing reports on information security incidents and breaches, and investigate and resolve issues

13. Ensure compliance with non-disclosure and confidentiality agreements, as well as DCAA security policies, to safeguard both government and DCAA confidential information. Address and rectify any ISR audit findings, promptly report security incidents, and engage in ongoing security awareness training to prevent unauthorized access or disclosure.

14. Provide support to (Executive Director Corporate Support and Communication Sector) and perform other related duties as may be assigned from time to time.

Qualifications

Academic Qualifications:

Bachelor's degree in in Computer Engineering or IT science focusing on Cybersecurity, or any equivalent degree in the same field.

Certifications:

• ISO 27001 lead auditor
• ISO 20001 Lead auditor
• Certified Project manager

Professional Experience:

At least (0-2) years' working experience in similar field.

Join to apply for the Information Security Officer (UAE National) role at Dicetek LLC .

• 5-8 years of experience in Information Security Governance, Risk, and Compliance.
• Security Policy Development and Implementation.
• Develop, implement, and maintain comprehensive information security policies, procedures, and guidelines.
• Ensure policies align with business objectives and comply with regulatory requirements.
• Conduct regular risk assessments and vulnerability analyses.
• Identify threats and vulnerabilities; develop mitigation strategies.
• Implement and monitor security controls to manage risks.
• Develop and maintain an incident response plan.
• Lead response to security incidents, including investigation, containment, and recovery.
• Conduct post-incident analyses and report findings to senior management.
• Ensure compliance with regulations and standards (e.g., ISR, DESC Standards, ISO 22301, ISO/IEC 27001).
• Oversee security audits and prepare compliance reports.
• Develop and deliver security awareness training programs.
• Promote security awareness culture within the organization.
• Implement and manage security monitoring tools.
• Review security logs and reports regularly.
• Review security VAPT reports and ensure closure.
• Report on the security program status to senior management.
• Collaborate with IT and other departments to embed security measures.
• Advise senior management on security matters.
• Coordinate with external partners for a comprehensive security posture.
• Prioritize workloads with critical deadlines.

• Seniority level: Not Applicable
• Employment type: Contract
• Job function: Information Technology
• Industries: IT Services and IT Consulting

Referrals increase your chances of interviewing at Dicetek LLC. Get notified about new Security Officer jobs in Dubai, UAE.

The Information Security Officer is responsible for developing and maintaining the hospital's information security framework. The role involves overseeing security operations, ensuring compliance with Abu Dhabi Healthcare Information and Cyber Security Standard (ADHICS), and contributing to key projects such as SOC (Security Operations Center) implementation, SIEM, and Data Loss Prevention (DLP) systems.

• Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.
• Execute periodic and ad-hoc compliance checks and cyber risk assessments in alignment with mandated cyber security policies and guidelines.
• Recommend and implement remedial actions for non-compliance issues.
• Contribute to Risk Management Framework documentation and activities (e.g., system life-cycle support plans, operational procedures, maintenance training materials).
• Participate in risk governance processes to evaluate and address security risks.
• Lead and Monitor the implementation of SOC and SIEM solutions.
• Oversee DLP strategies and governance.
• Perform regular audits, security scans, and risk assessments.
• Define and enforce security protocols, policies, and procedures.
• Ensure compliance with UAE regulations and international standards.
• Conduct cyber security awareness training for staff.
• Collaborate with IT and clinical departments to integrate security into all systems and workflows.
• Investigate and respond to security incidents and breaches.

Competency Standards

Clinical/Technical Competencies:

• Cyber security and privacy principles (confidentiality, integrity, availability).
• Networking protocols and network security threats.
• Laws, regulations, and ethics related to cyber security.
• Information classification and compromise procedures.
• Security scanning, vulnerability assessments and penetration testing.
• PHI (Personal Health Information) data protection standards.
• Security architecture, including topology, protocols, and components.
• Experience with SIEM tools.
• DLP platform experience
• Familiarity with Firewalls, IDS/IPS, and Endpoint Protection.
• Microsoft Azure and Office 365 security solutions.
• ISO 27001 and/or ADHICS implementation experience preferred.

Bachelor's Degree in Information Technology, Computer Science, or Cybersecurity.

Diploma holders with strong relevant experience may be considered.

3–5 years of professional experience in Information Security.

Minimum 2 years of hands-on experience with DLP and SOC/SIEM projects.

Binance is a leading global blockchain ecosystem behind the world's largest cryptocurrency exchange by trading volume and registered users. We are trusted by over 250 million people in 100+ countries for our industry-leading security, user fund transparency, trading engine speed, deep liquidity, and an unmatched portfolio of digital-asset products. Binance offerings range from trading and finance to education, research, payments, institutional services, Web3 features, and more. We leverage the power of digital assets and blockchain to build an inclusive financial ecosystem to advance the freedom of money and improve financial access for people around the world.

The Chief Information Security Officer aims to develop and implement a comprehensive information security strategy for Binance. The role will also ensure that the IT Governance and Security Risk Management Systems align to international best practices and adhere to regulatory requirements as defined by the laws pertaining to regulations of financial markets and virtual assets providers within and from the United Arab Emirates.

• Hands-on implementation of the IT Security Risk Management function for Binance UAE.
• Development and improvement of the security framework, including policies, security standards and processes improvements.
• Lead Security Risk Management with all stakeholders as per Security Risk Framework.
• Accountable to the regulatory authority for all Security and IT Governance matters.
• Maintain and develop security governance practices including regulatory, board and committee reporting.
• Work as part of the three lines of defense model to ensure funds, data and systems are secure.
• Ensure all security obligations for governance, regulatory and compliance matters are delivered.
• Assist the delivery of the internal and external audits related to Technology and Security.
• Drive cyber threat & vulnerability management/penetration tests as per the regulatory framework.
• IT security risk management for new projects and/or any integration with third party vendors.
• Manage Third party integrations risk to ensure alignment with security standards and SLAs.
• Manage the local security team & contribute to continual improvement of the global department.
• Security incident management, including prompt reporting to senior management & other teams.
• Facilitate continual alignment to regulatory compliance obligations and international standards.
• Implement robust resilience best practices to ensure that Binance products remain best in class.

• Currently based in Dubai or Abu Dhabi.
• Bilingual English/Arabic is required to be able to coordinate with overseas partners and stakeholders.
• Held an approved person's role within a regulated financial institution.
• Track record of international company experience and cyber security in a regulatory context.
• A combination of senior management and deep cyber security experience is mandatory.
• Security community contributor either through published material or international conferences.
• Demonstrable experience in a global team with a rich multicultural fast paced environment.
• 10+ years of experience in finance or a related sector, focusing on security and technology compliance in a global firm.
• Bachelor's degree or higher in information technology, cyber security or related field.
• Track record in self-motivated leadership and excellent communication and listening skills.
• Proven management of cyber security operations with hands-on implementation skills.
• Delivery of best practices for international data privacy and information security frameworks.
• NIST Cybersecurity & Privacy Framework, ISO 27001/ISO 27701, CIS and PCI-DSS.
• Must seek excellence by default and show a passion for collaboration and team achievement.
• Demonstrable experience delivering effective business and technical security solutions.
• A passion for the latest cyber security trends and emerging threats is essential.
• Mandatory requirement for experience engaging directly with a regulatory body and implementing regulator's recommendations.
• Certifications are a plus: CISSP, CISM, CEH, CIPP, CIPM, FIM, ISO 27701, ISO 27001 Lead Auditor, and/or ISC2, ISACA, GIAC, CREST.

Why Binance

• Shape the future with the world's leading blockchain ecosystem

• Collaborate with world-class talent in a user-centric global organization with a flat structure

• Tackle unique, fast-paced projects with autonomy in an innovative environment

• Thrive in a results-driven workplace with opportunities for career growth and continuous learning

• Competitive salary and company benefits

• Work-from-home arrangement (the arrangement may vary depending on the work nature of the business team)

Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success.

By submitting a job application, you confirm that you have read and agree to our Candidate Privacy Notice .

The Chief Information Security Officer is responsible for driving the organization's information security strategy, governance frameworks, and operational capabilities. Key objectives include ensuring confidentiality, integrity, and availability of information assets through robust security policies, compliance oversight, cybersecurity risk management, and incident response.

• Develop and implement a comprehensive information security strategy, policies, and governance frameworks aligned with business objectives and regulatory requirements.
• Provide strategic security leadership and advice to senior executives on emerging cyber threats, security risks, and best practices.
• Ensure alignment with national cybersecurity regulations, including international standards such as ISO 27001.
• Lead the identification, assessment, and mitigation of cybersecurity risks across the organization.

This role requires strong analytical and problem-solving skills, excellent communication, and influence at all levels. A high level of integrity, confidentiality, and resilience under pressure is essential.

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or related field (Master's preferred).
• 10+ years of experience in cybersecurity, including at least 5 years in leadership roles within large enterprises or government entities.
• Proven experience developing and implementing cybersecurity strategies and managing complex security programs.

Strong knowledge of information security frameworks and standards is required. Relevant certifications such as CISSP, CISM, CISA are highly desirable.

• Strategic leadership and stakeholder management.
• In-depth understanding of current and emerging cyber threats and technologies.
• Strong analytical and problem-solving skills.
• Excellent communication skills, with the ability to influence at all levels.

Experience with international regulatory frameworks is highly desirable.

Our organization is seeking a skilled Senior Cybersecurity Manager to oversee information security and cybersecurity programs. The ideal candidate will collaborate with local and international teams to ensure compliance with objectives and regulatory frameworks.

• Responsible for monitoring the state of information security and providing regular reports to senior management on cyber risks and vulnerabilities.
• Develops, implements, and updates cybersecurity policies, processes, and procedures in line with our organization's regulatory framework.
• Communicates with top management regarding nonpublic information, integrity, and security of information systems, as well as cybersecurity policies and procedures.
• Collaborates strategically with cross-functional teams to ensure all aspects of information security and cybersecurity are properly monitored and coordinated.
• Conducts continuous monitoring of information security and cybersecurity programs to ensure compliance with objectives, policies, and procedures.
• Identifies and evaluates changes in local regulations, trends in the cybersecurity sector, and new products or countermeasures.
• Ensures the execution of business continuity activities, including periodical business impact analysis, testing, and reporting.
• Works with stakeholders to determine appropriate security objectives and monitor network activity for malicious behavior.
• Monitors vulnerability reports, vendor hot-fixes, and patches for applicability to deployed technologies.
• Ensures proper documentation of account creations, deletions, and permissions, as well as maintains accurate access control records.
• Responsible for developing and implementing cybersecurity and business continuity training programs.

Fuse is building a fully integrated energy company—spanning solar, wind, hydrogen, power trading, and distributed energy systems. We sell directly to consumers to reduce costs and deliver real savings.

We're also creating the Energy Network: a decentralised system of smart devices that rewards users in Energy Dollars for electrifying their homes, shifting usage to off-peak hours, and supporting grid stability—critical for scaling AI and energy-intensive industries.

We're looking for a Chief Information Security Officer (CISO) to lead our company-wide security strategy. You'll protect our infrastructure, digital assets, and customer data while enabling fast, secure growth.

• Define and lead Fuse's security strategy across infrastructure, applications, and data
• Lead hands-on development of security roadmaps, maturity models, and control frameworks tailored to Fuse's risk profile
• Directly contribute to architecture reviews, threat modelling sessions, and key design decisions across product and platform teams
• Build and mentor a high-performing security team, including hiring, coaching, and managing performance
• Develop KPIs and reporting structures to measure and communicate security posture to leadership and the board
• Advise the executive team on security risks, regulatory exposure, and investment priorities to support long-term growth.

• Own company-wide security governance, including data protection, access control, and insider risk
• Ensure compliance with SOC 2, ISO 27001, GDPR, and other relevant frameworks
• Oversee security audits and third-party risk programs.

• Lead threat modelling, risk assessments, and security reviews of critical systems; design and deliver security awareness training programs for all employees to promote a culture of proactive risk management
• Build threat intelligence capabilities to stay ahead of emerging risks
• Balance risk management with product and engineering velocity.

• Own response plans for high-severity threats and incidents
• Build robust detection, containment, and remediation processes
• Drive business continuity and disaster recovery strategy.

• Partner with engineering to embed security in the SDLC and infrastructure
• Guide secure design for cryptographic systems, transaction flows, and the Energy Network
• Ensure resilience across distributed devices and on/off-chain systems.

• Promote a security-first culture across product, data, legal, and compliance
• Represent Fuse externally in customer, regulatory, and industry engagements.

• 5+ years in cybersecurity, with prior leadership or CISO experience
• Deep understanding of cloud security (especially AWS), application security, and modern DevSecOps
• Proven experience securing systems involving digital assets, cryptographic components, or distributed infrastructure
• Strong grasp of regulatory frameworks: SOC 2, ISO 27001, GDPR, NIST, etc
• Background in threat modeling, incident response, and risk management
• Excellent leadership, communication, and stakeholder skills
• Bachelor's or advanced degree in Computer Science, Information Security, or related field

• Experience with CTFs, red/blue team exercises, or offensive security

• Competitive salary and a stock options sign-on bonus
• Biannual bonus scheme
• Fully expensed tech to match your needs
• Paid annual leave
• Breakfast and dinner for office-based employees

We are an equal opportunities employer and welcome applications from all qualified candidates.

We are seeking a seasoned Cyber Security leader to spearhead our Information Security strategy and drive business objectives in a fast-paced, dynamic environment. The ideal candidate will have proven experience leading an Information Security function, with the ability to develop and execute a comprehensive cyber security roadmap that aligns with the company's priorities.

• Develop and implement an Information Security strategy that enables and facilitates the company's business objectives.
• Lead the development of plans for optimising resources and assets being managed within the Information Security function.
• Provide authoritative specialist advice to senior leaders to enable the implementation of policy, projects, and change initiatives.
• Manage relationships with strategic internal stakeholders, building high levels of professional credibility and mutual trust.
• Develop and propose an annual roadmap for Information Security, ensuring alignment with the overall IT strategy.

• Proven experience leading an Information Security function in a similar size, scale, and complexity as ours.
• Strong knowledge of a wide range of cyber security best practice frameworks, including NIST, ISO/ICE 27001, and Cyber Essentials Plus.
• Strong knowledge of a wide range of IT best practice frameworks, such as ITIL, COBIT, and Lean Six Sigma.
• Strong understanding of related technologies, including Microsoft OS, Microsoft security, and Fortinet stacks.
• Certifications and demonstrable knowledge, such as CISSP, CISM, CISA, CRISC, etc.

Gemcorp follows a fair and transparent process, based on the skills and qualifications of candidates. We actively encourage diversity in hiring, aiming for a representative and inclusive workforce.

• Director

• Full-time

• Information Technology
• Industries
• Securities and Commodity Exchanges, Food and Beverage Services, and Industrial Machinery Manufacturing