257 IT Governance jobs in the United Arab Emirates

GSSTech Group is seeking a highly experienced Governance, Risk & Compliance (GRC) - Senior IT Auditor to join our dynamic team within the banking sector. The successful candidate will have a strong understanding of IT audit, risk management, and compliance processes, particularly within banking or financial institutions.

• Conduct comprehensive IT audits to assess the adequacy and effectiveness of IT controls
• Evaluate organizational compliance with internal policies and applicable regulations
• Identify risks related to IT projects, processes, and systems and work with management to mitigate these risks
• Prepare and present audit findings and recommendations to senior management and stakeholders
• Assist in developing, updating, and implementing IT audit methodologies and practices
• Collaborate with Clients' business units to provide guidance on IT governance, risk management, and compliance considerations
• Provide insights into potential areas of improvement for IT governance framework
• Monitor industry trends and regulatory requirements to ensure the organization remains compliant
• Support and drive the implementation of GRC tools and frameworks

• Bachelor's degree in Information Technology, Computer Science, or a related field
• Professional certifications such as ISO 27001 Lead Auditor, CISA, CISM, CISSP or similar are highly preferred
• Minimum 5 years of experience in IT audit, risk management, or compliance, preferably in the banking sector
• Experience working as IT Auditor or GRC team in a Big 4 firm (EY, PwC, Deloitte, KPMG) or equivalent consulting environment
• Proven experience in conducting audits or assessments based on: ISO/IEC 27001, ISO 22301, NIST CSF, PCI DSS
• Strong knowledge of data privacy laws, cybersecurity, and regulatory compliance requirements (e.g., PCI-DSS)
• Solid understanding of ISO, business continuity, information security management systems (ISMS), and regulatory compliance frameworks
• Excellent analytical and problem-solving skills
• Exceptional communication skills, both verbal and written, with the ability to present complex information clearly

• In-depth knowledge of IT governance frameworks and audit methodologies
• Understanding of risk management and compliance requirements specific to the banking sector
• ISO frameworks relevance to IT Audits
• Experience in auditing instant payment systems, RTGS, SWIFT
• Experience in auditing UPI compliance is desirable
• Experience in auditing against Central bank regulations such as Central bank of the UAE, SAMA is a plus

• Proficiency in IT audit tools and methodologies
• Knowledge of regulatory compliance (e.g., GDPR, PCI-DSS) and risk frameworks (e.g., COSO, COBIT)

• Ability to manage multiple audits simultaneously while meeting deadlines
• Leadership qualities to mentor junior auditors and collaborate with various teams

• Minimum of 5 years of experience in IT auditing, risk management, or compliance
• Experience in banking and financial services is a highly preferred

• Visa Sponsorship
• Private Premium Health Insurance
• Paid Time Off

Dubai, Dubai, United Arab Emirates 5 hours ago

We are seeking a highly experienced and motivated Information Security Governance Professional to ensure the effective implementation and ongoing maintenance of our organization's Information Security Management System (ISMS).

This role requires a strong understanding of cybersecurity best practices, IT compliance frameworks, and a proactive approach to risk management.

• Key Responsibilities:
• Integration and Optimization of Compliance Tracking Processes:
  1. Streamline and improve existing compliance tracking processes.
  2. Develop and implement automated solutions to enhance efficiency and accuracy.
  3. Ensure timely and accurate reporting on compliance status.
• Cybersecurity Standards Enforcement and Communication:
  1. Ensure adherence to relevant cybersecurity standards and regulations.
  2. Communicate and enforce cybersecurity policies and procedures effectively across the organization.
  3. Conduct regular audits and assessments to identify and mitigate risks.
• Compliance Management Tool Administration:
  1. Manage and maintain compliance management tools.
  2. Configure and customize tools to meet specific business requirements.
  3. Ensure data integrity and accuracy within the compliance management system.
• Critical Incident Response and Escalation:
  1. Monitor IT systems and security controls for any deviations or anomalies.
  2. Escalate critical security incidents and issues to appropriate stakeholders.
  3. Conduct root cause analysis of security incidents and implement corrective actions.
• Cybersecurity Awareness and Training:
  1. Develop and deliver cybersecurity awareness training programs.
  2. Provide ongoing support and guidance to employees on cybersecurity best practices.
• Performance Metrics and Progress Tracking:
  1. Define and track key performance indicators related to IT security and compliance.
  2. Prepare regular reports on the status of IT security and compliance initiatives.
• IT Security Enhancements Design and Planning:
  1. Identify and evaluate opportunities for improving IT security and compliance.
  2. Develop and implement plans for enhancing IT security controls and processes.

• Bachelor's degree in Computer Science, Information Systems, or a related field.
• 5+ years of experience in IT security and compliance roles.
• Strong understanding of cybersecurity frameworks and best practices.
• Experience with compliance management tools and platforms.
• Excellent communication, interpersonal, and presentation skills.
• Strong analytical and problem-solving skills.
• Ability to work independently and as part of a team.

• CISSP, CISM, CISA, or other relevant cybersecurity certifications.

Competitive salary and benefits package

Opportunity to work on challenging and rewarding projects

Collaborative and supportive work environment

Opportunities for professional growth and development

This role is responsible for ensuring effective governance and risk management practices across the organization.

• Key Accountabilities:

Liaise with internal stakeholders to remediate issues and ensure compliance with regulatory requirements.

Responsible for institutionalizing procedures and controls within the segment to assure good business practices.

Keep updated with regulatory changes and identify impact on the business proactively.

• End to end responsibility for incident management and RCSA from origination to closure.
• Act as the key point of contact between the business and Compliance, Legal, Ops Risk, and ITD.
• Coordinate Operational Risk Management and Business Continuity (BCM) initiatives within the division.
• Support governance related activities in line with organizational principles.
• Ensure Onboarding/KYC team processes cases within agreed TAT/SLA.
• Support implementation of KYC related projects and initiatives.
• Adherence to Risk Framework & Audit Operational Policy & Process.
• Support the Onboarding/KYC team to process KYC New to Bank (NTB) & refresh cases.
• Assist senior management in implementing Department's action plan by owning respective objectives.

Formulate and upgrade SOPs, SLAs, and other requisite documentation.

Work closely with Credit, Policy, and Risk teams to develop diligent policy and process documentation.

Further upgrade and update policy & TM RAC basis business opportunity and market dynamics.

• Design a competitive incentive structure & Sales contests.
• Lead all projects related to governance and risk.
• Support ongoing reviews of BBG DOAs Authorized signatories and operationalization of activities.
• Support coordination between BBG and Group Internal Audit to ensure audit comments are properly addressed.
• Support the team in delivering management of Alerts.
• Supports the implementation of major transformation programs.
• Early warning infrastructure deployment for all business banking products.
• Formulate & manage end to end process for customer communication.
• Manage marketing related tasks for the division.
• Work closely with product managers and area managers to develop an organized annual marketing plan.
• Ensure adherence to customer complaint management process.
• Engage with process owners and internal stakeholders for NPS monitoring.

Join Us at ITHR Technologies Consulting LLC

Position: Information Technology Process, Governance & ITSM Consultant

Location: Dubai, UAE | Type: Full-Time | Industry: IT Services | Cybersecurity | Governance & Risk

• Develop and implement ITSM frameworks (ITIL or equivalent) to support the full service lifecycle from strategy through continual improvement.
• Design, document, and optimize IT processes (e.g., Incident, Change, Problem, Service Request, Configuration Management) to improve operational efficiency and maturity.
• Establish and enforce IT governance policies, controls, and standards in alignment with ISO 27001, PCI DSS, ISO 22301, and other regulatory / compliance frameworks.
• Conduct and lead internal audits, risk assessments, and compliance programs, maintaining up-to-date risk registers and mitigation plans.
• Support business continuity and disaster recovery planning efforts, ensuring service availability and organizational resilience.
• Manage third-party vendor risk, assess data protection requirements, and oversee compliance with security standards.
• Deliver training and awareness programs to embed ITSM and governance practices across the organization.
• Provide metrics and reporting on service performance, process maturity, compliance gaps, and risk trends to senior leadership.

• 8+ years of experience in IT governance, ITSM, risk management, or process improvement roles.
• Proven knowledge of ITIL, ISO standards, COBIT, or other ITSM / governance frameworks.
• Strong background in process design, documentation, and continual improvement initiatives.
• Adept at bridging business and technical needs through stakeholder engagement and clear communication.
• Preferred certifications: ITIL v4, ISO 27001 Lead Implementer / Auditor, ISO 22301, CBCI, or related.

• Collaborate with senior consultants and technology leaders in ITSM, cybersecurity, and governance domains.
• Contribute to high-impact transformation projects for regional and global clients.
• Be part of a fast-paced, transparent, and improvement-driven work culture.
• Gain access to certification support, skills development, and leadership opportunities.

Apply Now

Join us in redefining how organizations manage and secure their IT operations.

Reach out via LinkedIn or send your CV to

ITHR #ITSM #ITGovernance #CyberSecurityJobs #RiskManagement #DubaiJobs #ISO27001 #PCIDSS #BusinessContinuity #ProcessImprovement #HiringNow #GRC

Governance, Risk and Compliance (GRC) Director - 1-Year Engagement – role at MENA Consultant.

Location: UAE .
Years of Experience: 12-15+ years .
Project Duration: 1 year .
Working Arrangement: on-site .
Language Requirements: Fluency in English (written and spoken) .
Starting Date: as soon as possible .

We are seeking a highly experienced Governance, Risk, and Compliance (GRC) Director to lead and deliver complex advisory engagements over a 1-year period . The ideal candidate will bring deep expertise in GRC frameworks , especially governance, risk management, and Internal Control over Financial Reporting (ICFR) . The role requires prior experience in management consulting and risk advisory , preferably in a public accounting or advisory firm. This individual will lead client-facing teams, manage stakeholder expectations, and ensure the delivery of high-quality, risk-conscious, and regulatory-compliant solutions.

Key Requirements

• 12 to 15 total years of experience, with a minimum of 8 years of relevant experience in GRC, Risk Advisory, or Financial Accounting Advisory Services (FAAS).
• Prior experience in a management consultancy.
• Proven experience leading governance, risk, and ICFR-focused projects.
• Strong technical risk management expertise, especially in advisory contexts.
• Deep understanding of regulatory frameworks and compliance best practices.
• Experience managing large-scale client engagements, including budget oversight and project delivery.
• Demonstrated ability to develop strategies that address client risk exposure and regulatory expectations.

Other Qualifications

• Bachelor's or Master's degree in Accounting, Risk Management, Business Administration, or a related field.
• Strong leadership and team management skills, including delegation, mentoring, and performance review.
• Excellent written and verbal communication skills in English; ability to lead presentations and write clear technical reports.
• High level of professional discretion, integrity, and client service orientation.
• Ability to research, analyze, and provide guidance on regulatory changes, industry best practices, and emerging technologies.

Key Responsibilities

• Lead client-facing GRC and FAAS projects, managing teams and ensuring strategic alignment with client goals.
• Develop and implement risk mitigation and governance frameworks, with a strong focus on ICFR and compliance.
• Serve as the primary point of contact for clients, providing guidance on risk, compliance, and regulatory matters.
• Ensure timely, high-quality delivery of client work that meets expectations and complies with regulatory standards.
• Oversee project planning, budgeting, and resource allocation, and track performance against targets.
• Provide mentorship, feedback, and career development support to engagement team members.
• Stay abreast of regulatory developments and industry standards, and incorporate insights into client solutions.
• Support business development through proposal development and client relationship management.

For more information about the Global Consulting Bootcamp, visit:

For more information about the MC Club, visit:

• Director

• Contract

• Other

• Staffing and Recruiting

Referrals increase your chances of interviewing at MENA Consultant by 2x

Dubai, Dubai, United Arab Emirates 46 minutes ago

The candidate will be responsible for leading the development and implementation of governance and risk management frameworks. This role focuses on identifying, assessing, and mitigating potential risks to ensure alignment with organizational strategies and regulatory requirements.

• Required (Min. Experience): 8 years of experience in governance and risk management, including at least 2 years of experience managing a team.
• Preferred: Experience leading the identification, assessment, and mitigation of risks across organizational processes, ensuring robust governance frameworks.
• Required Education: Bachelor's Degree in Risk Management, Organizational Resilience, or a relevant field.
• Preferred Certifications: Masters Degree, Certified Risk Manager (CRM), Certified in Organizational Resilience, OSHA, NEBOSH, Certified Governance Professional (CGP), Business Continuity, or an equivalent certification.
• Required Experience: Manager

About Dubai Holding Land Estate:

Dubai Holding Land Estates oversees a diverse land portfolio strategically located across Dubai's most sought-after areas. With convenient access to major highways, nearby amenities, and flexible land use options, investors are presented with unique opportunities for development and growth.

Through the centralization of Dubai Holding's land bank, Dubai Holding Land Estates focuses on large-scale master plans, ensuring alignment with the Dubai 2040 Urban Master Plan, whilst also supporting the business's commitment to sustainable urban development and strategic land portfolio management.

Job Purpose:

Lead Governance, Risk & Compliance through the development of governance, risk & compliance strategies, policies, processes, procedures, delegation of authority's matrices and guidelines to mitigate the risks and implement necessary procedures to ensure compliance with company's policies, laws and regulations.

Key Accountabilities:

• Strategy & Framework:
• Develop and implement a comprehensive Governance, Risk & Compliance strategy and framework, covering enterprise-wide risk management, regulatory compliance, and internal controls aligned with business objectives
• Integrate GRC practices with project management where applicable to ensure risk-aware decision making.
• Embed and promote effective governance, risk management, and compliance practices across the vertical to foster a strong risk culture
• Governance:
• Adopt and implement corporate governance best practices.
• Lead and coordinate the development, review, and approval of corporate governance, risk, and compliance policies in collaboration with relevant stakeholders, in line with DH.
• Contribute to the set up and review of internal governance structures for various functions.
• Support Internal Audit /Government Audit teams to facilitate closure of high-risk audit recommendations and identify process gaps and opportunities for improvement.
• Prepare regular reports pertaining to governance dashboards, compliance status, risk management as per DH requirements.
• Enterprise Risk Management:
• Lead implementation of the Risk Management Framework, promoting a risk culture and ensuring risks are managed appropriately by Risk Owners.
• Conduct risk assessment and oversee mitigation plans.
• Appoint, train and support risk champions across functions.
• Monitor compliance and report on significant risks to GRC Director.
• Develop and review annual risk appetite.
• Maintain and report the vertical risk register, and report to GRC Director, CEO and DH Head of ERM on major risks.
• Compliance:
• Identify, assess and monitor compliance Risks.
• Assist, support and advise Executive Management and employees on Compliance obligations.
• Support functions in policy and procedures development.
• Coordinate with legal regulatory updates and alerts (as applicable).
• Assess the adequacy and effectiveness of the internal policies and procedures, systems and controls to manage Compliance Risk.
• Provide advisory services to the functions on an on-going basis, including responding to queries and issues as they arise.
• Policies, Processes and Procedures:
• GRC promotes a standardized approach to policies and procedures to avoid conflicts and gaps & ensures that policies reflect best practices and industry standards reviewing and approval to ensure they adequately address risks and compliance obligations before seeking final approvals
• DOA:
• Develop and maintain vertical DOA and ensure alignment with DH DOA.
• Provide guidance and training teams on accurate interpretation and application of the DOA.
• Coordinate DOA changes and updates, stakeholder reviews and approvals.
• Transactional Compliance Review:
• Review transaction submitted to vertical CEO for compliance with internal policies and DOAs.
• Internal Control Framework:
• Assess and test internal controls to manage business and financial risks (including fraud risks).
• Ensure control design and control effectiveness are adequately tested.
• Report findings and ensure corrective actions are implemented.
• Executive Management Committee focal point of contact:
• Act as a focal point of contact for EMC document submission.
• Ensuring compliance with all internal DOAs, policies and procedures
• Disseminate EMC instructions and provide updates to EMC secretary.
• Business Continuity & Crisis Management:
• Establish and maintain BCM protocols as per DH guidelines.
• Planning and Reporting:
• Assist in development of operational plans.
• Monitor compliance and suggest improvements based on best practices.
• Prepare accurate and timely reports to Management as per DH requirements.
• Prepare reports to support informed decision-making by senior management.

Key Requirements:

• Graduate/post-graduate in any discipline preferably in Finance/Accounting
• CIA or any equivalent certification is a must.
• Knowledge of Governance, Risk & Compliance techniques and methods.
• Minimum 7–10 years of experience in Governance, Compliance, and Risk Management, with at least 5 years of experience within a consultancy firm, with exposure to GRC development.

About the Benefits:

At Dubai Holding, we're committed to nurturing the success and well-being of our colleagues. Join our dynamic and diverse team, and enjoy a comprehensive benefits package that includes competitive compensation, career development opportunities, and a collaborative work environment. We strongly believe in creating an empowered workforce that will help us build a connected city for tomorrow. We are committed to attracting the brightest minds and nurturing the most pioneering candidates who desire to make a great impact on the future of Dubai.

• Conduct comprehensive security assessments and risk analyses to identify gaps against information and cybersecurity standards.
• Perform compliance assessments.
• Collaborate with clients and internal teams to develop and implement information security policies, standards, and procedures.
• Perform security audits to evaluate the effectiveness of security controls and systems.
• Analyze and interpret security assessment findings, and provide recommendations for remediation.
• Strong knowledge on data governance, data privacy regulations and protection requirements.
• Advise on security best practices, industry standards, and emerging trends to enhance the organization's security posture.
• Develop and deliver security awareness training programs to educate employees about information security practices and policies.
• Comprehensive knowledge on security incidents and process flow to respond to security breaches or other cybersecurity-related issues in a timely manner.
• Evaluate and recommend security practices and solutions, such as firewalls, intrusion detection systems, and encryption tools.
• Collaborate with cross-functional teams to ensure security requirements are integrated into system development lifecycle processes.
• Stay up to date with the latest security threats, vulnerabilities, and technologies through continuous learning and professional development.

• Bachelor's degree in Computer Science, Information Systems, or a related field.
• Relevant certifications (e.g., CISSP, CISM, CISA) are highly desirable.
• Proven experience in information security consulting or a similar role, preferably in diverse industries.
• Deep understanding of information security principles, risk management, and industry best practices.
• Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, PCI-DSS).
• Strong knowledge of management policy development.
• Strong knowledge on technical policy development - network security, application security, encryption technologies, and secure coding practices.
• Experience with security assessment tools and techniques, interpreting results from vulnerability scanning and penetration testing and translating into gaps.
• Excellent analytical and problem-solving skills, with the ability to assess complex security risks and provide practical recommendations.
• Strong communication and interpersonal skills to effectively collaborate with clients, stakeholders, and technical teams.
• Ability to prioritize tasks, manage multiple projects simultaneously, and meet deadlines.
• Ethical and professional conduct with a commitment to maintaining confidentiality and integrity.

About Dubai Holding Land Estate:

Dubai Holding Land Estates oversees a diverse land portfolio strategically located across Dubai’s most sought-after areas. With convenient access to major highways, nearby amenities, and flexible land use options, investors are presented with unique opportunities for development and growth.

Through the centralization of Dubai Holding’s land bank, Dubai Holding Land Estates focuses on large-scale master plans, ensuring alignment with the Dubai 2040 Urban Master Plan, whilst also supporting the business’s commitment to sustainable urban development and strategic land portfolio management.

Job Purpose:

Lead Governance, Risk & Compliance through the development of governance, risk & compliance strategies, policies, processes, procedures, delegation of authority’s matrices and guidelines to mitigate the risks and implement necessary procedures to ensure compliance with company's policies, laws and regulations.

Key Accountabilities:

• Strategy & Framework:
• Develop and implement a comprehensive Governance, Risk & Compliance strategy and framework, covering enterprise-wide risk management, regulatory compliance, and internal controls aligned with business objectives
• Integrate GRC practices with project management where applicable to ensure risk-aware decision making.
• Embed and promote effective governance, risk management, and compliance practices across the vertical to foster a strong risk culture
• Governance:
• Adopt and implement corporate governance best practices.
• Lead and coordinate the development, review, and approval of corporate governance, risk, and compliance policies in collaboration with relevant stakeholders, in line with DH.
• Contribute to the set up and review of internal governance structures for various functions.
• Support Internal Audit /Government Audit teams to facilitate closure of high-risk audit recommendations and identify process gaps and opportunities for improvement.
• Prepare regular reports pertaining to governance dashboards, compliance status, risk management as per DH requirements.
• Enterprise Risk Management:
• Lead implementation of the Risk Management Framework, promoting a risk culture and ensuring risks are managed appropriately by Risk Owners.
• Conduct risk assessment and oversee mitigation plans.
• Appoint, train and support risk champions across functions.
• Monitor compliance and report on significant risks to GRC Director.
• Develop and review annual risk appetite.
• Maintain and report the vertical risk register, and report to GRC Director, CEO and DH Head of ERM on major risks.
• Compliance:
• Identify, assess and monitor compliance Risks.
• Assist, support and advise Executive Management and employees on Compliance obligations.
• Support functions in policy and procedures development.
• Coordinate with legal regulatory updates and alerts (as applicable).
• Assess the adequacy and effectiveness of the internal policies and procedures, systems and controls to manage Compliance Risk.
• Provide advisory services to the functions on an on-going basis, including responding to queries and issues as they arise.
• Policies, Processes and Procedures:
• GRC promotes a standardized approach to policies and procedures to avoid conflicts and gaps & ensures that policies reflect best practices and industry standards reviewing and approval to ensure they adequately address risks and compliance obligations before seeking final approvals
• DOA:
• Develop and maintain vertical DOA and ensure alignment with DH DOA.
• Provide guidance and training teams on accurate interpretation and application of the DOA.
• Coordinate DOA changes and updates, stakeholder reviews and approvals.
• Transactional Compliance Review:
• Review transaction submitted to vertical CEO for compliance with internal policies and DOAs.
• Internal Control Framework:
• Assess and test internal controls to manage business and financial risks (including fraud risks).
• Ensure control design and control effectiveness are adequately tested.
• Report findings and ensure corrective actions are implemented.
• Executive Management Committee focal point of contact:
• Act as a focal point of contact for EMC document submission.
• Ensuring compliance with all internal DOAs, policies and procedures
• Disseminate EMC instructions and provide updates to EMC secretary.
• Business Continuity & Crisis Management:
• Establish and maintain BCM protocols as per DH guidelines.
• Planning and Reporting:
• Assist in development of operational plans.
• Monitor compliance and suggest improvements based on best practices.
• Prepare accurate and timely reports to Management as per DH requirements.
• Prepare reports to support informed decision-making by senior management.

Key Requirements:

• Graduate/post-graduate in any discipline preferably in Finance/Accounting
• CIA or any equivalent certification is a must.
• Knowledge of Governance, Risk & Compliance techniques and methods.
• Minimum 7–10 years of experience in Governance, Compliance, and Risk Management, with at least 5 years of experience within a consultancy firm, with exposure to GRC development.

About the Benefits:

At Dubai Holding, we're committed to nurturing the success and well-being of our colleagues. Join our dynamic and diverse team, and enjoy a comprehensive benefits package that includes competitive compensation, career development opportunities, and a collaborative work environment. We strongly believe in creating an empowered workforce that will help us build a connected city for tomorrow. We are committed to attracting the brightest minds and nurturing the most pioneering candidates who desire to make a great impact on the future of Dubai.