210 Quality Assurance Managers jobs in Dubai

Oversee, maintain, and continuously improve the QMS covering all GxP and health-regulated activities related to the storage, distribution, and commercialization of healthcare products within the UAE, ensuring compliance with MOH, GDP, and principal company requirements.

Lead the QA team in implementing and maintaining quality systems, procedures, and documentation aligned with regulatory and corporate policies.

Develop, implement, and enforce Quality Assurance standards and SOPs, ensuring operational readiness for inspections by regulatory authorities and principal company auditors.

Oversee all QMS activities, including CAPAs, deviations/investigations, change control, document control, and product release according to partner and regulatory obligations.

Implement and manage best practice systems across all warehouse and distribution operations, covering delivery, storage, temperature control, expiry management, damage handling, and disposal, ensuring adherence to quality and regulatory standards.

Monitor temperature control mechanisms within the warehouse, ensuring operations stay within validated parameters and defined guidelines.

Ensure compliance with Good Distribution and Storage Practice (GDSP) guidelines issued by MOH, fostering operational excellence across the supply chain.

Collaborate with cross-functional teams to ensure quality-related contractual obligations are fulfilled across business partners, vendors, and internal functions.

Oversee the qualification process of vendors, verifying their quality systems and compliance with GDP, regulatory, and contractual requirements.

Manage and oversee internal and external audits, ensuring inspection readiness, facilitating successful inspections by MOH, Municipality, Quality Assurance, and principal companies, and minimizing violations or penalties.

Facilitate and conduct training programs, providing tools, techniques, and guidance to ensure team achievement and maintenance of high-quality standards and regulatory compliance.

Monitor and report quality metrics to senior management, providing insights and recommendations for quality improvement and decision-making.

Identify and report quality violations, lead root cause investigations, and implement effective CAPAs to address non-conformances.

Ensure timely, accurate submissions of regulatory filings and reports, maintaining adherence to deadlines and compliance requirements.

Manage all Quality Agreements with business partners and vendors, ensuring their validity, updates, and relevance.

Oversee the execution of the Employee Training Program to maintain continuous qualification of staff in accordance with standards.

Identify, assess, and manage quality risks, escalating issues to senior management as needed.

Oversee the management of product recalls, returns, and destruction, including regulatory notifications, dispatch of recall letters, and coordination with MOH approval and collection processes in line with SOPs.

• Manage import and export permits and approvals for shipment release from MOH.
• Coordinate with Logistics for import permit requirements and with principal companies for documentation.
• Ensure necessary documents are attached before submission for registration (e.g., registration certificate, packing list).
• Coordinate with MOH officials for timely approval of import/export activities.
• Verify shipment details against import permits before MOH submission.
• Handle submission of release forms, supplier invoices, and batch samples for MOH approval.
• Re-export rejected items and liaise with MOH officials.
• Update logistics on shipment details and ensure timely deliveries.
• Ensure cold storage goods are received in good condition as per quality procedures and policies.
• Monitor semi-controlled goods from importation to dispatch, ensuring compliance with MOH and DOH requirements, and submit monthly reports.
• Address customer complaints and review expired/near expiry item reports, ensuring proper handling and updates in Oracle.

• Build and maintain effective relationships with MOH personnel and regulatory authorities.
• Facilitate successful product launches through ongoing communication with regulatory bodies.
• Conduct regular visits and calls to relevant stakeholders.

• Bachelor's or master's degree in pharmacy.
• Certification in Supply Chain Management, Quality Assurance, or Lean Six Sigma is desirable.

Disclaimer: Naukrigulf.com is a platform connecting jobseekers and employers. Candidates should verify the legitimacy of employers independently. We do NOT endorse requests for money or sharing personal/bank details. For security, visit Security Advice and report any fraud to

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Established in the 1930s as a trading business, Al-Futtaim Group today is one of the most diversified and progressive, privately held regional businesses headquartered in Dubai, United Arab Emirates. Structured into five operating divisions; automotive, financial services, real estate, retail and healthcare; employing more than 35,000 employees across more than 20 countries in the Middle East, Asia and Africa, Al-Futtaim Group partners with over 200 of the world's most admired and innovative brands. Al-Futtaim Group's entrepreneurship and relentless customer focus enables the organization to continue to grow and expand; responding to the changing needs of our customers within the societies in which we operate.

By upholding our values of respect, excellence, collaboration and integrity; Al-Futtaim Group continues to enrich the lives and aspirations of our customers each and every day

Overview of the role :

To oversee and enhance the quality assurance and quality control (QA/QC) processes across our FM Operations in the UAE. The ideal candidate will ensure compliance with ISO standards, client SLAs, and regulatory requirements, while driving continuous improvement in service delivery through process audits, CAFM system optimization, and operational excellence.

Responsible to manage CAFM system, QMS, technical training. Work in a team environment to develop and implement best practices that emphasize service quality, continuous improvements in meeting all customer requirements.

What you will do :

1. Quality Management System

• Develop, implement, and maintain QA/QC policies, procedures, and standards in line with ISO 9001, ISO 14001, OHSAS 18001/ISO 45001, and client requirements.
• Provide support for the management of supply chains and ensure compliance with QHSE standards through audits and reviews of operating practices and systems.
• Continuously monitor QHSE requirements and regulations imposed by government and semi-government bodies, ensuring they are incorporated and complied with as applicable.
• Set quality objectives, update and maintain operational risk assessments, and contribute to the digitization of processes.
• Conduct process gap analyses, identify and implement corrective measures, and develop and maintain QA/QC reports.
• Closely control expectations related to QHSE and ensure all required standards are applied.
• Attend client quality management meetings. Handle the prequalification of vendors and subcontractors in accordance with QMS requirements.

2. Quality Audits & Inspection

• Conduct regular process and site audits, including internal and subcontractor audits, to ensure adherence to FM best practices, KPIs, and contractual obligations.
• Verify that the QHSE standards comply with the applicable procedures and standards.
• Perform internal audits as per QHSE procedures, identify non-conformities, conduct root cause analysis, and recommend corrective and preventive actions.
• Generate non-conformance reports and follow up on NCRs and HSE ATRs to ensure timely closure.
• Prepare internal audit reports with the necessary statistics and details.
• Develop look-ahead plans for upcoming audits.
• Carry out material quality inspections and submit corresponding reports.

3. Training & Development

• Plan, develop, and implement training programs for the operations team.
• Coordinate with internal trainers and external training specialists for the delivery of both technical and soft skills training.
• Support the training and development of all staff to ensure awareness and understanding of QHSE standards and their relevance to business objectives.
• Conduct QMS induction and awareness training sessions for technicians, supervisors, and engineers.
• Prepare training documents and presentations, and maintain all related training records and forms.

4. CAFM-Field service management software

• Act as the key focal point for all CAFM-related requests and activities, and develop processes and procedures to ensure robust documented systems are in place for both internal and external users/providers.
• Ensure all workflow processes are up to date and reflect current working practices.
• Take a lead role in clarifying and resolving CAFM-related queries for both internal and external users.
• Identify gaps and improvement opportunities for simplified and efficient operations.
• Regularly conduct system health checks, report problems, identify faults, and liaise with the IT department and software developers for operational issues while keeping the operations team updated.
• Develop and maintain reports, dashboards, and KPIs.

5. QHSE

• Contribute to safe systems of work and the development of the quality management system by ensuring all work practices comply with relevant safety standards.
• Ensure that measures to protect personal safety and well-being are always in place, and that personal actions do not jeopardize the safety and well-being of others.
• Implement all HSE policies, Safe Operating Procedures, and Safe Work Instructions (toolbox talks) to prevent potential incidents at all times.

Required skills to be successful :

• Ability to communicate clearly and professionally at all levels
• Able to analyze issues, identify root causes, and deliver practical and timely solutions.
• High regard for the quality of work and commitment to maintaining standards across the team and organization.
• Expertise in ISO standards and regulatory requirements, including ISO 9001 (QMS), ISO 14001 (EMS), ISO 45001 (OH&S), and UAE FM regulations such as DCD, DM, ADM, and Trakhees
• Strong ability to conduct internal and external audits, identify non-conformities, and implement corrective and preventive actions (CAPA)
• Solid understanding of client contracts, service level agreements (SLAs), and performance benchmarks to effectively manage KPIs

What equips you for the role :

• A bachelor's degree in engineering (Mechanical/Electrical), Facilities Management, or a related field
• 10 years of experience in Facilities management and Quality controls & Quality assurance.
• Certifications such as ISO 9001 Lead Auditor and NEBOSH/IOSH are preferred.
• Strong expertise in CAFM systems including FSI, Maximo, SAP PM, Planon, or similar digital FM tools.
• Proven experience in conducting process audits, overseeing FM service delivery, and managing subcontractor quality is essential.

About Al-Futtaim Engineering & Technologies

Al-Futtaim Engineering & Technologies offers customers complete engineering and systems integration solutions.
The Engineering arm operates in the UAE, Qatar, Saudi Arabia and Egypt providing a wide variety of products and services from air conditioning, scaffolding and access solutions, elevators and escalators, control and life safety, facilities management, building products, MEP, Energy Management, Technology Infrastructure and Digital Transformation.
The Technologies division provides complete business solutions to large, medium and small customers that include, contact centre solutions, business applications, business intelligence, data management, advanced analytics amongst others. The IT infrastructure portfolio comprises IP telephony, ELV systems, networking solutions, professional audio-visual solutions and managed services.
These solutions are further complemented by services that include project management, installation, testing, commissioning and after-sales maintenance contracts.

China State Construction Engineering Corporation (CSCEC ME) is recruiting a QA/QC Manager for a High Rise Tower Project in Dubai.

Duties and Responsibilities:

• Develop and Implement Project Quality Plan and Procedures.
• Responsible for set up the structure of the project quality team and managing the day to day operations related to their tasks.
• Support the project leaders in setting up project performance metrics. Monitoring and reporting to the project team on an agreed frequency.
• Conduct Regular Formal/Informal Surveillance at site.
• Responsible for reviewing the project specification and preparation of Inspection Test Plans.
• Prepare/Review Method Statement and ensure the Quality Control aspects are considered.
• Prepare and Submit QA/QC Report as required.
• Liaise with the corporate office for quality reporting.
• Managing the External and Internal Nonconformities, liaising with external and internal stakeholders accordingly.
• Setup the inspection system framework and ensure all activities are being inspected.
• Manage and conduct the material inspection process prior to the client's inspection.
• Managing the Internal/external team responsible for quality testing.
• Set up the project logs and system for recording all the performed testing.
• Ensure that all the QA/QC records are in place and traceability of documents is feasible.
• Prepare and conduct an internal training program prior to the start of any activity.
• Manage the equipment calibration program.
• Conduct Internal Audits to ensure compliance to the ISO and the project management system.

Requirements:

• Bachelor's Degree in Civil Engineering
• 12+ years of experience

Dubai, United Arab Emirates | Posted on 07/24/2025

myZoi is changing lives for the better for those who deserve itthe most. We are an exciting fintech start-up aiming to promote financialinclusion globally. Our vision is to provide a level playing field to theunbanked and the underbanked in accessing essential financial services in anaffordable, convenient, and transparent fashion. We are looking for smart,ambitious, and purpose-driven individuals to join us in this journey. Pleaseapply via the link below if you are interested.

The Role

We are looking for a Quality AssuranceManager for FCC Operations reporting to the FCC Operations Manager. You will beresponsible to lead and implement our quality assurance framework acrossfinancial crime compliance activities. This role will play a key part inensuring the effectiveness, accuracy, and consistency of FCC screening andtransaction monitoring processes, conduct ongoing training and drive a cultureof continuous improvement.

What You’ll Do:

QualityOversight

• Oversee the quality assurance of name screening, sanctionsscreening, PEP/adverse media screening, fraud and transaction monitoringalerts.
• Ensure high-quality alert dispositioning and consistent adherenceto internal FCC policies and procedures.
• Identify errors, trends, and gaps in analyst performance andrecommend remediation actions.

ProcessReview & Improvement

• Conduct regular QA reviews and deep dives to assess the qualityand completeness of alert reviews and investigations.
• Monitor the effectiveness of the QA framework and proposeenhancements in methodology and scope.
• Collaborate with the FCC team to refine investigation playbooksand quality benchmarks.
  

Training& Coaching

• Design and implement a training and upskilling program for FCCanalysts based on QA findings.
• Provide ongoing coaching and feedback to improve investigationquality and consistency.
• Maintain a knowledge repository of common issues and bestpractices for FCC processes.

Reporting& MI

• Prepare periodic QA reports for senior management and regulators,highlighting findings, trends, and corrective actions.
• Track and monitor KPIs and quality metrics to support performancereviews and risk reporting.

StakeholderManagement

• Work closely with the MLRO, FCC Operations, Compliance, Risk, andTechnology teams to align QA outcomes with broader compliance goals.
• Support internal and external audits and regulatory reviews as theQA point of contact.

Regulatory and Business Conduct

• Display exemplary conduct and live by the Standard CharteredGroup’s Code of Conduct.
• Take personal responsibility for embedding the highest standards ofethics, including regulatory and business conduct. This includesunderstanding and ensuring compliance with, in letter and spirit, allapplicable laws, regulations, guidelines and the Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate andresolve risk, conduct and compliance matters

Key Stakeholders

• MLRO
• Compliance
• Internal Audit
• Regulators and their appointed auditors (where applicable)

Who You Are:

• You have strong communication skills, curiosity and are a quicklearner.
• You enjoy a creative fast paced agile world
• You enjoy mentoring and teaching other developers to create a worldclass cohesive team
• You are a self starter and able to drive and navigate independently
• You enjoy making friends, having fun
• You’re happy to dig in when all hell breaks loose!

What You’ll Need:

• An open and curious attitude
• Ability to collaborate with all levels of management.
• Able to manage conflicting priorities and situation
• In-depth knowledge on financial service products including storevalue facility, retail payment services and consumer protection
• Bachelor's degree in Finance, Business, Law, or a related field;professional certifications (e.g., CAMS, ICA) are a plus.
• 6–8 years of relevant experience in financial crime compliance,preferably in name screening, sanctions, or transaction monitoring.
• Minimum 3 years in a QA or audit-related role within FCC.
• Strong understanding of local, regional and global AML/CFTregulatory requirements and typologies.
• Excellent analytical, writing, and communication skills.
• Proven track record of designing and running QA frameworks anddelivering training.
  

Join to apply for the FCC Quality Assurance Manager role at myZoi | Financial Inclusion Technologies

Join to apply for the FCC Quality Assurance Manager role at myZoi | Financial Inclusion Technologies

myZoi is changing lives for the better for those who deserve it the most. We are an exciting fintech start-up aiming to promote financial inclusion globally. Our vision is to provide a level playing field to the unbanked and the underbanked in accessing essential financial services in an affordable, convenient, and transparent fashion. We are looking for smart, ambitious, and purpose-driven individuals to join us in this journey. Please apply via the link below if you are interested.

The Role

We are looking for a Quality Assurance Manager for FCC Operations reporting to the FCC Operations Manager. You will be responsible to lead and implement our quality assurance framework across financial crime compliance activities. This role will play a key part in ensuring the effectiveness, accuracy, and consistency of FCC screening and transaction monitoring processes, conduct ongoing training and drive a culture of continuous improvement.

What You’ll Do:

Quality Oversight

• Oversee the quality assurance of name screening, sanctions screening, PEP/adverse media screening, fraud and transaction monitoring alerts.
  
• Ensure high-quality alert dispositioning and consistent adherence to internal FCC policies and procedures.
  
• Identify errors, trends, and gaps in analyst performance and recommend remediation actions.
  

Process Review & Improvement

• Conduct regular QA reviews and deep dives to assess the quality and completeness of alert reviews and investigations.
  
• Monitor the effectiveness of the QA framework and propose enhancements in methodology and scope.
  
• Collaborate with the FCC team to refine investigation playbooks and quality benchmarks.
  

Training & Coaching

• Design and implement a training and upskilling program for FCC analysts based on QA findings.
  
• Provide ongoing coaching and feedback to improve investigation quality and consistency.
  
• Maintain a knowledge repository of common issues and best practices for FCC processes.
  

Reporting & MI

• Prepare periodic QA reports for senior management and regulators, highlighting findings, trends, and corrective actions.
  
• Track and monitor KPIs and quality metrics to support performance reviews and risk reporting.
  

Stakeholder Management

• Work closely with the MLRO, FCC Operations, Compliance, Risk, and Technology teams to align QA outcomes with broader compliance goals.
  
• Support internal and external audits and regulatory reviews as the QA point of contact.
  

Regulatory and Business Conduct

• Display exemplary conduct and live by the Standard Chartered Group’s Code of Conduct.
  
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Code of Conduct.
  
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters
  

Key Stakeholders

• MLRO
  
• Compliance
  
• Internal Audit
  
• Regulators and their appointed auditors (where applicable)
  

Who You Are:

• You have strong communication skills, curiosity and are a quick learner.
  
• You enjoy a creative fast paced agile world
  
• You enjoy mentoring and teaching other developers to create a world class cohesive team
  
• You are a self starter and able to drive and navigate independently
  
• You enjoy making friends, having fun
  
• You’re happy to dig in when all hell breaks loose!
  

What You’ll Need:

• An open and curious attitude
  
• Ability to collaborate with all levels of management.
  
• Able to manage conflicting priorities and situation
  
• In-depth knowledge on financial service products including store value facility, retail payment services and consumer protection
  
• Bachelor's degree in Finance, Business, Law, or a related field; professional certifications (e.g., CAMS, ICA) are a plus.
  
• 6–8 years of relevant experience in financial crime compliance, preferably in name screening, sanctions, or transaction monitoring.
  
• Minimum 3 years in a QA or audit-related role within FCC.
  
• Strong understanding of local, regional and global AML/CFT regulatory requirements and typologies.
  
• Excellent analytical, writing, and communication skills.
  
• Proven track record of designing and running QA frameworks and delivering training.
  

• Seniority levelMid-Senior level

• Employment typeFull-time

• Job functionGeneral Business

Referrals increase your chances of interviewing at myZoi | Financial Inclusion Technologies by 2x

Dubai, Dubai, United Arab Emirates AED10,000.00-AED14,000.00 2 hours ago

Dubai, Dubai, United Arab Emirates 12 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Dubai, United Arab Emirates | Posted on 07/24/2025

myZoi is changing lives for the better for those who deserve itthe most. We are an exciting fintech start-up aiming to promote financialinclusion globally. Our vision is to provide a level playing field to theunbanked and the underbanked in accessing essential financial services in anaffordable, convenient, and transparent fashion. We are looking for smart,ambitious, and purpose-driven individuals to join us in this journey. Pleaseapply via the link below if you are interested.

The Role

We are looking for a Quality AssuranceManager for FCC Operations reporting to the FCC Operations Manager. You will beresponsible to lead and implement our quality assurance framework acrossfinancial crime compliance activities. This role will play a key part inensuring the effectiveness, accuracy, and consistency of FCC screening andtransaction monitoring processes, conduct ongoing training and drive a cultureof continuous improvement.

What You’ll Do:

QualityOversight

• Oversee the quality assurance of name screening, sanctionsscreening, PEP/adverse media screening, fraud and transaction monitoringalerts.
• Ensure high-quality alert dispositioning and consistent adherenceto internal FCC policies and procedures.
• Identify errors, trends, and gaps in analyst performance andrecommend remediation actions.

ProcessReview & Improvement

• Conduct regular QA reviews and deep dives to assess the qualityand completeness of alert reviews and investigations.
• Monitor the effectiveness of the QA framework and proposeenhancements in methodology and scope.
• Collaborate with the FCC team to refine investigation playbooksand quality benchmarks.
  

Training& Coaching

• Design and implement a training and upskilling program for FCCanalysts based on QA findings.
• Provide ongoing coaching and feedback to improve investigationquality and consistency.
• Maintain a knowledge repository of common issues and bestpractices for FCC processes.

Reporting& MI

• Prepare periodic QA reports for senior management and regulators,highlighting findings, trends, and corrective actions.
• Track and monitor KPIs and quality metrics to support performancereviews and risk reporting.

StakeholderManagement

• Work closely with the MLRO, FCC Operations, Compliance, Risk, andTechnology teams to align QA outcomes with broader compliance goals.
• Support internal and external audits and regulatory reviews as theQA point of contact.

Regulatory and Business Conduct

• Display exemplary conduct and live by the Standard CharteredGroup’s Code of Conduct.
• Take personal responsibility for embedding the highest standards ofethics, including regulatory and business conduct. This includesunderstanding and ensuring compliance with, in letter and spirit, allapplicable laws, regulations, guidelines and the Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate andresolve risk, conduct and compliance matters

Key Stakeholders

• MLRO
• Compliance
• Internal Audit
• Regulators and their appointed auditors (where applicable)

Who You Are:

• You have strong communication skills, curiosity and are a quicklearner.
• You enjoy a creative fast paced agile world
• You enjoy mentoring and teaching other developers to create a worldclass cohesive team
• You are a self starter and able to drive and navigate independently
• You enjoy making friends, having fun
• You’re happy to dig in when all hell breaks loose!

What You’ll Need:

• An open and curious attitude
• Ability to collaborate with all levels of management.
• Able to manage conflicting priorities and situation
• In-depth knowledge on financial service products including storevalue facility, retail payment services and consumer protection
• Bachelor's degree in Finance, Business, Law, or a related field;professional certifications (e.g., CAMS, ICA) are a plus.
• 6–8 years of relevant experience in financial crime compliance,preferably in name screening, sanctions, or transaction monitoring.
• Minimum 3 years in a QA or audit-related role within FCC.
• Strong understanding of local, regional and global AML/CFTregulatory requirements and typologies.
• Excellent analytical, writing, and communication skills.
• Proven track record of designing and running QA frameworks anddelivering training.
  

Join to apply for the Quality Assurance Manager (Arabic Speaker) role at Dicetek LLC.

Get AI-powered advice on this job and access more exclusive features.

• Bachelor’s Degree in Computer Science/Engineering or related field

• Master’s Degree in Computer Science/Engineering or related field
• ISTQB certification
• Certification in Six Sigma, Quality Auditor, Quality Engineer, or Quality Improvement
• In-depth knowledge of Quality Management System (QMS) procedures

• 10+ years of relevant experience
• Knowledge of software testing using automation and manual methods within SDLC
• Manage artifacts like Defect Tracker, Traceability Matrix, Test Reports

• 5+ years in managerial or supervisory roles
• Testing experience with SAP systems
• Knowledge of Tax domain

• Arabic
• English

• Design and execute Test Strategy, Test Plan, Test Scenarios, and Test Cases
• Oversee testing phases: System, Integration, Functional, UAT, Regression
• Ensure products meet quality standards and benchmarks
• Inspect products at various development stages to ensure standards
• Record quality issues and plan defect reduction processes

• Seniority Level: Not Applicable
• Employment Type: Contract
• Job Function: Quality Assurance
• Industries: IT Services and IT Consulting

This job posting is active. Referrals can increase your chances of interview by 2x.

Job Title: Tech Risk Assurance Manager

Job Type: Outsourced, Full Time, On-Site, Long Term

Work Location: Dubai (Dubai Media City), UAE

Benefits: Work Visa and Medical Insurance for self only

Job Summary:

To oversee and manage our client's technology assurance, tech risk assessments, and governance processes. This role involves evaluating the software development life cycle (SDLC), ensuring compliance in release and change management processes, and implementing effective incident management strategies. The ideal candidate will have extensive experience in SDLC assurance, cybersecurity, risk management, governance and should have worked on Tech risk frameworks before and should be able to create a Tech risk assurance framework.

Required Skills and Qualifications:

• Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field.
• Professional certifications such as CISA, CISM, CISSP, CRISC are preferred.
• 7-10 years of experience in IT risk management, cybersecurity, technology assurance, or a related field.
• Experience working in Big 4 consulting firms or similar environments, with a focus on SDLC assurance, change management, and incident management.
• Proven expertise in IT governance frameworks such as COBIT, NIST, ISO 27001, ITIL, and DevOps practices.
• Comprehensive understanding of SDLC assurance processes, including security testing and governance.
• Hands-on experience with Agile and DevOps frameworks for software development and deployment.
• Strong experience in cybersecurity risk assessments, threat monitoring, and vendor risk management.
• Familiarity with release management tools and practices for separation of duties and change control.
• Experience conducting disaster recovery testing, backup assessments, and ensuring business continuity.

Preferred Skills:

• Familiarity with CI/CD pipelines and automation tools within the DevOps landscape.
• Experience with business continuity planning, incident management frameworks, and emergency release processes.
• Previous work in highly regulated industries such as finance, healthcare, or government, dealing with stringent compliance and risk management requirements.

Key Responsibilities:

• SDLC (Software Development Life Cycle) Assurance
• Governance: Review and evaluate the company's SDLC processes, ensuring compliance with governance standards such as code review, testing, and proper approvals before deployment.
• Security in SDLC: Ensure security assessments (e.g., static and dynamic analysis) are integrated at each phase of the SDLC, focusing on potential vulnerabilities.
• Agile and DevOps: Assess the implementation of Agile and DevOps practices, ensuring they meet compliance, governance, and risk management requirements.
• Third-Party Integrations: Evaluate and ensure that third-party integrations (e.g., APIs, credit bureaus, identity verification systems) are managed and secured in the development process.
• Release Management
• Release Process Assurance: Review and assure release management processes, ensuring alignment with change control policies, proper approvals, and adequate testing.
• Segregation of Duties: Ensure the separation of duties between development, testing, and production access to prevent unauthorized changes.
• Emergency Releases: Assess the procedures for emergency releases and patches, ensuring adequate risk mitigation and compliance with governance.
• Change Management
• Documentation and Tracking: Oversee the process for documenting and tracking change requests, including code changes, infrastructure updates, and software patches.
• Impact Assessment: Ensure that each change request undergoes a thorough impact assessment, taking into account security, compliance, and operational risks.
• Approval Workflows: Review and manage change approval workflows, ensuring comprehensive risk mitigation plans such as rollback strategies and pre-deployment testing.
• Incident Management
• Incident Response Plan: Develop, review, and continuously improve the company's incident response plan, ensuring rapid identification, communication, and resolution of incidents.
• Post-Incident Reviews: Ensure the organization conducts root cause analysis and lessons learned sessions after each incident to prevent recurrence.
• Metrics and Reporting: Manage incident reporting processes, ensuring that incidents are reported to key stakeholders in a timely manner and comply with regulatory requirements.
• Tech and Cybersecurity Risk Assessments
• Risk Identification: Review technology and cybersecurity risks, ensuring that vulnerability assessments and penetration testing are conducted regularly.
• Threat Monitoring: Oversee the company's threat monitoring processes, ensuring the effective use of tools such as SIEM (Security Information and Event Management).
• Vendor Risk Management: Ensure proper risk assessments are conducted for third-party vendors, especially those providing critical services (e.g., cloud services, identity verification).
• Cybersecurity Policies: Develop, assess, and update cybersecurity policies to align with industry standards, including data protection, encryption, and access control policies.
• Resilience and Business Continuity
• Disaster Recovery: Review and continuously improve the company's disaster recovery plans, ensuring that testing is conducted to prevent data loss and ensure minimal downtime.
• Backup Strategies: Assess the organization's data backup and redundancy strategies to ensure resilience against cyber-attacks and operational failures.
• Governance and Reporting
• Risk Reporting: Oversee the process of reporting technology and cybersecurity risks to senior management and board members, ensuring they are aligned with the organization's strategic objectives.
• Key Risk Indicators (KRIs): Evaluate the Key Risk Indicators (KRIs) and metrics used to measure and communicate technology risks, ensuring they are relevant and actionable.

Job Title: Tech Risk Assurance Manager

Job Type: Outsourced, Full Time, On-Site, Long Term

Work Location: Dubai (Dubai Media City), UAE

Benefits: Work Visa and Medical Insurance for self only

Job Summary:

To oversee and manage our client's technology assurance, tech risk assessments, and governance processes. This role involves evaluating the software development life cycle (SDLC), ensuring compliance in release and change management processes, and implementing effective incident management strategies. The ideal candidate will have extensive experience in SDLC assurance, cybersecurity, risk management, governance and should have worked on Tech risk frameworks before and should be able to create a Tech risk assurance framework.

Required Skills and Qualifications:

1. Bachelor's degree in Information Technology, Computer Science, Engineering, or a related field.
2. Professional certifications such as CISA, CISM, CISSP, CRISC are preferred.
3. 7-10 years of experience in IT risk management, cybersecurity, technology assurance, or a related field.
4. Experience working in Big 4 consulting firms or similar environments, with a focus on SDLC assurance, change management, and incident management.
5. Proven expertise in IT governance frameworks such as COBIT, NIST, ISO 27001, ITIL, and DevOps practices.
6. Comprehensive understanding of SDLC assurance processes, including security testing and governance.
7. Hands-on experience with Agile and DevOps frameworks for software development and deployment.
8. Strong experience in cybersecurity risk assessments, threat monitoring, and vendor risk management.
9. Familiarity with release management tools and practices for separation of duties and change control.
10. Experience conducting disaster recovery testing, backup assessments, and ensuring business continuity.

Preferred Skills:

1. Familiarity with CI/CD pipelines and automation tools within the DevOps landscape.
2. Experience with business continuity planning, incident management frameworks, and emergency release processes.
3. Previous work in highly regulated industries such as finance, healthcare, or government, dealing with stringent compliance and risk management requirements.

Key Responsibilities:

1. SDLC (Software Development Life Cycle) Assurance
1. Governance: Review and evaluate the company's SDLC processes, ensuring compliance with governance standards such as code review, testing, and proper approvals before deployment.
2. Security in SDLC: Ensure security assessments (e.g., static and dynamic analysis) are integrated at each phase of the SDLC, focusing on potential vulnerabilities.
3. Agile and DevOps: Assess the implementation of Agile and DevOps practices, ensuring they meet compliance, governance, and risk management requirements.
4. Third-Party Integrations: Evaluate and ensure that third-party integrations (e.g., APIs, credit bureaus, identity verification systems) are managed and secured in the development process.
2. Release Management
1. Release Process Assurance: Review and assure release management processes, ensuring alignment with change control policies, proper approvals, and adequate testing.
2. Segregation of Duties: Ensure the separation of duties between development, testing, and production access to prevent unauthorized changes.
3. Emergency Releases: Assess the procedures for emergency releases and patches, ensuring adequate risk mitigation and compliance with governance.
3. Change Management
1. Documentation and Tracking: Oversee the process for documenting and tracking change requests, including code changes, infrastructure updates, and software patches.
2. Impact Assessment: Ensure that each change request undergoes a thorough impact assessment, taking into account security, compliance, and operational risks.
3. Approval Workflows: Review and manage change approval workflows, ensuring comprehensive risk mitigation plans such as rollback strategies and pre-deployment testing.
4. Incident Management
1. Incident Response Plan: Develop, review, and continuously improve the company's incident response plan, ensuring rapid identification, communication, and resolution of incidents.
2. Post-Incident Reviews: Ensure the organization conducts root cause analysis and lessons learned sessions after each incident to prevent recurrence.
3. Metrics and Reporting: Manage incident reporting processes, ensuring that incidents are reported to key stakeholders in a timely manner and comply with regulatory requirements.
5. Tech and Cybersecurity Risk Assessments
1. Risk Identification: Review technology and cybersecurity risks, ensuring that vulnerability assessments and penetration testing are conducted regularly.
2. Threat Monitoring: Oversee the company's threat monitoring processes, ensuring the effective use of tools such as SIEM (Security Information and Event Management).
3. Vendor Risk Management: Ensure proper risk assessments are conducted for third-party vendors, especially those providing critical services (e.g., cloud services, identity verification).
4. Cybersecurity Policies: Develop, assess, and update cybersecurity policies to align with industry standards, including data protection, encryption, and access control policies.
6. Resilience and Business Continuity
1. Disaster Recovery: Review and continuously improve the company's disaster recovery plans, ensuring that testing is conducted to prevent data loss and ensure minimal downtime.
2. Backup Strategies: Assess the organization's data backup and redundancy strategies to ensure resilience against cyber-attacks and operational failures.
7. Governance and Reporting
1. Risk Reporting: Oversee the process of reporting technology and cybersecurity risks to senior management and board members, ensuring they are aligned with the organization's strategic objectives.
2. Key Risk Indicators (KRIs): Evaluate the Key Risk Indicators (KRIs) and metrics used to measure and communicate technology risks, ensuring they are relevant and actionable.