109 Security Auditor jobs in the United Arab Emirates

We are hiring!

DiXiO is on a mission to innovate financial messaging, and now, you can be part of it too!

We are looking for a Cybersecurity Auditor who will join a team of experts to help us secure our applications for the financial messaging industry. The role holder is responsible for running independent assessments for our clients to ensure that their infrastructures are safe and secure.

Things you will do:

• Execute the day-to-day activities of IT audit engagements, including planning, fieldwork,

reporting and follow up on audit findings

• Responsible for leading and delivering audit assignments globally using a risk-based

approach to deliver a wide range of IT governance, cyber/IT/data security, risk, and

regulatory compliance related audits for various organizations.

• Perform risk-based audits and assess the effectiveness of controls in place

• Evaluate the design and effectiveness of technology controls throughout the business cycle

• Prepare and present written reports and other technical information in a pertinent, concise,

and accurate manner for distribution to management/clients and identify and other related

stakeholders.

To be part of our team, you need to be:

• Ambitious
• Curious and Innovative
• Autonomous
• Team-player

Things that you need to succeed on this job:

• 1 - 2 years of experience in Cybersecurity and IT Risk Management
• MS Office 365 Applications
• Knowledge of Information Security, IT Risk Management, IT Audit, IT Governance, SWIFT CSCF Compliance, ISO/IEC 27001, NIST, COBIT
• Proficient in English and Arabic
• Knowledge of IT infrastructure security (firewalls, databases, OS, etc.)

Why you will love working with us:

If you are searching for an organization that is willing to invest in your professional career, look no more. We provide our Experts with all the tools and investments needed to fulfil their career and professional aspirations. You also don’t need to worry about getting stuck in traffic at 8:00AM, we are 100% remote, and our Experts can work from anywhere! Our team also enjoys an unlimited number of leave days to make sure they are reaching a work-life balance. That’s not all, our packages include a medical insurance and performance-based bonus!

About DiXiO

DiXiO is a company of SWIFT Experts operating in more than 50 countries. In recent years, DiXiO has established itself as the reference in the Financial Messaging industry and was registered as an official SWIFT agent. Today DiXiO is the first global network of trusted experts, making financial messaging simple & secure through expert services & cloud solutions.

Job Title: Cybersecurity Vulnerability Specialist

Our organization is seeking a highly skilled and experienced Cybersecurity Vulnerability Specialist to join our team. The ideal candidate will have a strong background in vulnerability assessments and penetration testing, with excellent analytical and troubleshooting skills.

Key Responsibilities:

• Conduct comprehensive vulnerability assessments and penetration tests for networks, applications, and cloud infrastructure.
• Identify and document vulnerabilities, providing actionable recommendations for remediation.
• Collaborate with the lead consultant to validate and prioritize findings.
• Prepare detailed technical reports and provide guidance on remediation strategies.
• Stay up-to-date with the latest threats, tools, and methodologies in the field.

Qualifications:

• Bachelor's degree in Cybersecurity or a related field.
• At least 3 years of hands-on experience in vulnerability assessments and penetration testing.
• Preferred certifications: OSCP, CEH, or eJPT.
• Proficiency in tools like Burp Suite, Metasploit, Nessus, and Nmap.
• Excellent analytical and problem-solving skills.

We are currently looking for a Vulnerability Assessment and Pentest (VAPT) Manager - Banking for our UAE operations with the following qualifications:

1. Education Level Required:
2. Bachelor's degree in computer science, Network / Cyber Security, or related information technology field.
3. Experience in quality assurance in Vulnerability Assessment and Pentest (VAPT).
4. Skills to verify scripts and test cases before execution for all types of VAPT such as application, internal, external, WiFi, etc.
5. Platform specific (e.g., SIEM / Networking / Operating System) certifications.
6. Security (e.g., SANS / ISC2 / CEH / CISSP / CISM / CISO) certifications.
7. Experience:
8. 7 - 10 years' experience in Information Security or related field.
9. Strong operations knowledge with banking background and hands-on experience in implementing and managing IS applications such as EDR, SIEM, DLP, with network-related experience and education in computer science, Network / Cyber Security, and related certifications.

INSPIRE | EXHILARATE | DELIGHT

For over seven decades, Chalhoub Group has been a partner and creator of luxury experiences in the Middle East. In its pursuit to excel as a hybrid luxury retailer, the Group has curated a portfolio of over 10 owned brands and strengthened its distribution and marketing expertise for over 400 international names across luxury fashion, beauty, jewellery, watches, eyewear, and art de vivre categories.

Every step at Chalhoub Group is taken to build a future where luxury dreams become reality — bridging cultures and crafting memorable experiences for our consumers. Be it by constantly reinventing itself, committing to innovation, or embracing new technologies, the Group is shaping the future of luxury retail. It delivers seamless omnichannel experiences across more than 950 stores, online platforms, and mobile apps. Driving this innovation journey is The Greenhouse — the Group's innovation hub, incubator, and accelerator for startups and emerging businesses, regionally and globally.

Chalhoub Group fosters a people-at-heart culture rooted in diversity, equity, and inclusion, and a workplace catalysed by forward thinking and future-proofing. Today, it brings together over 16,000 talented professionals across eight countries in the Middle East, with a presence in LATAM. Their collective efforts have earned the Group the Great Place to Work certification in several markets.

Sustainability is at the core of the Group's strategy, guided by a clear commitment to people, partners, and the planet. Chalhoub Group is proud to be a member of the United Nations Global Compact, a signatory of the Women's Empowerment Principles, and to have pledged to reach Net Zero by 2040.

What You'll Be Doing

The AI and Information Security Lead will be instrumental in ensuring that AI systems and data assets are secure, compliant, and ethically managed, aligning with global best practices and regional regulatory standards. This role will drive security innovation, mitigate risks associated with AI technologies, and support the organization in adopting AI securely while ensuring the privacy and integrity of its data.

Key Responsibilities

• Develop and execute a comprehensive AI security strategy that aligns with Chalhoub Group's business objectives and digital transformation goals.
• Lead the integration of AI-driven security solutions into the Group's existing cybersecurity architecture, ensuring interoperability, scalability and resilience.
• Establish security frameworks for AI model development, deployment, and lifecycle management, incorporating best practices from NIST AI RMF and CSA's AI Organizational Responsibilities.
• Collaborate with data governance teams to ensure AI models adhere to privacy standards and ethical considerations throughout their lifecycle.
• Work closely with data governance teams to implement robust data protection measures, including encryption, access controls, and anonymization techniques, ensuring compliance with regional data protection laws such as the UAE's Data Protection Law and international standards like GDPR.
• Oversee the secure handling of sensitive data throughout the AI model lifecycle, from development to deployment, supporting business innovation while mitigating risks.
• Identify and assess emerging AI-driven security threats, implementing proactive measures to mitigate risks associated with adversarial AI, model poisoning, and data leakage.
• Lead the development and execution of AI-specific threat models and risk assessments, ensuring alignment with Chalhoub Group's overall risk management framework.
• Stay ahead of emerging threats in AI and data security, providing continuous threat intelligence and mitigation strategies.
• Ensure that AI systems adhere to ethical guidelines, promoting transparency, fairness, and accountability in AI decision-making processes.
• Monitor and enforce compliance with relevant regulations and standards, including ISO/IEC 27001, NIST 800-53, EU AI Act and the UAE's AI Ethics Guidelines.
• Act as a thought leader, driving internal awareness, training programs, and promoting a culture of responsible AI use and ethical data practices.
• Foster collaboration with cross-functional teams, including Tech&Data, legal, data privacy and compliance, to integrate AI security considerations into business processes and technological advancements.
• Engage proactively with external stakeholders, technology partners, vendors, and regulatory bodies to remain informed on emerging trends, best practices, and regulatory shifts relevant to AI and cybersecurity.
• Participate in hackathons, and crowd sourcing platforms effectively to progress on cyber 'definition of good'.

What You'll Need to Succeed

Bachelor's or Master's degree in Cybersecurity, Computer Science, Data Science, Artificial Intelligence, or a related field.

Advanced certifications or specialized courses in AI/ML or AI Security, such as:

• Certified Artificial Intelligence Practitioner or AI Security Practitioner certifications.
• Specialized AI/ML courses from recognized platforms like Coursera, edX, or AI-focused programs.

Industry-Specific Certifications:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Cloud Security Professional (CCSP)
• Certified Ethical Hacker (CEH)

Practical experience with securing AI/ML models, including the development of adversarial machine learning defenses, model validation, and securing AI pipelines.

Familiarity with security frameworks for AI/ML models such as NIST AI RMF, and CSA's AI Organizational Responsibilities.

Proficiency with popular AI/ML tools and libraries, including TensorFlow, PyTorch, scikit-learn, and cloud-based AI platforms (AWS, Azure, Google Cloud).

Knowledge of AI-driven cybersecurity applications, including anomaly detection, threat intelligence, and automated defense systems.

Working knowledge in LLM models like Gemini, Llama, GPT, DALL-E and frameworks like LangChain & Vector databases like Faiss, Pinecone etc.

Deep understanding of AI-specific risks such as model poisoning, adversarial attacks, and data leakage

What We Can Offer You

With us,you will turn your aspirations into reality. We will help shape your journey through enriching experiences, learning and development opportunities and exposure to different assignments within your role or through internal mobility. Our Group offers diverse career paths for those who are extraordinary, every day.

We recognise the value that you bring, and we strive to provide a competitive benefits package which includes health care, child education contribution, remote and flexible working policies as well as exclusive employeediscounts.

We Invite All Applicants to Apply

It Takes Diversity Of Thought, Culture, Background, Differing Abilities and Perspectives to truly Inspire, Exhilarate and Delight our customers. At Chalhoub Group, we are committed to inclusion and diversity.

We welcome all applicants to apply and be part of our exciting future. We ensure equal opportunity for all our applicants without regard to gender, age, race, religion, national origin or disability status.

As a leading organization in the technology domain, we are seeking an exceptional Security Platform Engineer to join our team.

This role performs critical security tasks such as performance and availability monitoring, log analysis, incident detection and response, security event reporting, and content maintenance. The successful candidate will be responsible for detecting and monitoring escalated threats and suspicious activity affecting our servers, networks, appliances, and infrastructure supporting production applications.

• Palo Alto Firewall and SASE experience is essential.
• The ideal candidate will administer our security tools to gather security logs from the environment.
• Responsibilities include lifecycle management of supported security tools/technologies, break-fix, patching, live updates, and adherence to SOPs.
• The selected candidate will document best practices and identify opportunities to make automations that aid the incident response team.
• Prominent skills required include security incident handling and response, attack analysis, malware analysis, network forensics, computer forensics, LAN technologies, Windows and Linux O/S's, and general security infrastructure.
• The chosen candidate will carry out agreed maintenance tasks, ensure knowledge article usage in incident diagnosis and resolution, assist with updating as needed, and perform defined tasks to monitor service delivery against SLAs.
• The successful individual will investigate causes of incidents, seek resolution, escalate unresolved incidents, and follow up until the incident is resolved.

Our client is a UAEbased bespoke IT services provider with a strong client base in Abu Dhabi. To support the growth of their cybersecurity service offering our client is seeking to recruit anInformation Security Engineerspecializing inNetwork Detection and Response (NDR)andMobile Device Management (MDM) technologies.

Information Security Engineer ExtraHop & Ivanti
Based in Abu Dhabi UAE

YOUR RESPONSIBILITIES:

• Deploy configure and maintainNDR solutions particularlyExtraHop to detect investigate and respond to security threats and anomalies across the organizations network and endpoints.
  
• Create syntaxes to detect indicators of compromise (IOCs) and malicious behavior from emerging threats. Write and execute queries in NDR systems to search for desired events.
  
• Develop and enforce security policies within NDR systems to strengthen endpoint and network security.
  
• Actively monitor and respond to security incidents conduct proactivethreat hunting and investigate anomalies to identify and neutralize potential security threats.
  
• Integrate NDR systems with other security tools SIEM platforms and threat intelligence sources in collaboration with crossfunctional teams.
  
• Provide training and raise security awareness regardingExtraHopsolutions and best practices among internal teams.
  
• Maintain thorough documentation of configurations policies and procedures related toExtraHop implementations generating detailed reports for compliance and management.
  

• A degree in Information Security Computer Science or a related field.
  
• 5 years of experiencedeploying and managingNDR solutions specificallyExtraHop and managingMDM solutionslikeIvantiorMobileiron.
  
• 5 years of experience in implementation of NDR solutions via ExtraHop and MDM solutions via Ivanti /MobileIron platform is a must.
  
• Indepth knowledge of security policies incident response and threat detection techniques.
  
• Strong problemsolving and analytical skills with experience in threat detection risk management and troubleshooting.
  
• Experience with otherSIEM security products(e.g. Splunk ArcSight Nitro or LogRhythm) andinfrastructure componentssuch as firewalls IDS/IPS and DLP systems.
  
• Excellent project management skills to oversee NDR implementations and integration projects.
  
• Effective communication skills and a passion for technology and cybersecurity.
  

• Join a growing company in the Middle East region.
  
• Competitive remuneration package.
  
• Work with highprofile clients in the UAE.
  

Please apply with an updated resume if you are interested in this opportunity. All applications will be treated as strictly confidential.

Comaea Consulting

We are seeking a highly skilled information security specialist with extensive experience in deploying and migrating Microsoft Defender solutions. This includes Microsoft Defender for Endpoint (MDE), Microsoft Defender for Cloud (MDC), and Microsoft Defender for Identity (MDI).

• Plan, design, and implement Microsoft Defender solutions (MDE, MDC, and MDI) for clients.
• Manage the end-to-end migration process from existing security solutions to Microsoft Defender suite.
• Ensure seamless integration and minimal disruption during the migration process.
• Integrate MDE, MDC, and MDI with existing client infrastructure and other security tools.
• Customize and configure each Defender solution to meet specific client security policies and requirements.
• Optimize security features and settings to enhance threat detection and response capabilities.
• Provide expert-level support during and after the migration phase.
• Troubleshoot and resolve issues related to MDE, MDC, and MDI deployments.

A bachelor's degree in computer science, IT, cybersecurity, or equivalent experience is required.

5+ years of experience as a security engineer are necessary.

Proficiency in MDI, MDC, MDE, excellent analytical and communication skills are also required.

Our team provides a collaborative environment that fosters growth and development opportunities.

With our focus on innovation and excellence, you will have the chance to work on cutting-edge projects and technologies.

At Papel Holdings, we're not just another Fintech company. We're on a mission to revolutionize the financial landscape. From innovative banking solutions to cutting-edge digital asset products, we're transforming how people interact with money.

Who We Are

At Papel Holdings, we're not just another Fintech company. We're on a mission to revolutionize the financial landscape. From innovative banking solutions to cutting-edge digital asset products, we're transforming how people interact with money.

Careers at Papel suit those who want to have an impact, who are comfortable getting uncomfortable, willing to take risks and win big. We are brave, laser-focused and have high aptitude, with a little playfulness for good measure. If you're someone who thrives on high accountability, possesses a start-up spirit, and flair for industry-savvy solutions, you'll fit right in.

If this resonates with you, you'll have the opportunity to make a real impact and be part of something that's changing how we interact with money and wealth.

POSITION OBJECTIVE

The Information Security Manager at Papel is a critical role responsible for overseeing and managing the organization's information security program, ensuring the confidentiality, integrity, and availability of our digital assets. This role encompasses the implementation and management of Payment Card Industry Data Security Standard (PCI DSS) compliance, penetration testing, and other relevant security measures / controls. The ISM will work closely with various departments and stakeholders to develop and maintain a robust cybersecurity posture that aligns with Papel's business objectives and risk appetite.

Responsibilities

• Develop, implement, and maintain a comprehensive information security program, including policies, procedures, and controls, to protect the company's assets, ensuring compliance with regulatory requirements and industry best practices
• Manage the implementation and maintenance of PCI DSS compliance, ensuring the company meets all relevant requirements and undergoes regular audits
• Implement and adhere to ISO 27001 standards
• Oversee and coordinate penetration testing activities, including vulnerability assessments, penetration testing, and security incident response, to identify and remediate potential security risks
• Collaborate with various departments and stakeholders to assess and address information security risks, ensuring that risk mitigation measures are in line with business objectives and risk appetite
• Monitor and analyse emerging cybersecurity threats and trends, recommending and implementing appropriate countermeasures to protect the company's assets
• Develop and deliver cybersecurity awareness and training programs to educate employees on the importance of information security and their role in maintaining a secure environment
• Manage relationships with external vendors and partners, ensuring that information security requirements are effectively communicated and integrated into third-party contracts and agreements
• Work with other stakeholders such as technical architects, product managers, developers to implement, configure or maintain security measures / controls
• Work closely with the CTO to continuously improve cyber security policies, processes, tools and controls

Requirements

• 7+ years information and cyber security experience in financial services. Fintech experience is a major plus
• Strong analytical skills with high attention to detail
• Good communication and interpersonal skills
• Demonstrated analytical skills and attention to detail
• Strong understanding of regulatory standards governing the fintech, digital assets and global payment industry
• Experience working in a fast-paced, dynamic environment, preferably in a start-up, digital assets or fintech company.

Other Skills

• Strong written and verbal communication skills
• High level of organization and ability to manage multiple priorities simultaneously
• Excellent problem-solving capabilities
• High ethical standards and professionalism, with a commitment to confidentiality
• Ability to work effectively in a team as well as independently
• Competitive pay
• Discretionary bonus

Seniority level

Seniority level

Mid-Senior level

Employment type

Employment type

Full-time

Job function

Job function

Information Technology

IT Services and IT Consulting

Referrals increase your chances of interviewing at PAPEL Holding by 2x

Sign in to set job alerts for "Information Security Manager" roles.

Chief Information Security Officer (CISO)

Contract Assistant Manager - Luxury Hotels

Technical Product Owner - CPS / Innovation / Aviation

Manager – IT Security & Networks (Emirati Talent)

Chief Specialist - Enterprise Command & Control Center Systems

Chief Specialist - Data - Governance & Compliance Audit

Project Manager -(Information Security-Govt. Projects)-Dubai

Chief Specialist - Data - Governance & Compliance Audit

Chief Auditor - Corporate Monitoring - UAE Nationals Only

Chief Auditor - Corporate Monitoring - UAE Nationals Only

Chief Specialist - Contracts & Agreements

Chief Specialist - Contracts & Agreements

Senior Security Specialist | ICT & IT Security

Engineer - information Security -UAE Nationals Only

Engineer - information Security -UAE Nationals Only

Unmanned Aerial Vehicle System Chief Specialist

We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

J-18808-Ljbffr

Security Manager
• Dubai, Dubai, United Arab Emirates

Job Title: Information Security Specialist

The role of the Information Security Specialist will be to design and implement security controls to safeguard an organization's data and systems. This position will involve configuring, maintaining, and monitoring security devices as well as conducting vulnerability assessments and responding to security incidents.

1. Configure and manage various types of security devices including firewalls, intrusion detection and prevention systems, and security information and event management systems.

2. Conduct thorough vulnerability assessments and penetration testing to identify potential security weaknesses.

3. Rapidly respond to security incidents, perform forensic investigations, and provide detailed incident reports.

4. Develop and enforce robust security policies and procedures to ensure compliance with industry standards and regulations.

5. Maintain continuous surveillance of security logs and alerts to stay ahead of emerging threats.

6. Implement and configure cloud security tools to protect against cyber threats.

A minimum of 10 years of experience in information security is required for this position. Applicants should have a strong understanding of security engineering principles and practices.