22 Threat Modeling jobs in the United Arab Emirates

INSPIRE | EXHILARATE | DELIGHT

For over seven decades, Chalhoub Group has been a partner and creator of luxury experiences in the Middle East. In its pursuit to excel as a hybrid luxury retailer, the Group has curated a portfolio of over 10 owned brands and strengthened its distribution and marketing expertise for over 400 international names across luxury fashion, beauty, jewellery, watches, eyewear, and art de vivre categories.

Every step at Chalhoub Group is taken to build a future where luxury dreams become reality — bridging cultures and crafting memorable experiences for our consumers. Be it by constantly reinventing itself, committing to innovation, or embracing new technologies, the Group is shaping the future of luxury retail. It delivers seamless omnichannel experiences across more than 950 stores, online platforms, and mobile apps. Driving this innovation journey is The Greenhouse — the Group's innovation hub, incubator, and accelerator for startups and emerging businesses, regionally and globally.

Chalhoub Group fosters a people-at-heart culture rooted in diversity, equity, and inclusion, and a workplace catalysed by forward thinking and future-proofing. Today, it brings together over 16,000 talented professionals across eight countries in the Middle East, with a presence in LATAM. Their collective efforts have earned the Group the Great Place to Work certification in several markets.

Sustainability is at the core of the Group's strategy, guided by a clear commitment to people, partners, and the planet. Chalhoub Group is proud to be a member of the United Nations Global Compact, a signatory of the Women's Empowerment Principles, and to have pledged to reach Net Zero by 2040.

What You'll Be Doing

The AI and Information Security Lead will be instrumental in ensuring that AI systems and data assets are secure, compliant, and ethically managed, aligning with global best practices and regional regulatory standards. This role will drive security innovation, mitigate risks associated with AI technologies, and support the organization in adopting AI securely while ensuring the privacy and integrity of its data.

Key Responsibilities

• Develop and execute a comprehensive AI security strategy that aligns with Chalhoub Group's business objectives and digital transformation goals.
• Lead the integration of AI-driven security solutions into the Group's existing cybersecurity architecture, ensuring interoperability, scalability and resilience.
• Establish security frameworks for AI model development, deployment, and lifecycle management, incorporating best practices from NIST AI RMF and CSA's AI Organizational Responsibilities.
• Collaborate with data governance teams to ensure AI models adhere to privacy standards and ethical considerations throughout their lifecycle.
• Work closely with data governance teams to implement robust data protection measures, including encryption, access controls, and anonymization techniques, ensuring compliance with regional data protection laws such as the UAE's Data Protection Law and international standards like GDPR.
• Oversee the secure handling of sensitive data throughout the AI model lifecycle, from development to deployment, supporting business innovation while mitigating risks.
• Identify and assess emerging AI-driven security threats, implementing proactive measures to mitigate risks associated with adversarial AI, model poisoning, and data leakage.
• Lead the development and execution of AI-specific threat models and risk assessments, ensuring alignment with Chalhoub Group's overall risk management framework.
• Stay ahead of emerging threats in AI and data security, providing continuous threat intelligence and mitigation strategies.
• Ensure that AI systems adhere to ethical guidelines, promoting transparency, fairness, and accountability in AI decision-making processes.
• Monitor and enforce compliance with relevant regulations and standards, including ISO/IEC 27001, NIST 800-53, EU AI Act and the UAE's AI Ethics Guidelines.
• Act as a thought leader, driving internal awareness, training programs, and promoting a culture of responsible AI use and ethical data practices.
• Foster collaboration with cross-functional teams, including Tech&Data, legal, data privacy and compliance, to integrate AI security considerations into business processes and technological advancements.
• Engage proactively with external stakeholders, technology partners, vendors, and regulatory bodies to remain informed on emerging trends, best practices, and regulatory shifts relevant to AI and cybersecurity.
• Participate in hackathons, and crowd sourcing platforms effectively to progress on cyber 'definition of good'.

What You'll Need to Succeed

Bachelor's or Master's degree in Cybersecurity, Computer Science, Data Science, Artificial Intelligence, or a related field.

Advanced certifications or specialized courses in AI/ML or AI Security, such as:

• Certified Artificial Intelligence Practitioner or AI Security Practitioner certifications.
• Specialized AI/ML courses from recognized platforms like Coursera, edX, or AI-focused programs.

Industry-Specific Certifications:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Cloud Security Professional (CCSP)
• Certified Ethical Hacker (CEH)

Practical experience with securing AI/ML models, including the development of adversarial machine learning defenses, model validation, and securing AI pipelines.

Familiarity with security frameworks for AI/ML models such as NIST AI RMF, and CSA's AI Organizational Responsibilities.

Proficiency with popular AI/ML tools and libraries, including TensorFlow, PyTorch, scikit-learn, and cloud-based AI platforms (AWS, Azure, Google Cloud).

Knowledge of AI-driven cybersecurity applications, including anomaly detection, threat intelligence, and automated defense systems.

Working knowledge in LLM models like Gemini, Llama, GPT, DALL-E and frameworks like LangChain & Vector databases like Faiss, Pinecone etc.

Deep understanding of AI-specific risks such as model poisoning, adversarial attacks, and data leakage

What We Can Offer You

With us,you will turn your aspirations into reality. We will help shape your journey through enriching experiences, learning and development opportunities and exposure to different assignments within your role or through internal mobility. Our Group offers diverse career paths for those who are extraordinary, every day.

We recognise the value that you bring, and we strive to provide a competitive benefits package which includes health care, child education contribution, remote and flexible working policies as well as exclusive employeediscounts.

We Invite All Applicants to Apply

It Takes Diversity Of Thought, Culture, Background, Differing Abilities and Perspectives to truly Inspire, Exhilarate and Delight our customers. At Chalhoub Group, we are committed to inclusion and diversity.

We welcome all applicants to apply and be part of our exciting future. We ensure equal opportunity for all our applicants without regard to gender, age, race, religion, national origin or disability status.

At Papel Holdings, we're not just another Fintech company. We're on a mission to revolutionize the financial landscape. From innovative banking solutions to cutting-edge digital asset products, we're transforming how people interact with money.

Who We Are

At Papel Holdings, we're not just another Fintech company. We're on a mission to revolutionize the financial landscape. From innovative banking solutions to cutting-edge digital asset products, we're transforming how people interact with money.

Careers at Papel suit those who want to have an impact, who are comfortable getting uncomfortable, willing to take risks and win big. We are brave, laser-focused and have high aptitude, with a little playfulness for good measure. If you're someone who thrives on high accountability, possesses a start-up spirit, and flair for industry-savvy solutions, you'll fit right in.

If this resonates with you, you'll have the opportunity to make a real impact and be part of something that's changing how we interact with money and wealth.

POSITION OBJECTIVE

The Information Security Manager at Papel is a critical role responsible for overseeing and managing the organization's information security program, ensuring the confidentiality, integrity, and availability of our digital assets. This role encompasses the implementation and management of Payment Card Industry Data Security Standard (PCI DSS) compliance, penetration testing, and other relevant security measures / controls. The ISM will work closely with various departments and stakeholders to develop and maintain a robust cybersecurity posture that aligns with Papel's business objectives and risk appetite.

Responsibilities

• Develop, implement, and maintain a comprehensive information security program, including policies, procedures, and controls, to protect the company's assets, ensuring compliance with regulatory requirements and industry best practices
• Manage the implementation and maintenance of PCI DSS compliance, ensuring the company meets all relevant requirements and undergoes regular audits
• Implement and adhere to ISO 27001 standards
• Oversee and coordinate penetration testing activities, including vulnerability assessments, penetration testing, and security incident response, to identify and remediate potential security risks
• Collaborate with various departments and stakeholders to assess and address information security risks, ensuring that risk mitigation measures are in line with business objectives and risk appetite
• Monitor and analyse emerging cybersecurity threats and trends, recommending and implementing appropriate countermeasures to protect the company's assets
• Develop and deliver cybersecurity awareness and training programs to educate employees on the importance of information security and their role in maintaining a secure environment
• Manage relationships with external vendors and partners, ensuring that information security requirements are effectively communicated and integrated into third-party contracts and agreements
• Work with other stakeholders such as technical architects, product managers, developers to implement, configure or maintain security measures / controls
• Work closely with the CTO to continuously improve cyber security policies, processes, tools and controls

Requirements

• 7+ years information and cyber security experience in financial services. Fintech experience is a major plus
• Strong analytical skills with high attention to detail
• Good communication and interpersonal skills
• Demonstrated analytical skills and attention to detail
• Strong understanding of regulatory standards governing the fintech, digital assets and global payment industry
• Experience working in a fast-paced, dynamic environment, preferably in a start-up, digital assets or fintech company.

Other Skills

• Strong written and verbal communication skills
• High level of organization and ability to manage multiple priorities simultaneously
• Excellent problem-solving capabilities
• High ethical standards and professionalism, with a commitment to confidentiality
• Ability to work effectively in a team as well as independently
• Competitive pay
• Discretionary bonus

Seniority level

Seniority level

Mid-Senior level

Employment type

Employment type

Full-time

Job function

Job function

Information Technology

IT Services and IT Consulting

Referrals increase your chances of interviewing at PAPEL Holding by 2x

Sign in to set job alerts for “Information Security Manager” roles.

Chief Information Security Officer (CISO)

Contract Assistant Manager - Luxury Hotels

Technical Product Owner - CPS / Innovation / Aviation

Manager – IT Security & Networks (Emirati Talent)

Chief Specialist - Enterprise Command & Control Center Systems

Chief Specialist - Data - Governance & Compliance Audit

Project Manager -(Information Security-Govt. Projects)-Dubai

Chief Specialist - Data - Governance & Compliance Audit

Chief Auditor - Corporate Monitoring - UAE Nationals Only

Chief Auditor - Corporate Monitoring - UAE Nationals Only

Chief Specialist - Contracts & Agreements

Chief Specialist - Contracts & Agreements

Senior Security Specialist | ICT & IT Security

Engineer - information Security -UAE Nationals Only

Engineer - information Security -UAE Nationals Only

Unmanned Aerial Vehicle System Chief Specialist

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

J-18808-Ljbffr

Security Manager • Dubai, Dubai, United Arab Emirates

• Orchestrating Security Initiatives: You'll be the go-to person for all security-related activities, working closely with IT teams and business units to embed security into every process.
• Managing Our SOC Partner: You'll be the primary liaison with our outsourced Security Operations Center (SOC), defining performance metrics, reviewing reports, and ensuring top-notch threat detection and response.
• Overseeing Security Products: You'll manage the deployment and maintenance of our security tools, from firewalls to vulnerability scanners, evaluating their effectiveness and recommending improvements.
• Driving Audit & Compliance: You'll coordinate internal and external security audits, ensuring we meet all regulatory requirements and industry standards.
• Monitoring Security Posture: You'll maintain a comprehensive overview of our security state, identifying risks, providing regular reports to management, and contributing to security awareness training.
• Supporting Incident Response: You'll play a crucial role in our incident response efforts, guiding internal teams and our SOC during security incidents.

• A Bachelor's degree in Computer Science, Information Security, or a related field. Relevant security certifications (e.g., CISSP, CISM, CompTIA Security+) are highly preferred.
• 7-10 years of demonstrable experience in information security roles, with a strong background in coordinating security efforts and managing security technologies.
• Proven experience managing and interacting with Security Operations Centers (SOCs).
• Hands-on experience with various security products and technologies.
• Solid knowledge of audit and compliance requirements (e.g., ISO 27001, NIST).
• Strong analytical, problem-solving, and risk assessment skills.
• Excellent communication skills, both written and verbal, with the ability to explain complex technical concepts clearly.
• A proactive approach and the ability to work both independently and collaboratively.
• A strong preference for candidates with experience in the maritime or oil and gas industry, bringing an understanding of the unique operational technology (OT) and information technology (IT) security challenges within these sectors.

The Information Security Risk & Assurance Lead is accountable for driving the development and implementation of robust security risk frameworks, policies, and procedures that align with ISO 27001 standards. This includes partnering with Enterprise Risk and Internal Audit to embed security risk into the Group's Three Lines of Defence and Enterprise Risk Management framework.

This role requires deep expertise in information security and enterprise risk management, with relevant qualifications such as CISA, CRISC, or ISO 27005, and proven experience building or maturing a Group-level security risk and assurance function in a complex, multinational environment.

Key responsibilities include:

• Defining and establishing the Information Security Risk capabilities, including governance frameworks, policies, reporting lines, and operating model.
• Partnering with Enterprise Risk and Internal Audit to embed security risk into the Group's Three Lines of Defence and Enterprise Risk Management framework.
• Acting as the principal information security risk advisor to senior executives, business leaders, and functional heads.
• Delivering quarterly security risk briefings, dashboards, and thematic risk deep dives for Executive Leadership and Board-level committees as required.

The ideal candidate will have a strong understanding of leading practices such as ISO 27005, FAIR, or NIST RMF and experience designing and delivering enterprise training or awareness programmes on risk and compliance topics. Strong leadership skills and the ability to drive change and improvement are essential.

In return for your expertise and dedication, you can expect a competitive compensation package, comprehensive benefits, and opportunities for professional growth and development.

• Deep expertise in information security and enterprise risk management.
• Relevant qualifications such as CISA, CRISC, or ISO 27005.
• Proven experience building or maturing a Group-level security risk and assurance function in a complex, multinational environment.
• Strong understanding of leading practices such as ISO 27005, FAIR, or NIST RMF.
• Experience designing and delivering enterprise training or awareness programmes on risk and compliance topics.

What We Offer

A career at our organization offers the opportunity to work with a talented team of professionals, make a meaningful contribution to our success, and enjoy a range of benefits and perks. Our comprehensive benefits package includes health care, child education contribution, remote and flexible working policies, and exclusive employee discounts.

If you are a motivated and experienced information security professional looking for a new challenge, please submit your application, including your resume and a cover letter outlining your relevant experience and qualifications.

Director

Full-time

Information Technology

Retail Luxury Goods and Jewelry

The role involves collaborating with clients to comprehend their compliance requirements and developing strategies to meet them.

• Implementing security programs based on industry standards and regulations such as ISO 27001, PCI DSS, NESA, and NCEMA.
• Conducting risk assessments and developing mitigation plans.
• Providing recommendations to enhance an organization's overall security posture.
• Documenting and reporting on security gaps and providing remediation guidance.
• Conducting due diligence assessments on third-party vendors.
• Developing processes to automate and continuously monitor information security controls, exceptions, risks, and metrics.

This position requires a significant amount of time on technical tasks including:

• Configuring and customizing RSA Archer GRC platform.
• Designing technical architecture for GRC deployments.
• Reporting project deployment status.
• Supporting RSA Archer deployments across the customer base.
• Incident and service request closure on support.

Key skills required include:

• A strong understanding of cybersecurity principles and best practices.
• Experience implementing security standards and controls such as ISO 27001 and PCI DSS.
• Excellent communication and interpersonal skills for effective collaboration with clients at all levels.
• The ability to work independently and manage multiple projects simultaneously.
• Proficiency in GRC tools like RSA Archer or CAMMS.

• Project Manager – Information Security
  

• An Engineering Degree, with 6+ Years experience in Information Security / Data Protection Project Management in BFSI.
• Hands on experience in leading information security/ cyber security projects.
• Proficient in application/ technology architectural security design principles, cyber threat assessments, software development life cycle, firewalls, data protection/ security, vulnerability scanning, application security, etc.
• Demonstrated expertise in the management of technology and application risks and controls
• Proficient in application/ technology architectural design principles, cyber threat assessments, software development life cycle, firewalls, data protection/ security, vulnerability scanning, application security, etc.
• Demonstrated expertise in the management of technology and application risks and controls
• Expertise in Information Security & Data Protection standards (like ISO 27001, PCI DSS, UAE IAS, SWIFT CSP, GDPR, UAE Data Protection, etc.).
• Strong knowledge of information Security, Data Protection and Banking / IT Systems.
• Ability to facilitate both technical and business discussions.
• Strong analytical mindset that allows you to deeply understand topics
• Excellent verbal and written communication skills combined with a knack for clear articulation
• Knowledge of Microsoft Office, MS project, MS Share Point, JIRA, Asana or other project management tools
• Certificates such as CISA, CISM, CISSP, Prince 2, PMP RMP, Agile PM, PMI-ACP, etc.
  

• Day-to-day management of information security projects requirements (agile and waterfall) for implementation of business applications and technology systems and including time, scope, budget, etc.
• Manage the internal relationship with Information Technology (IT) and PMO process owners supporting the service, assisting with the definition and requirements of Information Security requirements in line with Bank’s Information Security Policy.
• Identification and proactive management of projects risks and issues
• Supporting the EPMO / IT Project Managers to manage the backlog/requirement gathering and guide the team in balancing the priorities and scope
• Ensure the implementation of business applications and technology solutions adhere to bank’s information security policy and regulatory standards by cultivating a strong risk and control environment.
• Drive transparent, quantifiable, and long-lasting control improvements by working together with the internal information security team and other project implementation team like EPMO, IT, Business teams, etc.
• Provide clear direction to business, product, and technology stakeholders so they can manage their risks effectively.
• Contribute to the creation of a culture of risk and control that is centered on proactive awareness of and enhancement of the control environments.
• Work with the Contracts, Vendor Management and Compliance/Business departments to ensure that third-party suppliers contracts and operating-level agreements meet information security requirements.
• Lead and oversee budget, staffing, and contracting
• Work with and manage external vendors / auditors during assessments.

We are seeking an exceptional cybersecurity leader to spearhead the development of a comprehensive cybersecurity strategy across multiple industries and operating entities.

As the Group's most senior cybersecurity executive, you will be responsible for designing and continuously evolving the cybersecurity strategy, frameworks, and operational excellence required to protect critical assets, data, and infrastructure. You will lead a hybrid model comprising internal teams and managed service partners to ensure robust and resilient cyber capabilities across the enterprise.

• Define and execute a group-wide cybersecurity strategy aligned with evolving threats and business objectives.
• Oversee cybersecurity architecture, governance, risk management, and compliance across multiple business units.
• Lead incident response, threat intelligence, and vulnerability management functions to proactively manage cyber risk.
• Manage a hybrid cybersecurity operating model, balancing internal capabilities with strategic vendor partnerships.
• Advise executive leadership on emerging threats, regulatory changes, and cyber resilience.

Ideal Candidate Profile:

• Proven experience in a senior cybersecurity leadership role, preferably at a group or enterprise level.
• Strong grasp of cybersecurity frameworks (NIST, ISO 27001, etc.), regulatory requirements, and industry best practices.
• Demonstrated experience in incident response, governance, and strategic risk mitigation.
• Deep understanding of cybersecurity technologies, cloud environments, and digital transformation initiatives.
• Strong stakeholder management and vendor governance capabilities.

What We Offer:

• A unique opportunity to build and elevate a cybersecurity function in a multi-sector, digitally evolving organization.
• Influence at the board and executive level, with high visibility and strategic impact.
• A competitive compensation package and the chance to lead innovation in a growing, dynamic environment.

Entry-level professionals can apply for this role.

Full-time position available.

This role is part of the Information Services sector.

Information Services, Energy Technology, and IT Services and IT Consulting.

The Senior SOC Engineer is responsible for configuring and administering Security Operations Center (SOC) tools such as SIEM, SOAR, EDR, and TIP to support SOC requirements.

• Provide first-level technical support for SOC technologies.
• Maintain the health of the SIEM tool and ensure 99.96% uptime of the platform.
• Create necessary dashboards in SIEM and other SOC tools to enable SOC monitoring and reporting.
• Perform regular patching and version upgrades on SOC technologies.
• Create dashboards to support SOC monitoring and reporting requirements.
• Integrate new log sources, parse logs in SIEM.
• Manage faults in SOC technologies, troubleshoot to identify root cause, and coordinate with vendors for resolution.
• Ensure backups are configured and working properly for SOC technologies.
• Perform backup restore tests on a periodic basis.
• Support SOC by performing fine-tuning on SOC technologies, guide SOC analysts with best practices to perform searches, etc.
• Maintain proper documentation for SOC technologies. Ensure change management process is followed.
• Coordinate and collaborate - Work with SOC Analysts, IT sections, SOC Manager on developing and managing required use cases, orchestrations, and automation workflows, and playbooks.
• Review and fine-tune Use cases implemented on EDR.
• Implement scanning profiles on vulnerability scanning tool and integrate with SOAR.

INSPIRE | EXHILARATE | DELIGHT

For over seven decades, Chalhoub Group has been a partner and creator of luxury experiences in the Middle East. In its pursuit to excel as a hybrid luxury retailer, the Group has curated a portfolio of over 10 owned brands and strengthened its distribution and marketing expertise for over 400 international names across luxury fashion, beauty, jewellery, watches, eyewear, and art de vivre categories.

Every step at Chalhoub Group is taken to build a future where luxury dreams become reality — bridging cultures and crafting memorable experiences for our consumers. Be it by constantly reinventing itself, committing to innovation, or embracing new technologies, the Group is shaping the future of luxury retail. It delivers seamless omnichannel experiences across more than 950 stores, online platforms, and mobile apps. Driving this innovation journey is The Greenhouse — the Group's innovation hub, incubator, and accelerator for startups and emerging businesses, regionally and globally.

Chalhoub Group fosters a people-at-heart culture rooted in diversity, equity, and inclusion, and a workplace catalysed by forward thinking and future-proofing. Today, it brings together over 16,000 talented professionals across eight countries in the Middle East, with a presence in LATAM. Their collective efforts have earned the Group the Great Place to Work certification in several markets.

Sustainability is at the core of the Group's strategy, guided by a clear commitment to people, partners, and the planet. Chalhoub Group is proud to be a member of the United Nations Global Compact, a signatory of the Women's Empowerment Principles, and to have pledged to reach Net Zero by 2040.

What You'll Be Doing

The Information Security Risk & Assurance Lead is responsible for establishing and leading Chalhoub Group's enterprise-wide security risk and assurance capabilities. This role drives the development of risk frameworks, control assurance, ISO 27001 and PCI DSS compliance, and IAM governance, while serving as a strategic advisor to executive leadership. It plays a critical role in embedding a culture of security risk ownership and awareness through robust processes, education, and engagement.

• Define and establish the Information Security Risk capabilities, including governance frameworks, policies, reporting lines, and operating model.
• Partner with Enterprise Risk and Internal Audit to embed security risk into the Group's Three Lines of Defence and Enterprise Risk Management (ERM) framework.
  Chair or co-chair relevant InfoSec risk committees or forums, providing credible challenge and escalation for emerging cyber risks across the business and technology estate.
• Act as the principal information security risk advisor to senior executives, business leaders, and functional heads.
• Translate complex technical risks into clear, actionable business insights and recommendations, aligned to Group objectives and risk appetite.
• Deliver quarterly security risk briefings, dashboards, and thematic risk deep dives for Executive Leadership and Board-level committees as required.
• Design and implement a scalable, metrics-driven security risk management framework covering risk identification, assessment, treatment, monitoring, and reporting.
• Establish and maintain a centralised Information Security Risk Register, ensuring ownership, tracking, and oversight of key risks and mitigation plans.
  Align Group risk methodologies to leading practices such as ISO 27005, FAIR, or NIST RMF where appropriate.
• Build and lead a risk-based security assurance programme in partnership with Internal Audit, covering internal audits, control testing, supplier reviews, and compliance assessments.
• Ensure continual improvement, compliance and ISO/IEC 27001 certification, driving maturity across the ISMS and control environment.
• Lead annual PCI DSS assurance and compliance programmes across retail, payments, and commerce channels.
• Provide assurance and second-line oversight over security incident management, including root cause analysis, response effectiveness, and post-mortem controls evaluation.
• Champion a culture of risk ownership, continuous learning, and control improvement following security events.
• Lead the development and delivery of a Group-wide information security risk education and training programme, tailored by audience and risk level.
• Equip business and technology stakeholders with practical knowledge to identify, assess, and own security risks as part of day-to-day operations.
• Collaborate with Group Risk, Internal Audit, and People & Culture to embed risk responsibilities into role-based learning paths, onboarding, and manager training.
• Track effectiveness of training initiatives through KPIs and maturity assessments, continuously evolving content and engagement strategies.
• Actively support a culture of proactive risk awareness, clear accountability, and continuous improvement across the organisation.

What You'll Need to Succeed

• The ideal candidate will bring deep expertise in information security and enterprise risk management, with relevant qualifications such as CISA, CRISC, or ISO 27005, and proven experience embedding risk frameworks aligned to ISO 27001, NIST RMF, or FAIR in complex, multinational environments.
• Minimum 7 years of experience in Information Security or Technology Risk roles, with at least 5 years in a leadership capacity.
• Demonstrated experience building or maturing a Group-level security risk and assurance function in a complex, regulated or multinational environment.
• Proven leadership in achieving and maintaining ISO 27001 certification, PCI DSS compliance.
• Solid understanding of frameworks and standards such as ISO 27001/27005, NIST CSF/RMF, COBIT, FAIR, and the Three Lines of Defence model.
• Experience designing and delivering enterprise training or awareness programmes on risk and compliance topics is a distinct advantage.

What We Can Offer You

With us,you will turn your aspirations into reality. We will help shape your journey through enriching experiences, learning and development opportunities and exposure to different assignments within your role or through internal mobility. Our Group offers diverse career paths for those who are extraordinary, every day.

We recognise the value that you bring, and we strive to provide a competitive benefits package which includes health care, child education contribution, remote and flexible working policies as well as exclusive employeediscounts.

We Invite All Applicants to Apply

It Takes Diversity Of Thought, Culture, Background, Differing Abilities and Perspectives to truly Inspire, Exhilarate and Delight our customers. At Chalhoub Group, we are committed to inclusion and diversity.

We welcome all applicants to apply and be part of our exciting future. We ensure equal opportunity for all our applicants without regard to gender, age, race, religion, national origin or disability status.