12 Vulnerability Assessments jobs in Dubai

At GAC Group IT, our dedication to providing top‑notch solutions to 6000+ users worldwide relies on the dependability of our IT systems, all while upholding our ISO 27001 certification. As we grow the GAC Group IT Team, we are actively seeking an IT Security Analyst to bring his/her technological proficiency to enhance our security protocols.

The Group IT team is dedicated to constructing, configuring, maintaining, and enhancing applications throughout their life cycle while safeguarding them against cyber threats.

Key Responsibilities

• Implement and maintain security solutions for our network, infrastructure and applications hosted in On‑prem Data Center and Azure Cloud.
• Closely work with Software development & DevSecOps teams to resolve issues.
• Guide GAC branch offices to improve their IT security posture.
• Monitor and respond to security incidents and perform root cause analysis.
• Research and stay updated on the latest security trends and best practices.

Job Requirements

• A bachelor’s degree in computer science / information security.
• A minimum of 2 years of experience as an IT Security Analyst or a similar role.
• A proficiency in implementing & managing security tools such as CSPM, VAPT, VMDR, EDR.
• Excellent teamwork, problem‑solving, analytical and communication skills.
• Holding relevant certifications such as Azure Security (AZ‑500), CCSP, etc. will be advantageous.

#J-18808-Ljbffr

Company: Al Rostamani Group of Companies LLC

Every employee at Al Rostamani Group plays a role in making a real difference to the business and our customers. We care for our employees by offering them meaningful and purposeful work and an opportunity to grow, learn, contribute and succeed. Today, the Al Rostamani Group has come a long way since its birth in 1957. Our group has grown steadfastly with the guiding principles of Commitment, Care & Vision, alongside a strong sense of active involvement in the community. We are a well-diversified group, with a key presence in industries such as General Trading, Automobiles and Heavy Equipment, Travel, Foreign Exchange, Financial Services, Property Management, Construction, Infrastructure Development and Information Technology Services. Our Group employs approximately 2000 people from 41 different nationalities, which contributes to our multicultural and multi-national environment.

The Identity & Access Management (IAM) Security Analyst is responsible for protecting the organisation’s digital assets by managing identities, access controls, and authentication systems. This role ensures that only authorised users can access sensitive data, enforce the principle of least privilege, and support compliance with security policies and regulations. Working closely with IT Security & Governance, Group Information Technology, and other departments, the Analyst helps implement security measures, monitor for threats, and respond to incidents.
Beyond daily operations, the Analyst develops security protocols, works closely with business units to conduct access reviews and security assessments, and recommends improvements to strengthen the organisation’s cybersecurity posture. The role also involves cross‑functional collaboration, providing actionable insights to senior leadership, and promoting a culture of security awareness across the enterprise.

Job Responsibilities

Technical Responsibilities

• Access Management and Review: Lead and manage the IAM lifecycle, including provisioning, modification, deprovisioning, and access reviews across all systems and applications.
• Security Monitoring and Incident Response: Monitor IAM and SIEM logs and alerts to identify and respond to suspicious activity, unauthorised access, and security incidents.
• Technical Due Diligence: Evaluate new applications for IAM compatibility, focusing on authentication, access controls, scalability, and security compliance.
• Vulnerability Assessment and Penetration Testing: Conduct comprehensive VA/PT across IT infrastructure, including servers, web applications, APIs, and mobile applications.
• Security Configuration Management: Oversee and optimise IAM solutions across cloud platforms, ensuring seamless system integrations and secure access through technical controls such as firewalls, WAF, NAC, and PAM.
• Security Technology Research: Actively research, evaluate, and drive next‑generation security technologies and solutions to meet organisational requirements.

Business Responsibilities

• Audit Coordination and Remediation: Support the coordination of internal and external audits, track security audit findings, and report remediation efforts.
• Policy and Governance: Enforce and support the development of IAM policies, procedures, and best practices, and remediate violations in coordination with IT Operations and Application teams.
• Security Training and Awareness: Assist in developing and delivering security training programs and awareness campaigns for employees.
• Compliance Monitoring: Monitor adherence to IT and security governance frameworks and recommend improvements.
• Vendor Liaison: Liaise with vendors for POCs and demos of new IT security requirements.

Job Requirements

Qualifications

• Bachelor's degree or higher in a relevant field.
• Security certifications such as Certified Ethical Hacker (CEH) or CompTIA Security+ are preferred.

Experience

• Proven experience (typically 3+ years) in information security.

Knowledge and Skills

• Strong knowledge of cloud security, cybersecurity frameworks, standards, and best practices.
• Strong understanding of IT governance frameworks, regulatory requirements, and industry standards.
• Excellent communication and interpersonal skills.
• Demonstrated ability to influence and collaborate with cross‑functional teams.
• In‑depth understanding of risk management, compliance, and governance principles.

Experience in managing data protection mechanisms, preferably on cloud platforms like Microsoft Purview.

• Knowledge of the Microsoft Defender Suite and the Identity and Access Management suite.
• Understanding security solutions such as NAC, PAM, EDR, DLP, SIEM, SOAR, and NDR.
• Knowledge of security configurations in cloud platforms, e.g., AWS, Azure, and Microsoft 365.

At Al Rostamani Group, we seek talented people who work hard to achieve great things. We consider not only your skills and experience, but also your passion for the role, your desire to learn and how well you align with our core values of care, commitment and vision. If this position represents an opportunity you wish to pursue, we invite you to apply.

#J-18808-Ljbffr

Login for faster access to the best deals. Click here if you don't have an account.

Interview Questions for Information Security Analyst Jun 25th, 2025 at 05:44 Learning Dubai 10 views Reference: 5123 Contact us Location: Dubai Price: Contact us

Interview Questions for Information Security Analyst roles often focus on key areas like risk management, network security, incident response, and vulnerability assessment. Candidates may be asked about common security tools, threat detection techniques, encryption methods, and how they would handle real-world security incidents. Preparing for these questions helps build confidence and demonstrates the technical knowledge and problem-solving skills required for a successful career in information security.

Send a message #J-18808-Ljbffr

A leading energy firm in Dubai is seeking a Cyber Security IT Assurance Senior Analyst to conduct IT assurance activities and cyber security assessments. The ideal candidate will have over 6 years of experience in IT, strong relationships with stakeholders, and professional certifications like CISSP and CISM. The role involves validating IT security measures and recommending improvements to protect organizational assets. #J-18808-Ljbffr

**Job Description Summary**
Responsible to develop innovative solutions to deliver Customer outcomes and drive growth while managing company risk/reward Has in-depth knowledge of best practices and how own area integrates with others; has working knowledge of product lines and factors that differentiate them in the market
**Job Description**
**Roles and Responsibilities**
**Global Accounts Receivable Leadership**
**Manage the $8B quarterly receivable balance, ensuring alignment with GE Aerospace's guiding principles and operational priorities.**
+ Drive improvements in cash collection timing, forecasting accuracy, and reduction of past dues by partnering with sales, operations, and finance leadership.
+ Lead the Global AR team in executing strategic, global, and cross-functional initiatives to enhance collections processes and customer account management.
**Key Projects and Initiatives**
+ Enhance visibility into receivable data across product lines to support decision-making and operational improvements.
+ Develop and maintain tools to track and report past due metrics, driving accountability and action.
+ Lead forecasting efforts to improve accuracy and alignment with business objectives.
+ Oversee reconciliation of tariffs and ensure accurate data distribution across stakeholders.
+ Manage resolution processes for customer disputes, ensuring timely and effective outcomes.
+ Drive innovation by developing AI models for receivable forecasting to improve accuracy and efficiency.
**Team Leadership**
+ Manage a team of analysts overseeing Safran, APAC, and China regions, providing leadership, coaching, and development opportunities.
+ Develop specialized expertise within the team, ensuring alignment with best practices and quality standards.
+ Monitor performance through standard work and operating rhythms, addressing root causes and driving process improvements across the Invoice-to-Cash cycle.
**Strategic Partnership**
+ Collaborate closely with Safran, managing the cash collection process from the JV partner and ensuring alignment with business objectives.
+ Influence cross-functional stakeholders, communicating complex messages effectively and building consensus to drive results.
**Operational Excellence**
+ Implement lean principles (FLIGHT DECK) to improve processes, address root causes, and enhance training and process improvement opportunities.
+ Monitor and escalate performance drivers, ensuring timely resolution and alignment with operational goals.
**Leadership and Influence**
+ Act as a skilled influencer, communicating difficult or sensitive information effectively and building consensus across teams.
+ Lead small projects with moderate risks and resource requirements, ensuring delivery of measurable outcomes.
+ Develop persuasion skills to influence stakeholders on critical topics within the field.
**Required Qualifications**
+ Bachelor's degree from an accredited university or college (or a high school diploma/GED with at least 8 years of experience in Finance).
+ 6+ years of increasing responsibility in Finance or Accounting roles.
+ Deep understanding of billing and collections processes and their interdependencies.
+ Proven ability to drive teams to meet targets while delivering thoughtful leadership.
**Desired Characteristics**
+ Working knowledge of Alteryx, with the ability to create and manage workflows.
+ Strong understanding of Accounts Receivable accounting flows and the entire order-to-cash process.
+ Excellent oral and written communication skills, with strong interpersonal and leadership capabilities.
+ Demonstrated ability to analyze and resolve complex problems effectively.
+ Established skills in leading programs/projects, including documentation, planning, marketing, and execution.
GE Aerospace offers a great work environment, professional development, challenging careers, and competitive compensation. GE Aerospace is an Equal Opportunity Employer ( . Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
GE Aerospace will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).
**Relocation Assistance Provided:** Yes
GE Aerospace is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.

Job Purpose

Development and implementation of Model Risk Management governance and the validation of credit risk, market risk, liquidity, finance and business models at Dubai Islamic Bank in line with internal policies and regulatory requirements.

Key Responsibilities

• Responsible to conduct robust and comprehensive qualitative and quantitative validation of IFRS 9, PD Ratings/Scorecards, Stress Testing, statistical and deterministic models used in ICAAP/Pilar II and Market and Liquidity Risk models, as well as finance and other business models, in line with the Bank Model Validation Guidelines and the Model Governance Framework and ensuring compliance with regulatory requirements
• Perform data due diligence and data preparation required for the validation of models
• Ensure models are validated within the pre-defined validation frequency. Discuss validation results and validation findings with the different stakeholders, reaching agreements on the remediation process and keeping track of the timeliness and progress of such actions
• Ensure accuracy and completeness of archived validation information (data, codes, working files and related documentation) to allow independent third-party review of the validation work performed
• Provide technical review of the quantitative solutions proposed by the model developer to the model owners in a timely manner
• Coordinate with other quantitative analysts within the Bank to ensure that models and solutions are consistent and in-line with the Bank practices
• Support on the development and maintenance of the Model Risk Management framework covering the Model Governance Framework and related policies, including risk appetite, tiering and other risk policies and other processes regarding to models, in line with applicable regulations and industry best practices
• Support on the development and maintenance of the Model Validation Guidelines
• Ensure that strict governance is followed for adoption and ongoing use of models across the bank – including compliance with the approved policies, procedures, SLAs and regulatory requirements
• Ensure that exceptions, if any, to the process are escalated promptly
• Develop and maintain a Model Inventory and ensure the inventory is complete, accurate, and consistent with the Model Governance Framework
• Develop and maintain the Validation Findings Tracker, covering model related findings coming from internal/external model validation, internal/external audit exercises and from the CBUAE
• Train, develop and upgrade technical skills by identifying self-learning needs to stay up-to-date with the best market practices

#J-18808-Ljbffr

You will serve as a strategic legal advisor across global crypto regulatory, policy, and security issues, directly supporting the company’s growth, licensing, and strategic engagement with policymakers, regulators, and counterparties. You will be deeply involved in shaping regulatory strategy, external advocacy and crafting the company’s external thought leadership in security and risk management as the global DeFi landscape evolves.

Key Responsibilities Regulatory & Policy

• Monitor and interpret global regulatory developments affecting digital assets and DeFi (e.g. MiCA, VARA, FinCEN, SEC/CFTC)
• Provide strategic legal advice to shape product, operations, and security strategies in response to emerging regulations and market developments
• Represent the company in discussions with regulators, policymakers, and industry bodies
• Contribute to policy advocacy through public consultations, comment letters, and industry working groups
• Draft public-facing white papers, articles and blogposts on the company’s security and risk management frameworks and toolings and collaborate with marketing to externally communicate regulatory, security and risk management thought leadership

Legal & Security

• Keep up-to-date with crypto and blockchain security and risk management innovations and technical solutions, analyze their applicability and impact working closely with IT Security and other cross-functional teams, and help assess new security and risk management vendors and partners
• Build and strengthen alliances with other DeFi projects to seek and share best practices in security and risk management
• Assist with implementing legal and enterprise risk frameworks, including policies, controls, and staff training
• Assist with other strategic company initiatives as needed

Financial Crime & Cybersecurity (Nice to Have)

• Support compliance with AML, sanctions, KYC, and market abuse regulations in the DeFi context
• Assist in enhancing internal policies and programs related to financial crime risk
• Coordinate with third-party vendors on transaction monitoring and risk analytics

What You’ll Need

• The core skills, knowledge, experience and mindset required to be successful in this role include the following:

Experience

• 7+ years of legal experience, ideally combining in-house, regulatory agency, law firm, or industry association roles
• US qualified lawyers with experience working with US laws, policymakers and industry groups is highly desired
• Track record of working with global financial regulations (US, EU, UK, APAC, Middle East) in digital assets, fintech, or financial institutions
• Proven experience engaging with policymakers, regulators, and trade associations on regulatory matters
• Hands-on experience drafting public-facing white papers or articles, and/or actively organized or participated in working groups that submitted commentaries to lawmakers or regulators
• Exposure to AML, sanctions, financial crime compliance, or regulatory investigations (bonus)

Skills

• Provide easy to understand and actionable business recommendations
• Skilled at navigating legal ambiguity in fast-changing technical and regulatory environments
• Proficient in translating legal obligations into operational processes and controls
• Excellent critical thinking, synthesis and communications skills
• Persuasion and influence over internal and external stakeholders
• Able to tactfully challenge the decisions of business teams and stand up for your views against senior stakeholders
• Able to see high level strategies and goals and dive into details to deliver creative, pragmatic solutions based on weighted risk analysis
• Able to manage multiple important initiatives across time zones and work under time pressure
• Familiarity with DeFi and the crypto industry (bonus)

Mindset

• Highly collaborative, practical, solutions-oriented.
• Able to balance legal risk with commercial realities.
• Proactive self-starter, can operate with limited supervision working across teams, timezones and countries.
• Comfortable managing policymakers, regulators, and business executives.

Why you'll love working with us

• Join a dynamic, creative team in a fast-paced and supportive environment
• Innovation and Collaboration in web3 tech are core to our success
• We’re open to new ideas — if you’ve got a vision, pitch it and make it happen
• Enjoy competitive pay that matches your skills and experience
• Be part of a company that’s shaping the future of DeFi
• Take time when you need it — we offer unlimited vacation days
• Get fully compensated for your work gear — we’ll set you up for success
• Travel with us! We host an annual team retreat at a top international location
• Explore life at 1inch Labs with us

#J-18808-Ljbffr

**Role Overview**
The Portfolio, Governance and Conduct Risk Manager will be responsible for developing, implementing, and maintaining a robust framework for governance and conduct risk and portfolio management within the bank. This role ensures adherence to regulatory requirements, internal policies, and best practices, fostering a culture of ethical conduct and sound decision-making across the organization. The manager will work closely with various business lines, legal, compliance, and risk management teams to identify, assess, monitor, and mitigate governance and conduct risks.
**Key Responsibilities**
+ Design, develop, and implement the bank's governance and conduct risk framework, policies, procedures, and standards in line with regulatory expectations and industry best practices.
+ Ensure the framework integrates effectively with the overall enterprise risk management (ERM) framework.
+ Develop and maintain a robust control environment for governance and conduct risks.
+ Conduct regular risk assessments to identify potential governance and conduct risks inherent in business activities, new products, services, and processes.
+ Analyze emerging regulatory requirements and industry trends to proactively identify and assess new or evolving governance and conduct risks.
+ Facilitate workshops and discussions with business units to understand their specific risk profiles and controls.
+ Establish and monitor key risk indicators (KRIs) and key performance indicators (KPIs) related to governance and conduct risk.
+ Develop and deliver comprehensive reports on governance and conduct risk exposures, control effectiveness, and mitigation activities to senior management, risk committees, and the Board of Directors.
+ Oversee the tracking and resolution of governance and conduct risk issues and incidents.
+ Provide expert advice and guidance to business units and support functions on governance and conduct risk matters, including policy interpretation and control implementation.
+ Develop and implement conduct-related policies (e.g., conflicts of interest, market conduct, data ethics, employee conduct) and ensure their effective communication and adoption.
+ Develop and deliver training programs to raise awareness and understanding of governance and conduct risk principles, policies, and expected behaviors across the bank.
+ Champion a strong risk culture and ethical conduct throughout the organization, promoting transparency, accountability, and integrity.
+ Stay abreast of changes in global and local regulatory landscapes pertaining to governance and conduct risk.
+ Assist in preparing for and responding to regulatory examinations and requests related to governance and conduct risk.
**Qualifications**
**Education**
+ Bachelor's degree in Finance, Business Administration, Law, Economics, or a related field.
+ Master's degree or relevant professional certifications (e.g., FRM, PRM, CAMS, ICA qualifications) are a plus.
**Skills & Competencies**
+ **Regulatory Knowledge:** Understanding of banking regulations, corporate governance principles, and conduct risk expectations.
+ **Analytical Skills:** Excellent analytical and problem-solving abilities, with a keen eye for detail and the capacity to synthesize complex information.
+ **Communication:** Exceptional verbal and written communication skills, with the ability to articulate complex risk concepts to diverse audiences, including senior management and regulators.
+ **Interpersonal Skills:** Strong ability to build relationships, influence stakeholders, and collaborate effectively across all levels of the organization.
+ **Strategic Thinking:** Ability to think strategically and translate regulatory requirements and risk insights into practical and effective business solutions.
+ **Project Management:** Proven ability to manage multiple projects simultaneously, meet deadlines, and deliver high-quality results.
+ **Integrity:** Unquestionable integrity and ethical standards.
+ **Technical Proficiency:** Proficient in Microsoft Office Suite (Excel, PowerPoint, Word) and experience with GRC (Governance, Risk, and Compliance) software is a plus.
**Reporting Structure**
The Governance and Conduct Risk Manager will have a direct reporting line to MEA Risk Cluster Head and it will be matrix reporting to UAE Chief Risk Officer.
---
**Job Family Group:**
Risk Management
---
**Job Family:**
Portfolio Credit Risk Management
---
**Time Type:**
Full time
---
**Most Relevant Skills**
Analytical Thinking, Credible Challenge, Governance, Monitoring and Evaluation, Policy and Procedure, Policy and Regulation, Product Knowledge, Risk Controls and Monitors, Risk Identification and Assessment, Risk Remediation.
---
**Other Relevant Skills**
For complementary skills, please see above and/or contact the recruiter.
---
_Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law._
_If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review_ _Accessibility at Citi ( _._
_View Citi's_ _EEO Policy Statement ( _and the_ _Know Your Rights ( _poster._
Citi is an equal opportunity and affirmative action employer.
Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.

Overview

Role Overview

The Portfolio, Governance and Conduct Risk Manager will be responsible for developing, implementing, and maintaining a robust framework for governance and conduct risk and portfolio management within the bank. This role ensures adherence to regulatory requirements, internal policies, and best practices, fostering a culture of ethical conduct and sound decision-making across the organization. The manager will work closely with various business lines, legal, compliance, and risk management teams to identify, assess, monitor, and mitigate governance and conduct risks.

Responsibilities

• Design, develop, and implement the bank’s governance and conduct risk framework, policies, procedures, and standards in line with regulatory expectations and industry best practices.
• Ensure the framework integrates effectively with the overall enterprise risk management (ERM) framework.
• Develop and maintain a robust control environment for governance and conduct risks.
• Conduct regular risk assessments to identify potential governance and conduct risks inherent in business activities, new products, services, and processes.
• Analyze emerging regulatory requirements and industry trends to proactively identify and assess new or evolving governance and conduct risks.
• Facilitate workshops and discussions with business units to understand their specific risk profiles and controls.
• Establish and monitor key risk indicators (KRIs) and key performance indicators (KPIs) related to governance and conduct risk.
• Develop and deliver comprehensive reports on governance and conduct risk exposures, control effectiveness, and mitigation activities to senior management, risk committees, and the Board of Directors.
• Oversee the tracking and resolution of governance and conduct risk issues and incidents.
• Provide expert advice and guidance to business units and support functions on governance and conduct risk matters, including policy interpretation and control implementation.
• Develop and implement conduct-related policies (e.g., conflicts of interest, market conduct, data ethics, employee conduct) and ensure their effective communication and adoption.
• Develop and deliver training programs to raise awareness and understanding of governance and conduct risk principles, policies, and expected behaviors across the bank.
• Champion a strong risk culture and ethical conduct throughout the organization, promoting transparency, accountability, and integrity.
• Stay abreast of changes in global and local regulatory landscapes pertaining to governance and conduct risk.
• Assist in preparing for and responding to regulatory examinations and requests related to governance and conduct risk.

Qualifications

Education

• Bachelor’s degree in Finance, Business Administration, Law, Economics, or a related field.
• Master’s degree or relevant professional certifications (e.g., FRM, PRM, CAMS, ICA qualifications) are a plus.

Skills & Competencies

• Regulatory Knowledge: Understanding of banking regulations, corporate governance principles, and conduct risk expectations.
• Analytical Skills: Excellent analytical and problem-solving abilities, with a keen eye for detail and the capacity to synthesize complex information.
• Communication: Exceptional verbal and written communication skills, with the ability to articulate complex risk concepts to diverse audiences, including senior management and regulators.
• Interpersonal Skills: Strong ability to build relationships, influence stakeholders, and collaborate effectively across all levels of the organization.
• Strategic Thinking: Ability to think strategically and translate regulatory requirements and risk insights into practical and effective business solutions.
• Project Management: Proven ability to manage multiple projects simultaneously, meet deadlines, and deliver high-quality results.
• Integrity: Unquestionable integrity and ethical standards.
• Technical Proficiency: Proficient in Microsoft Office Suite (Excel, PowerPoint, Word) and experience with GRC (Governance, Risk, and Compliance) software is a plus.

Reporting Structure

The Governance and Conduct Risk Manager will have a direct reporting line to MEA Risk Cluster Head and it will be matrix reporting to UAE Chief Risk Officer.

Job Details

• Time Type: Full time
• Job Family Group: Risk Management
• Job Family: Portfolio Credit Risk Management

Most Relevant Skills

• Analytical Thinking
• Credible Challenge
• Governance
• Monitoring and Evaluation
• Policy and Procedure
• Policy and Regulation
• Product Knowledge
• Risk Controls and Monitors
• Risk Identification and Assessment
• Risk Remediation

Other Relevant Skills

For complementary skills, please see above and/or contact the recruiter.

Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi. View Citi’s EEO Policy Statement and the Know Your Rights poster.

#J-18808-Ljbffr