Information Security Manager

About the role

The client seeks an experienced Information Security Manager to lead enterprise-wide cybersecurity governance, risk management, security operations, and compliance initiatives. This senior role will define strategy, strengthen resilience, and ensure alignment with Dubai's Information Security Regulation.

Key responsibilities

• Develop and execute a comprehensive cybersecurity strategy and governance framework.
• Establish and enforce security policies, standards, KPIs, and compliance programs.
• Align security initiatives with Dubai Information Security Regulation and other government standards.
• Oversee risk management, audits, assessments, and remediation activities.
• Govern SOC operations, incident response, threat intelligence, and cyber‑readiness exercises.
• Lead ISMS implementation and continuous improvement.
• Strengthen identity and access management, security architecture reviews, and preventive controls.
• Drive cybersecurity awareness across employees, suppliers, and partners.
• Collaborate with executive leadership, regulators, auditors, and technology partners.

Required profile

• Bachelor’s or Master’s degree in Computer Science, IT, Information Security or Cybersecurity.
• 12+ years of experience with a Master’s (or 14+ years with a Bachelor’s); preferably 16+ years including 5+ years leading enterprise security programs.
• Preferred certifications: CISSP, CISM, ISO/IEC 27001 Lead Implementer/Auditor, ITIL, COBIT.

Required skills

• Cybersecurity Governance, Risk & Compliance (GRC)
• SOC Operations & Incident Management
• ISO 27001 / ISMS implementation
• Security Audit & Assurance
• Business Continuity & Disaster Recovery
• Threat Intelligence & Security Operations
• Enterprise Security Architecture
• Identity & Access Management
• Security Policy and Standards development