linkedin
Information Security Manager
BEM FEB UNESA
Abu Dhabi, UAE
Full Time
Manager
Hybrid
1 weeks ago
Information SecurityRisk ManagementSecurity GovernanceIncident ResponseComplianceCloud Security
Free
Job Fit Check
Base Career helps you apply smarter for this job.
?%
Ready to ScanKey skills for this role
Information SecurityRisk ManagementSecurity Governance
About the Role
A technology-driven organization seeks an Information Security Manager to lead security strategy, governance, and operations. Requires 5+ years in information security and relevant certifications.
Key Skills for This Role
Information SecurityRisk ManagementSecurity GovernanceIncident ResponseComplianceCloud Security
Responsibilities
- Develop and implement information security strategies, policies, standards, and governance frameworks.
- Lead enterprise information security programs covering governance, risk management, security operations, vulnerability management, IAM, data protection, cloud security, endpoint security, network security, and application security.
- Collaborate with IT, cloud engineering, software development, compliance, legal, privacy, risk management, internal audit, and executive leadership to integrate security controls.
- Conduct enterprise risk assessments, security architecture reviews, threat modeling, vulnerability assessments, penetration testing coordination, and security audits.
- Monitor KPIs including security incident trends, vulnerability remediation timelines, security compliance rates, audit findings, security awareness completion, system hardening status, and risk reduction metrics.
- Oversee security monitoring, incident response preparedness, threat intelligence, security investigations, and remediation efforts in partnership with SOC teams.
- Ensure compliance with industry frameworks and regulatory requirements including ISO 27001, NIST Cybersecurity Framework, CIS Controls, SOC 2, PCI DSS, GDPR, and internal standards.
- Develop and deliver enterprise security awareness, phishing simulation, cybersecurity education, and policy compliance programs.
- Evaluate emerging cybersecurity technologies, Zero Trust architectures, AI powered security solutions, cloud native security platforms, and automation opportunities.
- Utilize SIEM, SOAR, EDR, vulnerability management platforms, Microsoft Office Suite, Power BI, and security analytics tools to monitor operations and generate insights.
- Prepare security dashboards, risk assessments, audit reports, executive briefings, compliance documentation, and strategic recommendations for senior leadership.
- Lead, mentor, and develop information security analysts, security engineers, governance specialists, and cross functional teams.
Requirements
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field preferred.
- Master's degree or professional certifications (CISSP, CISM, CRISC, CompTIA Security+, ISO 27001 Lead Implementer) highly advantageous.
- 5+ years of experience in information security, cybersecurity, IT risk management, security operations, or related leadership roles.
- 2+ years of experience managing information security programs, cybersecurity teams, or enterprise security initiatives preferred.
- Strong understanding of information security governance, risk management, cloud security, IAM, network security, endpoint protection, application security, data protection, vulnerability management, and incident response.
- Experience with SIEM platforms, SOAR solutions, EDR tools, cloud security platforms (AWS, Azure, GCP), Microsoft Office Suite, Power BI, and vulnerability management platforms.
- Familiarity with DevSecOps, Zero Trust architecture, AI powered cybersecurity, threat intelligence, digital forensics, compliance automation, and SSDLC practices advantageous.
- Strong leadership, strategic thinking, analytical, technical, organizational, and problem solving skills.
- Excellent communication, stakeholder management, technical documentation, presentation, and cross functional collaboration abilities.
- Ability to balance cybersecurity risk, regulatory compliance, operational efficiency, and business enablement.
- Ability to work independently in remote and hybrid environments.
Full Job Posting
About Us
- We are a technology driven organization committed to safeguarding information assets, protecting customer data, and enabling secure digital innovation.
- Our teams collaborate across cybersecurity, IT infrastructure, software engineering, cloud operations, risk management, compliance, legal, privacy, and executive leadership.
The Role
- We are seeking an experienced Information Security Manager to lead the organization's information security strategy, governance, and operational security programs.
- The ideal candidate will oversee security policies, risk management, incident preparedness, security operations, and compliance initiatives.
Key Responsibilities
- Develop and implement information security strategies, policies, standards, and governance frameworks.
- Lead enterprise information security programs covering governance, risk management, security operations, vulnerability management, IAM, data protection, cloud security, endpoint security, network security, and application security.
- Collaborate with IT, cloud engineering, software development, infrastructure, compliance, legal, privacy, risk management, internal audit, and executive leadership.
- Conduct enterprise risk assessments, security architecture reviews, threat modeling, vulnerability assessments, penetration testing coordination, and security audits.
- Monitor KPIs including security incident trends, vulnerability remediation timelines, security compliance rates, audit findings, security awareness completion, system hardening status, and risk reduction metrics.
- Oversee security monitoring, incident response preparedness, threat intelligence, security investigations, and remediation efforts in partnership with SOC teams.
- Ensure compliance with industry frameworks and regulatory requirements including ISO 27001, NIST Cybersecurity Framework, CIS Controls, SOC 2, PCI DSS, GDPR, and internal standards.
- Develop and deliver enterprise security awareness, phishing simulation, cybersecurity education, and policy compliance programs.
- Evaluate emerging cybersecurity technologies, Zero Trust architectures, AI powered security solutions, cloud native security platforms, and automation opportunities.
- Utilize SIEM, SOAR, EDR, vulnerability management platforms, Microsoft Office Suite, Power BI, and security analytics tools.
- Prepare security dashboards, risk assessments, audit reports, executive briefings, compliance documentation, and strategic recommendations.
- Lead, mentor, and develop information security analysts, security engineers, governance specialists, and cross functional teams.
Requirements
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Information Systems, Software Engineering, or related field preferred.
- Master's degree or professional certifications such as CISSP, CISM, CRISC, CompTIA Security+, ISO 27001 Lead Implementer, or equivalent are highly advantageous.
- 5+ years of experience in information security, cybersecurity, IT risk management, security operations, or related information security leadership roles.
- 2+ years of experience managing information security programs, cybersecurity teams, or enterprise security initiatives preferred.
- Strong understanding of information security governance, risk management, cloud security, IAM, network security, endpoint protection, application security, data protection, vulnerability management, and incident response.
- Experience with SIEM platforms, SOAR solutions, EDR tools, cloud security platforms (AWS, Azure, GCP), Microsoft Office Suite, Power BI, vulnerability management platforms, and security monitoring technologies.
- Familiarity with DevSecOps, Zero Trust architecture, AI powered cybersecurity, threat intelligence, digital forensics, compliance automation, and SSDLC practices is advantageous.
- Strong leadership, strategic thinking, analytical, technical, organizational, and problem solving skills.
- Excellent communication, stakeholder management, technical documentation, presentation, and cross functional collaboration abilities.
- Ability to balance cybersecurity risk, regulatory compliance, operational efficiency, and business enablement.
- Ability to work independently in remote and hybrid environments.
What We Offer
- Flexible remote / hybrid work opportunity within the United Arab Emirates.
- Competitive compensation package.
- Professional development and cybersecurity leadership growth opportunities.
- Exposure to enterprise security transformation, cloud security, AI powered cybersecurity technologies, and digital resilience initiatives.
- Collaborative and technology driven work environment.
- Supportive culture focused on innovation, security, operational excellence, and continuous improvement.
- Opportunity to lead enterprise information security initiatives that protect critical assets, support business growth, and strengthen organizational resilience.
- Clear career progression within information security, cybersecurity leadership, enterprise risk management, technology governance, and executive technology management functions.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career