{bc}
naukri

Information Security Risk & Compliance Manager

Emaratech
Dubai, UAE
Fulltime
Senior
3 months ago
GRCISMSISO 27001Information SecurityPolicy DevelopmentRisk Management
Free

Job Fit Check

Base Career helps you apply smarter for this job.

?%
Ready to Scan

Key skills for this role

GRCISMSISO 27001
Smart Apply

Full Job Posting

Governance, Policy & ISMS

  • Responsible for overseeing the execution of the GRC program in collaboration with the executive team as well as maintaining the group s library of security controls.
  • Lead the implementation, maintenance, and continuous improvement of the Group ISMS aligned with ISO/IEC 27001 standards.
  • Develop, update, implement, and maintain information security policies, standards, and procedures.
  • Ensure consistent implementation of information security governance across the group.
  • Develop goals for data privacy based on legal regulations and other compliance needs, designs and implement privacy policies and practices, and assess these practices for effectiveness.
  • Update security controls and provide support to all stakeholders on security controls covering internal assessments, laws, and regulations.

Pci Dss Compliance

  • Manage the organization s PCI DSS compliance program, including scope definition, risk assessments, and coordination with Qualified Security Assessors (QSAs).
  • Track remediation activities and ensure continuous compliance with PCI DSS requirements.

Cbuae Regulatory Compliance

  • Ensure compliance with UAE Central Bank (CBUAE) information security and risk management regulations.
  • Monitor regulatory updates and assess their impact on the organization.

Risk Management

  • Identify, assess, evaluate, and mitigate IT Security risks by conducting information security risk assessments and maintain centralized risk registers.
  • Track risk mitigation actions and report the security risk posture to management.

Audit & Compliance Management

  • Ensure compliance with legal, regulatory, and contractual requirements.
  • Coordinate internal audits, external certification audits, and regulatory assessments (ISO 27001, ISO 27005, NIST, PCI DSS, etc.).
  • Track audit findings and ensure timely remediation and closure.

Security Awareness & Training

  • Oversee organization-wide security awareness and compliance training programs.

Apply for this job in 1 click

Skip the repetitive application forms

Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.

Sarah M.James T.Maya R.

Trusted by over 500,000 job seekers on Base Career

Start Free Today

More from this employer

More jobs at Emaratech