Cookies
To assist you better and on a more personal level, we utilize cookies. This is to ensure you can navigate our website seamlessly. Additionally, it allows us to understand how visitors interact with our site, enabling us to tailor the experience for even better user experience. Naturally, we're keen on understanding the outcomes of our marketing efforts and ensuring the advertisements you encounter from us match with your interests. However, we do require your consent for this.
About the position
Key Responsibilities 1. Governance Framework Development
Design and maintain security governance frameworks, policies, and metrics aligned with UAE regulations and global standards. Establish governance committees and reporting dashboards for executive leadership. 2. Risk Management & Assessment
Lead enterprise and cloud risk assessments (ISO 27005, NIST, FAIR). Maintain risk registers, BIAs, and treatment plans; provide risk insights to leadership. 3. Vendor Risk Management
Oversee third-party risk programs, security due diligence, and compliance reviews. Manage vendor audits, security questionnaires, and SLA adherence. 4. ISO 27001 Implementation & Auditing
Lead ISMS implementation and certification processes. Conduct audits, manage non-conformities, and ensure continuous improvement. 5. UAE IA Compliance
Ensure compliance with UAE IA standards; conduct gap analyses and liaise with regulators. 6. Cloud Security Governance
Develop governance frameworks for Azure, AWS, and Oracle Cloud. Perform posture assessments and guide secure cloud adoption. 7. Strategic Security Advisory
Advise senior management on governance and risk. Deliver executive reports and support strategic planning initiatives. 8. AI Security & Governance
Define AI/ML security frameworks and risk controls. Ensure data privacy, model integrity, and regulatory compliance. 9. OT Security Governance
Implement OT/ICS security frameworks (IEC 62443). Conduct OT risk assessments and define IT/OT convergence policies. 10. Content Security Governance
Develop DLP, DRM, and content protection policies. Monitor insider threats and secure data sharing practices. 11. SOC Governance
Establish SOC governance structures, KPIs, and escalation workflows. Manage MSSP partnerships and align SOC operations with threat intelligence.
What we offer
- Salary
Attractive salary based on your knowledge and experience.
- Salary
Attractive salary based on your knowledge and experience.
Job Requirements
Qualifications & Experience
· Minimum Experience: 5+ years in information security governance, risk management, and compliance, including at least 3 years in senior/lead roles.
· Expert knowledge of ISO/IEC 27001, 27002, 27005, 27017, 27018 standards.
· Proficiency in cloud security (Azure, AWS, Oracle Cloud).
· Strong risk assessment and GRC platform experience.
· Knowledge of UAE IA Regulations and regional compliance requirements.
· Familiarity with security frameworks: NIST CSF, CIS Controls, COBIT.
· Vendor risk management expertise.
· Fluent in Arabic and English (written and verbal) – Mandatory.
· Strong stakeholder management and communication skills.
· Analytical, critical thinking, and problem-solving abilities.
· Leadership and mentoring capabilities.
· Ability to translate technical concepts for non-technical audiences.
· Excellent presentation and documentation skills.
· Cultural awareness and ability to work in the UAE business environment.
Professional Certifications (Minimum 2 Required):
o ISO 27001 Lead Auditor (LA) – Mandatory
o ISO 27001 Lead Implementer (LI) – Mandatory
o CRISC, CISM, CISSP, CISA, CCSP, AWS Security Specialty, Azure Security Engineer – Advantageous
Company Description
Position Overview
The Senior Information Security Governance and Risk Specialist is a senior-level consultant responsible for establishing and maintaining comprehensive information security governance frameworks, conducting enterprise-wide risk assessments, managing cloud security compliance, and leading ISO 27001 implementation and auditing activities. This role ensures alignment of security governance with organizational objectives and UAE regulatory standards.
Working at Maandag®
For more than 35 years, Maandag® has been at the forefront of empowering people and organisations. We not only help professionals get jobs, but also connect them with a future that matches their values, desires and ambitions. Because when people are truly in the right place, they can develop themselves, fulfil their dreams and go to work with fresh energy every day. The energy and power released in the process is a catalyst for growth for companies. We started in the Netherlands, but now we also help professionals and organisations in Belgium, Poland, Dubai and Sweden. Our extensive knowledge of different markets, coupled with our wide network, enables us to make perfect matches quickly.
Apply
A Maandag® recruiter will assess your application as soon as possible to determine whether you are suitable for an open position.
Contact Person
Spoorthi Patil
Recruiter General
The application process
Wondering what your process will be? See in our steps what you will go through to work at Maandag® in the future.
You apply
A recruiter from Maandag® will review your application to determine your suitability for the position and the company.
Answers to important questions
A dose of fresh energy, delivered straight to your inbox.
Subscribe to our newsletter now to stay updated with industry insights, free training, and the latest job openings.