+123 -777- 456 - 789x 1010 New York, NY 10018 US Mon - Sat 8.00 - 18.00. Sunday CLOSED


Dubai - United Arab Emirates
negotiable Expires in 6 days


Own and oversees cyber security risk by proactively enforcing and executing an organizational cyber security risk and policy framework. Be accountable for establishing oversight of risk and risk mitigation across the Group. Responsible for providing consultation, tools, and training to IT departments to achieve the desired level of risk appetite implemented by IT, and an improvement in the overall cyber security risk posture of the organisation.        


Job Accountabilities Linked to Objective Areas


1. Owns and drives implementation of a fit for purpose cyber security policy & cyber governance framework into the Group aligned with industry best practice. Own the liaison of IT to align with other policy bodies in the Group.


2. Ensure “exception” and “security change” management is in place for violations/deviations of policy.


3. Own 3rd party cybersecurity governance to oversee 3rd parties’ compliance Emirates group policies as well as own an inventory of 3rd parties accessing our IT estate.


4. Own Business & End-user cyber security and risk awareness across the Group. Own and drive implementation of a risk aware culture by our end-users.


5. Oversee IT’s cyber security risk posture and proactively drives remediation. Own a cyber security risk dashboard.


6. Drive industry best practice research for cybersecurity risk in alignment with other risk functions in the group such as e.g. group safety and internal audit.


7. Owns the transformation program towards a risk culture, security & privacy by design, to support agile development and risk-based cybersecurity governance.


8. Responsible for driving the groups cross functional cybersecurity strategy, risk based, catering for the different risk appetite across our businesses.



  • Qualifications/ Trainings: Degree in a subject relevant to IT/CyberSecurity (12+3 or equivalent)
  • Ideally in cyber security/ it security or risk management
  • Hands on experience in other IT/Cybersecurity capabilities, In operations, In delivery of projects and in threat modelling (optional)  
  • Experience: 10+ years of leadership experience of which at least five years should be at a senior management level in IT risk / cyber security, within a dynamic operational environment.  


Professional Skills: ·        

  • Organization design and implementation
  • Stakeholder Management
  • IT Leadership
  • IT measures and metrics (KPIs)
  • IT Quality Management
  • Security Frameworks (ISO2700130000/CIS Critical security controls, others)
Dubai, United Arab Emirates