Manager - Information Security (Risk and Compliance)
4 weeks ago
INSPIRE | EXHILARATE | DELIGHT
For over six decades, Chalhoub Group has been a partner and creator of luxury experiences in the Middle East. The Group, in its endeavour to excel as a hybrid retailer, has reinforced its distribution and marketing services with a portfolio of eight owned brands and over 300 international brands in the luxury, beauty, fashion, and art de vivre categories. More recently, the Group expanded its expertise into new categories of luxury watches, jewellery, and eyewear.
Every step at Chalhoub Group is taken with the customer at heart. Be it constantly reinventing itself or focusing on innovation to provide luxury experiences at over 750+ experiential retail stores, online and through mobile apps, each touch point leads to delighting the customer.
What you'll be doing:
We are seeking an experienced Information Security Risk and Compliance Manager to work in the Information Security function of the group. You will play a key role in safeguarding the group’s information assets and infrastructure and ensuring compliance with industry standards, regulations, and internal control frameworks. This position demands a strategic thinker with a solid technical foundation, capable of managing and mitigating cyber risks through strong collaboration with cross-functional teams and relevant stakeholders.
Responsibilities
Risk Management
- Implement risk management processes and capability to enable continuous monitoring of control effectiveness and key risk indicators.
- Identify, assess, and prioritize security risks associated with the group's Information assets, systems, and services.
- Develop and implement security risk mitigation strategies and control measures to protect critical assets and sensitive information.
- Evaluate and manage cybersecurity risks associated with third-party vendors and service providers.
- Collaborate with procurement and legal teams to ensure that vendor contracts include appropriate security requirements.
Policy & Compliance Management
- Develop, review, and update information security policies, standards, and procedures aligned to security strategy, relevant regulations, and industry best practices.
- Collaborate with cross-functional teams, service providers and other stakeholders to ensure consistent enforcement of policies and monitor compliance.
- Ensure the organization's adherence to applicable compliance frameworks, internal control framework and guidelines set out by the Information Security department.
- Facilitate and lead governance and risk committee meetings to ensure consistent application of security standards and policies across all projects, technology platforms and services.
Security Audits and Assessments
- Conduct regular security audits and risk assessments to identify vulnerabilities and consistently work towards the improvement of overall security maturity of the organization.
- Coordinate penetration testing and vulnerability assessments, interpreting results and driving remediation efforts.
- Prepare and present regular reports on security risk, compliance status, and security posture to senior management and relevant stakeholders.
Security Awareness and Training
- Develop and implement cybersecurity training programs for employees and technical teams to promote a culture of security awareness and compliance.
Provide training on security best practices and conduct regular drills to test the
What you’ll need to succeed:
- Bachelor's degree in Computer Science, Information Technology, or a related field. Master's degree preferred.
- Professional security management certifications such as CISSP, CISM, CISA or other similar credentials.
- Proven experience (7+ years) in a combination of Information Security Governance, Risk, Compliance, and technology-related roles.
- Solid understanding of common information security standards, frameworks, and regulations such as ISO/IEC 27001, Cloud Security Alliance, NIST, PCI/DSS and GDPR.
- Knowledge and understanding of the major cloud platforms, Ecommerce, Integration and Customer Technologies.
- Experience in security technologies such as EDR, VM, DLP, IPS, Firewalls, DevSecOps, SIEM, etc.
- Experience in leading and motivating cross-functional teams to achieve tactical and strategic goals.
- Exceptional problem-solving skills and a results-oriented mindset.
- Excellent communication, collaboration, and interpersonal skills.
What we can offer you
With us, you will turn your aspirations into reality. We will help shape your journey through enriching experiences, learning and development opportunities and exposure to different assignments within your role or through internal mobility. Our Group offers diverse career paths for those who are extraordinary, every day.
We recognise the value that you bring, and we strive to provide a competitive benefits package which includes health care, child education contribution, remote and flexible working policies as well as exclusive employee discounts.
We Invite All Applicants to Apply
It Takes Diversity Of Thought, Culture, Background, Differing Abilities and Perspectives to truly Inspire, Exhilarate and Delight our customers. At Chalhoub Group, we are committed to inclusion and diversity.
We welcome all applicants to apply and be part of our exciting future. We ensure equal opportunity for all our applicants without regard to gender, age, race, religion, national origin or disability status.
-
Dubai, United Arab Emirates CHALHOUB Group Full timeImplement risk management processes and capability to enable continuous monitoring of control effectiveness and key risk indicators.Identify, assess, and prioritize security risks associated with the group's Information assets, systems, and services.Develop and implement security risk mitigation strategies and control measures to protect critical assets...
-
dubai, United Arab Emirates CHALHOUB Group Full timeManager - Information Security Risk and Compliance Manager - Information Security Risk and ComplianceImplement risk management processes and capability to enable continuous monitoring of control effectiveness and key risk indicators.Identify, assess, and prioritize security risks associated with the group's Information assets, systems, and services.Develop...
-
Dubai, United Arab Emirates CHALHOUB Group Full timeImplement risk managementprocesses and capability to enable continuous monitoring of controleffectiveness and key risk indicators.Identify,assess, and prioritize security risks associated with thegroup's Information assets, systems, andservices.Develop and implement security riskmitigation strategies and control measures to protect criticalassets and...
-
Manager – Information Security
2 hours ago
dubai, United Arab Emirates Chalhoub Group Full timeManager – Information Security (Risk and Compliance) | Chalhoub Group DubaiFor over six decades, we have been a partner and creator of luxury experiences in the Middle East. The Group, in its endeavour to excel as a hybrid retailer, has reinforced its distribution and marketing services with a portfolio of eight owned brands and over 300 international...
-
IT Risk
4 weeks ago
dubai, United Arab Emirates Tech Junction Ltd Full timeResponsibilities: Regulatory Compliance: · Stay updated on relevant laws, regulations, and industry standards related to IT, Information Security, data protection, and cybersecurity.· Ensure that the IT practices align with regulatory requirements.· Collaborate with legal and compliance teams to interpret and implement regulations. Risk Assessment: · ...
-
Assistant Manager Risk
1 month ago
Dubai, United Arab Emirates Tangent International Full timeMohamed Aladdin is looking for a Assistant Manager (Risk & Compliance) To work in Dubai. **Regulatory Compliance**: - Stay updated on relevant laws, regulations, and industry standards related to IT, Information Security, data protection, and cybersecurity. - Ensure that the IT practices align with regulatory requirements. - Collaborate with legal and...
-
Information Security GRC Manager
4 weeks ago
dubai, United Arab Emirates Chalhoub Group Full timeINSPIRE | EXHILARATE | DELIGHTFor over six decades, Chalhoub Group has been a partner and creator of luxury experiences in the Middle East. The Group, in its endeavour to excel as a hybrid retailer, has reinforced its distribution and marketing services with a portfolio of eight owned brands and over 300 international brands in the luxury, beauty, fashion,...
-
dubai, United Arab Emirates PINKERTON | Comprehensive Risk Management Full timeProgram Manager- Risk Management | PINKERTON | Comprehensive Risk Management DubaiPinkerton, established in 1850 by Allan Pinkerton, stands as a leading global provider of security and risk management solutions. With a reputation built over decades, Pinkerton offers a wide range of services and programs, ensuring exceptional protection for clients and their...
-
IT Risk and Compliance Analyst
4 weeks ago
Dubai, United Arab Emirates Insight Global Full timeDesired Skills and Experience:5+ years of experience as a Risk and Compliance Analyst or another related area (IT Compliance, Information Security, identity/access management, IT Audit, forensics/eDiscovery)3+ years of experience with SOX and PCI compliance controls and being an internal and external security and IT compliance liaison.Strong understanding of...
-
IT Risk and Compliance Analyst
4 weeks ago
dubai, United Arab Emirates Insight Global Full timeDesired Skills and Experience: 5+ years of experience as a Risk and Compliance Analyst or another related area (IT Compliance, Information Security, identity/access management, IT Audit, forensics/eDiscovery) 3+ years of experience with SOX and PCI compliance controls and being an internal and external security and IT compliance liaison. Strong...
-
IT Risk and Compliance Analyst
4 weeks ago
Dubai, United Arab Emirates Insight Global Full timeDesired Skills andExperience:5+ years ofexperience as a Risk and Compliance Analyst or another related area(IT Compliance, Information Security, identity/access management,IT Audit, forensics/eDiscovery)3+ years ofexperience with SOX and PCI compliance controls and being aninternal and external security and IT complianceliaison.Strong understanding of the...
-
Information Security
4 weeks ago
Dubai, United Arab Emirates Chalhoub Group Full timeRequirementsWhat you'll need to succeed :- Bachelor's degree in Computer Science, Information Technology, or a related field. Master's degree preferred.- Professional security management certifications such as CISSP, CISM, C-CISO or other similar credentials.- Proven experience (10+ years) in a combination of Information Security Architecture,...
-
IT Risk and Compliance Analyst
3 days ago
dubai, United Arab Emirates Insight Global Full time5+ years of experience as a Risk and Compliance Analyst or another related area (IT Compliance, Information Security, identity/access management, IT Audit, forensics/eDiscovery)3+ years of experience with SOX and PCI compliance controls and being an internal and external security and IT compliance liaison.Strong understanding of the SDLC, Azure DevOps (user...
-
Manager – IT Security and Compliance
4 weeks ago
dubai, United Arab Emirates Randstad Middle East Full timeManager - IT Security and ComplianceJob Summary• Set security standards and policies across the IT organization• Ensure effective security standards are adhered to across the organization• Development or enhancement and roll out of the IT policies and procedures, and subsequent assessment of compliance and maturity of the process framework within the...
-
Security Manager
4 weeks ago
Dubai, United Arab Emirates N7 Security Full time**Why Us!** Join N7 Group for innovation, excellence, and diverse growth opportunities in Real Estate, Tech, and Security. Choose us for our unwavering commitment to excellence, collaborative culture, and a collective mission to improve lives. Shape your future and make a lasting impact with us. Your professional journey starts here. **Position...
-
Security Manager
1 month ago
Dubai, United Arab Emirates Security Service Company - Dubai Full time**Responsibilities**: **Security Strategy**: Develop and implement security policies, procedures, and strategies tailored to the organization's needs and in compliance with local regulations. **Risk Assessment**: Conduct thorough risk assessments to identify potential security vulnerabilities and threats specific to Dubai's environment. **Security...
-
Information Security
4 weeks ago
Dubai, United Arab Emirates Chalhoub Group Full timeRequirementsWhatyou'll need to succeed :-Bachelor's degree in Computer Science, InformationTechnology, or a related field. Master's degreepreferred.- Professional security managementcertifications such as CISSP, CISM, C-CISO or other similarcredentials.- Proven experience (10+ years) in acombination of Information Security Architecture,...
-
Privacy Risk and Compliance Manager
4 days ago
dubai, United Arab Emirates Meta Full timePrivacy Risk and Compliance Manager Responsibilities:Provide strategic guidance and second line of defense oversight to improve company-wide processes to establish, measure and improve privacy practices.Solve complex business and security problems, while minimizing friction and maximizing productivity and impact. Use data-driven arguments to make...
-
Analyst Information Security Risk Department
1 week ago
dubai, United Arab Emirates Dicetek LLC Full timeAnalyst Information Security Risk Department Analyst Information Security Risk DepartmentExperience and proficiency in managing network and enterprise security.Ability to administer security technologies like PAM, Vulnerability scanners, IPS, SIEM, Patching solutions.Experience with security operations and administrations and managing above...
-
Risk Security Executive
1 week ago
dubai, United Arab Emirates The First Group Dubai Full timeThe Risk & Security Executive will be responsible for developing, implementing, and managing comprehensive risk management and security programs across the organization. This role requires a strategic thinker with a deep understanding of risk analysis, security protocols, and regulatory compliance. The ideal candidate will collaborate with cross-functional...