Job Title: Cybersecurity & GRC Specialist
Work Location: Abu Dhabi, UAE
Role Summary
The Cybersecurity & GRC Specialist is responsible for defining and overseeing the cybersecurity and information security strategy for all companies within the group.
This role governs and manages cybersecurity services, ensuring consistent protection, regulatory compliance, and effective risk management across the group.
The role is strategic and governance-focused, with accountability for cyber risk at group level.
Key Responsibilities
- Define and maintain the group-wide cybersecurity strategy and roadmap
- Act as the single point of accountability for cybersecurity across all group companies
- Establish group-level security policies, standards, and minimum controls
- Oversee cyber risk assessments, risk registers, and risk treatment plans
- Govern performance through SLAs, KPIs, and service reviews
- Lead and coordinate major cyber incident response and executive communication
- Ensure compliance with applicable regulatory, legal, and contractual security requirements
- Oversee third-party and supply chain security risks
- Support business continuity and cyber resilience planning
- Provide regular cyber risk and posture reporting to senior management and the board
Qualifications & Experience
Education
- Bachelor’s degree in IT, Cybersecurity, or related field
- Master’s degree preferred
Experience
- 10+ years of experience in IT / Information Security
- 5+ years in a senior cybersecurity, governance, or risk leadership role
- Proven experience managing (MSSP)
- Experience working in multi-entity or group organizations preferred
Certifications (Preferred)
- CISSP, CISM, or CRISC
- ISO 27001 Lead Implementer / Lead Auditor
- Cloud security certification (CCSP, AWS/Azure Security)
Key Skills & Competencies
- Cybersecurity strategy and governance
- Vendor and MSSP (Manage Security Service provider) management
- Enterprise risk management
- Strong communication with senior leadership
- Incident and crisis management
- Policy, compliance, and audit oversight
