Information Security Expert - Governance and Compliance

Summary

The Information Security Expert (Governance and Compliance) role is primarily focused on enhancing the organization's information security posture and ensuring compliance with various frameworks and regulations. The expert will support strategic and operational aspects of information security governance, thereby safeguarding information assets across the organization.

Main Responsibilities

• Develop and manage the complete information security policy framework.

• Conduct periodic reviews and continuous enhancements of security policies.

• Align policies with internationally recognized frameworks and standards.

• Perform compliance assessments, including gap analyses and audits.

• Coordinate with auditors for internal and external compliance activities.

• Assist in establishing and optimizing information security governance structures.

• Prepare compliance reports and manage regulatory submissions.

Key Requirements

• Relevant industry certifications (e.g., CISSP, CISM, CEH).

• Experience in enterprise security environments.

• Strong understanding of information security frameworks (e.g., ISO/IEC 27001).

Nice to Have

• Familiarity with NIST Cybersecurity Framework and CIS Controls.

• Experience in leading compliance assessments and audits.

• Knowledge of data protection laws and sector-specific compliance requirements.

Other Details

Location: Abu Dhabi - UAE
Contract Duration: 12 months extendable