Manager, Information Security Compliance (UAE National)

Job description

The Manager, Information Security Compliance (UAE National) at Mashreq will develop, manage, and execute Information Security Governance, Risk, and Compliance (IS GRC) across the organization. The focus is on contributing strategically to the bank’s success while enhancing its business and technology strategy through secure and reliable service offerings.

Key responsibilities include:

• Leading the development and implementation of comprehensive information security frameworks, policies, and standards.
• Ensuring compliance with security standards such as ISO 27001 and NIST.
• Promoting a cyber security culture within the organization through training and awareness programs.
• Collaborating with peers to implement best practices and facilitate continuous learning.
• Supporting internal and external audits related to information security.

The role requires strong knowledge in risk management and compliance, as well as the ability to evaluate and enhance the organization’s security posture.

Qualifications:

• Over 10 years of experience in information security, with at least 2-3 years in a GRC domain.
• Strong understanding of banking environments and security frameworks such as ISO27001, NIST, and PCI-DSS.
• Master’s degree in IT/Information Security.
• Relevant professional certifications (e.g., CISA, CISSP, PCI-QSA).

Language Requirements:

Proficiency in English; proficiency in Arabic is an advantage.