​I am working with a large conglomerate based in Dubai. Who is looking to hire a Head of Cyber & Data Privacy to lead a major transformation of the company's Cyber Security posture.

The role requires a broad understanding of the technology underpinning the company’s IT systems and extensive up-to-date knowledge of data privacy and information security frameworks, particularly NIST and GDPR and other relevant Cyber frameworks.

Responsibilities of Head of Cyber & Data Privacy

• Develop and maintain a business-aligned Information and Cyber Security strategy and operating model

• Management and governance of Cyber risk and Cyber Security controls.

• Manage, develop and lead an effective Information Security team that delivers high-performing security services and strives for continuous improvement

• Maintain and embed an Information Security Policy and management framework across the company that addresses the needs of the company, its staff, and other key stakeholders in line with relevant legislation and industry standards

• Define and implement an appropriate information security control assurance framework for the company, enforcing compliance with policies and technical controls

• Provide leadership and oversight of effective information and Cyber Security risk management, and maintain governance within the company’s Enterprise Risk Management Framework

• Ensure that information and Cyber Security risks to the company presented through their party suppliers and delivery partners are identified and managed appropriately

• Driving adoption of and adherence to a common information risk management framework across the Group.

• Owning the Group’s information security policies and standards, and driving their adoption Group-wide;

If you are a Cyber Security leader who is looking to take on a fresh challenge in Dubai and be responsible for centralizing a group's cyber security and data privacy, then this could be the role for you.

I am ideally looking for an individual from a Security Operations background who has then transitioned into a GRC and GDPR specialist. Any industry experience can be considered for this opportunity, for immediate consideration, apply today!