Information Security Operations Lead

Job Title: Information Security Operations Lead

Reporting To: Chief Technology Officer

Role Summary

The Information Security Operations Lead is responsible for managing enterprise cybersecurity operations, ensuring regulatory compliance, mitigating risks, and implementing advanced security controls across infrastructure, cloud, applications, and endpoints.

Key Responsibilities

• Maintain IT/IS policies aligned with NIST, ISO 27001, UAE CB, and GDPR; ensure audit readiness.
• Lead cybersecurity risk assessments and maintain a dynamic risk framework.
• Design and implement Zero Trust architecture, secure network access, and segmentation.
• Plan and oversee VAPT activities; ensure timely vulnerability remediation.
• Secure cloud and container environments (AWS, Azure, GCP) using DevSecOps practices.
• Manage IAM/PAM, EDR/XDR, patching, DLP, and endpoint security.
• Operate SIEM, SOAR, threat hunting, and incident response.
• Oversee third-party risk management and support audits/regulatory requirements.

Key Skills

• Regulatory compliance (NIST, ISO 27001, UAE CB, PCI DSS)
• Cloud security & DevSecOps (SAST, DAST, SCA, IaC)
• VAPT & vulnerability management
• IAM/PAM, EDR/XDR, SIEM/SOAR
• Zero Trust & network security

Qualifications

• Bachelor's/Master's in IT or Cybersecurity
• 6–10 years of experience (Banking/Fintech preferred)
• Certifications: CISSP, CISM, CISA, CEH, ISO 27001