Help AG, an e& enterprise company, is seeking an experienced Cyber Trust Advisory (GRC) Consultant who is a fluent Arabic speaker to join our team in the UAE. The successful candidate will be responsible for designing, implementing, and overseeing security governance frameworks, policies, and risk management strategies. As a key member of our security team, you will collaborate with internal and external stakeholders to ensure compliance with regulatory requirements, conduct risk assessments, and assist organizations in achieving security certifications.
Responsibilities:
- Design and enforce Data Loss Prevention (DLP) policies, Information Security Management Systems (ISMS) frameworks, and risk management programs.
- Establish information classification and data protection controls.
- Ensure adherence to ISO/IEC 27001, UAE IA, NECMA, UAE PDPL, and other regulatory standards.
- Conduct gap analysis, compliance audits, and risk assessments.
- Develop and maintain security policies, procedures, and governance frameworks.
- Perform cybersecurity risk assessments and propose mitigation strategies.
- Conduct Business Continuity Management (BCM) reviews and develop resilience strategies.
- Identify potential threats and ensure incident response plans align with compliance standards.
- Provide expert guidance on cybersecurity governance, risk management, and compliance (GRC).
- Support organizations in achieving ISO 27001 certification and improving cybersecurity maturity.
- Advise on security best practices in data governance, privacy, and regulatory compliance.
- Collaborate with stakeholders to develop security strategies and enhance the security posture.
- Prepare and present detailed security reports, risk assessments, and compliance documentation.
- Coordinate with internal and external auditors to ensure cybersecurity compliance.
- Conduct security awareness training for employees and leadership teams.
- Develop cybersecurity guidelines and best practice documentation.
- Assist in establishing incident response procedures and forensic investigations.
Qualifications & Skills:
- University degree in a technical subject related to IT and/or Information Security (Master's Degree preferred).
- Excellent command of information security concepts, such as risk assessment and auditing.
- Minimum of 5 years of working experience.
- Hands-on experience implementing at least 10 of the following standards: ISO/IEC 27001, ISO 22301, ISR, UAE IA, ADHICS, PCI-DSS, ISO/IEC 20000-1, and NCEMA.
- Experience in data classification and privacy consulting projects.
- Two or more formal certifications related to the above standards, and at least one of the following: CISSP, CISA, and/or CISM.
- Fluent in Arabic, with experience in Arabic document writing, is highly valued.
- Excellent communication, interpersonal, negotiation, and conflict resolution skills.
- Project leadership experience and capabilities.
- A flexible work approach based on job requirements and an ability to manage project timelines and budgets effectively.
Benefits:
- Health insurance with leading global providers.
- Opportunities for career progression and growth through challenging projects.
- Employee engagement and wellness campaigns throughout the year.
- Excellent learning and development opportunities.
- Annual flight tickets.
- Inclusive and diverse working environment.
- Flexible/Hybrid working environment.
- Open door policy.
Help AG is the cybersecurity arm of e& enterprise and provides enterprise businesses and government entities across the Middle East with strategic consultancy combined with tailored information security services. With a presence in the Middle East since 2004, Help AG has established itself as the region's trusted IT security advisor, focusing on strengthening cyber defenses and safeguarding businesses.
