About the Job:
Space42 is a UAE-based AI-powered SpaceTech company that integrates satellite communications, geospatial analytics, and artificial intelligence capabilities. Following the merger of Bayanat and Yahsat in 2024, Space42 aims to address the evolving needs of governments, enterprises, and communities through its two business units: Yahsat Space Services and Bayanat Smart Solutions. The company is committed to pioneering new technologies and enhancing the use of data derived from space.
Role Purpose:
The Information Security Risk & Compliance Specialist is responsible for ensuring adherence to information security protocols, managing vendor risks, and meeting regulatory compliance requirements. This role involves collaboration with internal teams, external vendors, and regulatory bodies to mitigate risks, manage compliance audits, and maintain the security posture of the company’s IT infrastructure and third-party relationships.
Key Responsibilities:
-
Vendor Risk Management:
- Establish and manage the Information Security Vendor Risk Management framework.
- Conduct vendor risk assessments to evaluate security practices and compliance.
- Develop and maintain a vendor risk management program.
- Collaborate with procurement and legal teams on security-related contract clauses.
- Monitor ongoing vendor relationships for compliance.
-
Compliance Management:
- Implement a compliance framework aligned with legal, corporate, and local standards.
- Ensure compliance with industry regulations like ISO 27001, PCI-DSS, etc.
- Conduct internal audits to verify compliance effectiveness.
- Develop compliance management processes and conduct periodic reviews.
-
Security Awareness:
- Create security training and awareness campaigns for various audiences.
- Document and report compliance status to senior management.
Qualifications:
- Bachelor’s degree in Information Security, Information Technology, or a related field.
- 4+ years of experience in information security, vendor risk management, and regulatory compliance.
- Strong knowledge of security frameworks (e.g., NIST, ISO 27001) and regulations (e.g., UAE IA, GDPR).
- Relevant certifications such as ISO 27001 LA/LI, CISSP, or CISA are preferred.
- Excellent communication and data analytical skills.
Language Requirements:
Fluency in English is preferred; additional language skills are a plus.
Location:
Abu Dhabi, Abu Dhabi Emirate, United Arab Emirates
Work Conditions:
On-site, Contract
