Zero Tax Jobs Logo
Post a Job
Company logo hidden

Director of GRC

Unlock employer Dubai, United Arab Emirates Posted: 22 Oct 2025

Apply Direct

Financial

  • Estimate: $120k - $180k*
  • Zero income tax location

Accessibility

  • Office Only
  • Apply from abroad
  • Relocation Support
  • Visa Provided

Requirements

  • Experience: Senior
  • English: Professional
Explore similar roles:
View Unspecified jobs in Dubai View all Unspecified jobs

Position

We are seeking a highly accomplished Director of Information Security GRC to join a senior leadership team. This is a crucial role responsible for governing and institutionalizing cybersecurity risk, regulatory compliance, and control frameworks across the Group’s global operations. You will lead the design and continuous enhancement of enterprise-wide GRC programmes, enabling robust, risk-informed decision-making and ensuring adherence to global and regional standards. If you are adept at partnering with C-level stakeholders across Legal, Internal Audit, HR, and Technology to operationalize trust, this is your next challenge.

Ready to apply for roles like this?

Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.

Unlock employer & apply directly

Key Responsibilities:

  • GRC Strategy & Operating Model: Design and execute the Information Security GRC strategy, defining the operating model and KPIs to ensure scalable, effective governance practices.
  • Risk Management: Own the Information Security Risk Management Framework (ISRMF), including risk identification, quantification (e.g., FAIR), assessment, and integration into project and third-party governance.
  • Policy & Compliance: Develop and maintain security policies aligned with standards like ISO 27001, NIST CSF, and COBIT. Ensure robust compliance with regional regulations, including Global Data Protection Laws and Sector-Specific Standards (like PCI-DSS).
  • Audit Readiness: Lead internal/external audits, manage global security certification efforts, and collaborate with Internal Audit and Legal to ensure efficient issue closure.
  • Third-Party Risk Management (TPCRM): Own the end-to-end Third-Party Cybersecurity Risk Management programme, defining due diligence, contract clauses, and periodic reassessments.
  • GRC Technology: Oversee the GRC platform, driving integration with ITSM and other systems to automate workflows and enhance reporting.

Your Experience & Credentials:

  • 12+ years of progressive experience in cybersecurity or technology risk, with 5+ years in a senior GRC leadership role within a global enterprise.
  • Strong track record managing multi-audit environments and engaging C-level stakeholders across complex compliance matters.
  • Deep understanding of global and regional data protection laws and enterprise risk management principles.
  • Relevant certifications are strongly preferred: CISM, CRISC, CGEIT, CISSP, ISO 27001 Lead Auditor, or equivalent.
  • Bachelor’s or Master’s degree in Cybersecurity, Information Assurance, Law, Risk Management, or a related field.

Work Conditions: On-site, Full-time
Location: Dubai, United Arab Emirates
Relocation Package: Available for international candidates

This is a key leadership appointment, requiring a strategic, pragmatic, and highly organized professional dedicated to embedding security accountability at the highest level.

Apply Direct

Jobs you might like   View all jobs

About Staffing and Recruiting Company

Company details are hidden. Subscribe to view full company profile.
Learn more

Related Articles

How to Find a Tech Job in Dubai, United Arab Emirates cover image

How to Find a Tech Job in Dubai, United Arab Emirates

 The Best Companies in Dubai to Work for as a Software Engineer cover image

The Best Companies in Dubai to Work for as a Software Engineer

 Perks for Software Developers in Dubai and the UAE cover image

Perks for Software Developers in Dubai and the UAE

Ready to apply for this role?

Apply Direct