du
Manager Security Implementation and Operations (Technology Risk Management – Telecom)
- Permanent
- Dubai, United Arab Emirates
- Experience 5 - 10 yrs
Job expiry date: 30/03/2026
Job overview
Date posted
13/02/2026
Location
Dubai, United Arab Emirates
Salary
AED 20,000 - 30,000 per month
Compensation
Job description
The Manager Security Implementation and Operations (UAE National) within the Technology/Infra domain at du HQ is responsible for leading and managing the Risk Management exercise across all Technology domains within a telecommunications environment. The role oversees Technology Risk Management for Fixed Core, PSTN, IPTV, IPT, VOIP, and Mobile 2G/3G as well as IT technology domains, ensuring compliance with security standards such as ISO27001 and ITU-X.805. The position requires managing Risk & Security Assessment activities, both internal and external, ensuring findings are documented and submitted to senior management of ISRM in the agreed format. The manager communicates identified risks and observations to respective technical teams, provides advisory guidance and mitigation strategies, and ensures remediation plans are properly defined and implemented. Working closely with the Director - Security Risk Management & Compliance, the role ensures all Risk Management & Security Assessment issues are understood, tracked, and resolved with appropriate remediation planning. The role includes raising awareness of Risk Management & Security Assessment across the Technology Unit, controlling external consultants with diverse technical expertise, and overseeing risk treatment strategies including transferring risk, avoiding risk, reducing negative impact, or accepting risk consequences where appropriate. The manager contributes to strategy formulation and implementation oversight, develops automated techniques to create executive-level security risk management dashboards for the Technology Unit, and establishes Risk & Security Assessment methodologies, plans, and work programs with quality assurance of Risk & Security Assessment functionality. The role requires a minimum of 7 years of experience in information and security Risk Management within a Telecom industry environment (PSTN, GSM, Video and IT), strong understanding of Security Risk Management, and relevant qualifications including Bachelor’s degree in Telecom Engineering, Information Security, or Information Systems, along with certifications such as CISSP, CRISC, CISA, LA ISO 27001, CEH (desirable: CCNP, MCSE, PMP).
Required skills
Key responsibilities
- Manage the Risk Management exercise across all Technology domains, including Fixed Core, PSTN, IPTV, IPT, VOIP, Mobile 2G/3G, and IT technology domains, ensuring full compliance with ISO27001 and ITU-X.805 security standards.
- Lead Technology Risk Management activities and conduct comprehensive Risk & Security Assessment (internal and external), document findings, and submit reports to senior management of ISRM in the agreed format.
- Communicate risk findings and observations to respective technical teams, provide advisory guidelines for mitigation, and ensure proper remediation plans are defined, tracked, and implemented in coordination with the Director - Security Risk Management & Compliance.
- Oversee risk treatment strategies including transferring risks, avoiding risks, reducing the negative effects of risks, or accepting risk consequences as part of structured Security Risk Management governance.
- Develop Risk & Security Assessment methodologies, plans, and work programs, ensuring quality assurance of Risk & Security Assessment functionality and consistent execution across the Technology Unit.
- Design and implement automated techniques to produce executive-level security risk management dashboards, providing visibility into Technology Unit risk posture and compliance status.
- Control and manage external consultants with a wide range of technical expertise to ensure alignment with Risk Management objectives and security compliance requirements.
- Contribute to strategy formulation and provide implementation oversight to ensure alignment between security risk management practices and corporate governance objectives within the Telecom environment.
Experience & skills
- Hold a minimum Bachelor’s degree in Telecom Engineering, Information Security, or Information Systems, and possess professional certifications such as CISSP, CRISC, CISA, LA ISO 27001, and CEH (with CCNP, MCSE, PMP considered desirable).
- Demonstrate a minimum of 7 years of experience in information and security Risk Management within a Telecom industry environment covering PSTN, GSM, Video, and IT domains.
- Exhibit strong expertise in Security Risk Management, Technology Risk Management, Risk & Security Assessment methodologies, and compliance with ISO27001 and ITU-X.805 standards.
- Show ability to analyze information accurately, display sound judgment, solve complex risk-related problems, and present complex technical and security information in an understandable format to senior management and decision makers.
- Demonstrate capability to influence decision makers, take personal responsibility for Risk Management issues, and effectively coordinate remediation planning across technical teams and external consultants.