Masdar
Senior Officer – Security & Governance
- Permanent
- Abu Dhabi, United Arab Emirates
- Experience 5 - 10 yrs
- Urgent
Job expiry date: 04/05/2026
Job overview
Date posted
21/03/2026
Location
Abu Dhabi, United Arab Emirates
Salary
AED 20,000 - 30,000 per month
Compensation
Job description
The Senior Officer – Security & Governance at Masdar (Abu Dhabi Future Energy Company) is responsible for leading and executing cybersecurity operations and governance activities within a global clean energy organization. The role focuses on implementing robust security controls, risk management frameworks, and compliance measures to safeguard the confidentiality, integrity, and availability of organizational data across IT infrastructure and multi-cloud environments. The position requires deep expertise in Information Security Management System (ISMS), Zero Trust Architecture, SIEM, SOAR, IAM, DevSecOps frameworks, and governance, risk, and compliance (GRC) frameworks. The role includes developing advanced information security frameworks aligned with regulatory standards such as GDPR, NESA, NCA ECC, HIPAA, and PCI-DSS, while ensuring adherence to legal and regulatory requirements. Responsibilities include managing threat intelligence and incident management programs using tools such as Palo Alto Cortex XSOAR, Splunk, IBM QRadar, Azure Security Center, AWS Security Hub, and GCP Security Command Center. The position involves conducting cloud security gap assessments, designing secure remote access solutions, overseeing enterprise security architecture for multi-cloud environments, and implementing continuous improvement of ISMS governance structures. The role also includes performing security risk analysis, monitoring vulnerabilities, executing security audits, managing data classification initiatives, and delivering training programs. The candidate must support incident investigations, maintain incident response plans, track security metrics and KPIs, and ensure compliance with IT governance, QA/QC standards, and organizational security policies while aligning cybersecurity strategy with business objectives.
Required skills
Key responsibilities
- Develop and implement advanced information security frameworks and strategies aligned with Zero Trust Architecture, regulatory requirements, and emerging cyber threats
- Establish, implement, review, and continuously improve the Information Security Management System (ISMS) in alignment with organizational security objectives
- Execute and enforce security policies, standards, procedures, and guidelines in coordination with the Security Committee
- Develop and maintain risk management programs to assess and mitigate information security risks across IT infrastructure and cloud environments
- Design, deploy, and manage network security infrastructure and secure remote access solutions
- Develop and enhance incident management and threat intelligence programs using SIEM, SOAR, and AI-driven analytics tools
- Conduct security risk analysis, vulnerability assessments, data classification exercises, and security audits, and implement remediation plans
- Ensure compliance with regulatory frameworks including GDPR, NESA, NCA ECC, HIPAA, and PCI-DSS and monitor adherence to governance, risk, and compliance (GRC) frameworks
- Lead incident response planning, testing, monitoring, and post-incident reviews to ensure continuous improvement and effective resolution
- Provide security governance support, reporting, metrics tracking, and KPI monitoring to senior management
- Conduct cloud security gap assessments and develop remediation strategies aligned with UAE regulatory requirements and international standards
- Deliver security awareness and incident management training programs to employees and stakeholders
- Monitor and report on security posture, identify vulnerabilities, and develop solutions to enhance enterprise security resilience
- Perform daily cybersecurity operations and governance activities to ensure minimal disruption to IT services and users
Experience & skills
- Bachelor’s degree in Computer Science, Information Systems, Cyber Security or related field; Master’s degree in IT Management with focus on Security and Governance is an asset
- 6–8 years of progressive experience in cybersecurity operations, governance, risk management, and compliance
- Hands-on expertise with SIEM, SOAR, IAM, and DevSecOps frameworks
- Strong knowledge of international security and compliance standards including GDPR, NESA, NCA ECC, HIPAA, and PCI-DSS
- Technical expertise in security tools including Palo Alto Cortex XSOAR, Splunk, IBM QRadar, Azure Security Center, AWS Security Hub, and GCP Security Command Center
- Experience in designing and managing network security infrastructure and multi-cloud security architectures
- Strong understanding of IT governance, project planning, and QA/QC processes
- Proven ability to conduct incident investigations, risk assessments, and implement incident response strategies
- Strong analytical, problem-solving, communication, and interpersonal skills
- Ability to manage multiple priorities and operate effectively in a fast-paced environment