Job Description

About the Data & AI Hub

At Data & AI Hub we're unlocking cross-portfolio value through a centralized data platform and AI-powered solutions that drive efficiency, profitability, and innovation across our operating companies. Aligned with the UAE's bold vision for AI leadership, Data & AI Hub is shaping the future of data-driven governance, building the next generation of AI products with both regional and global impact.

About the Role

We are seeking a hands-on Information Security & Compliance Specialist to drive our compliance, governance, and data protection initiatives--ensuring alignment with UAE data sovereignty laws and regulatory standards such as ISO 27001 and NESA.


In this role, you will lead the implementation of Data Protection Impact Assessments (DPIAs), define and enforce security baselines across infrastructure and applications, and embed compliance controls into engineering and operational workflows. You will also serve as a key liaison between internal teams and external auditors, helping maintain a proactive, risk-based approach to cybersecurity and regulatory compliance.


This role requires a strong understanding of UAE data protection laws, hands-on experience with risk management frameworks, and excellent collaboration and documentation skills. The ideal candidate will have a proven track record in driving compliance programs within complex, fast-paced environments--ideally within the UAE public or private sector.

Key Responsibilities

Conduct Data Protection Impact Assessments (DPIAs) and ensure compliance with UAE data sovereignty laws Establish and enforce security baselines across Infrastructure, applications, Cloud environments Define and implement tiered security controls aligned with: ISO 27001, NESA (UAE) and other relevant local regulations Collaborate with engineering, product, and operations teams to integrate compliance requirements into development workflows Monitor and assess risks, ensuring alignment with governance standards and internal audit protocols Stay updated on UAE data protection, cybersecurity, and compliance frameworks Prepare documentation, policies, and audit reports for internal and external stakeholders

Candidate Requirements

5+ years' experience in information security, compliance, governance Proven experience with risk management frameworks, DPIAs, regulatory audits Familiarity with UAE regulations, NESA standards, ISO 27001

Disclaimer:

This job posting is not open to recruitment agencies. Any candidate profile submitted by a recruitment agency will be considered as being received directly from an applicant. Contango reserves the rights to contact the candidate directly, without incurring any obligations or liabilities for payment of any fees to the recruitment agency.