The Chief Information Security Officer (CISO) at Dubai Civil Aviation Authority (DCAA) will be responsible for setting and executing the organization’s information security strategy. This senior leadership role will drive the governance of cybersecurity, ensure regulatory compliance, and manage cyber risks across the organization’s systems, networks, and data. The CISO works closely with top-level executives to promote a robust cybersecurity culture and resilience.

Key Responsibilities:

Functional Responsibilities:

• Develop and lead DCAA’s cybersecurity strategy aligned with business goals.

• Create and enforce information security policies aligned with ISO 27001 and DESC standards.

• Perform risk assessments and establish mitigation strategies, including disaster recovery plans.

• Design and maintain scalable and secure system architectures.

• Lead incident response planning and management, including post-incident review.

• Collaborate with IT, Legal, and other departments to embed security into business operations.

• Deliver training programs and foster a culture of cybersecurity awareness.

• Monitor DCAA’s security posture and report on KPIs and incidents to executive stakeholders.

• Keep abreast of new cybersecurity threats and technologies to improve defenses.

• Assess third-party vendor security compliance.

• Manage security project budgets and resource allocation effectively.

• Form and guide internal security governance committees.

• Act as the main liaison for audits and regulatory security matters.

• Provide support in crisis situations involving security threats.

• Promote ethics, accountability, and compliance with all data privacy and protection regulations.

• Ensure adherence to all confidentiality and non-disclosure requirements.

• Fulfill additional duties assigned by the Head of HR Policies and Development.

Managerial Responsibilities:

• Lead and coordinate team efforts and project initiatives within the cybersecurity unit.

Qualifications:

Education:

• Bachelor’s or Master’s degree in Computer Engineering, Information Technology, Cybersecurity, or a related field.

Certifications (preferred):

• CISSP (Certified Information Systems Security Professional)

• CISM (Certified Information Security Manager)

• CRISC (Certified in Risk and Information Systems Controls)

• C|CISO (Certified Chief Information Security Officer)

• ISO 27001:2022 Lead Auditor/Implementer

• GSEC (GIAC Security Essentials)

Experience:

• Minimum of 8–10 years of relevant work experience in information security or related fields.

Why Join DCAA?

Be part of a highly strategic and future-focused aviation authority where your expertise in cybersecurity will shape the safety and digital resilience of Dubai’s aviation ecosystem. Work with forward-thinking leaders and contribute to national-level digital security.