Posted
Ref: SP111-02
Job description / Role
The Chief Information Security Officer (CISO) and Data Protection Officer (DPO) collectively ensure the cybersecurity and data protection compliance of a Virtual Asset Service Provider (VASP) in line with UAE and VARA regulations.
Their responsibilities include:
• Developing and implementing security and data protection frameworks: Establishing robust policies, procedures, and standards to protect the VASP’s systems, data, and customer information while ensuring compliance with VARA and other regulatory requirements.
• Conducting risk and compliance assessments: Regularly evaluating the VASP's security and data protection posture to identify vulnerabilities, threats, and non-compliance issues.
• Managing security controls and data governance: Overseeing the implementation and maintenance of security measures (e.g., firewalls, access controls) and ensuring data processing activities are lawful and compliant.
• Incident response and communication: Developing comprehensive plans to address security breaches and responding to data subject requests and complaints efficiently.
• Advising management and raising awareness: Providing senior management with actionable insights on cybersecurity and data protection matters while educating employees on best practices and principles.
• Collaborating with authorities: Ensuring smooth interaction with VARA and other relevant supervisory bodies on cybersecurity and data protection compliance.
Requirements:
CISO and DPO roles within VARA-regulated organizations in Dubai require strong leadership, expertise in cybersecurity and data protection, and a deep understanding of virtual asset regulations. The CISO focuses on securing digital assets and infrastructure, while the DPO ensures compliance with data privacy laws and manages risks associated with personal and financial data. Both roles are crucial for safeguarding organizational integrity and meeting regulatory standards in the rapidly evolving virtual asset sector. The ideal candidate should have proven experience in both cybersecurity and data protection fields, as this position combines both responsibilities into one role.
Salary:
AED
5,000 to 12,000
per month inclusive of fixed allowances.
Additional benefits: Medical Insurance
About the Company
A leading company in UAE.
Head of IT
Big Fish Recruitment |
Dubai | 16 Dec |
![]() |
Data Entry Executive
Parisima Talent |
Dubai | 12 Dec |
![]() |
IT Analyst
Westlakes Recruit |
Abu Dhabi | 13 Dec |
![]() |
IT Support Engineer
ManpowerGroup Middle East |
Dubai | 10 Dec |
![]() |
IT Manager
Michael Page |
UAE | 12 Dec |
![]() |