Posted
Ref: HP647-3261
Job description / Role
About the role
Our client is seeking a highly skilled IM&T Senior Cybersecurity Consultant & ISO 27001 Program Controller to lead and support the implementation of IT & OT cybersecurity programs and ensure ongoing compliance with ISO 27001 standards. This critical role will be instrumental in executing the client's ISMS Phase 7 Program while strengthening cybersecurity governance, risk management, and assurance capabilities across diverse digital and operational landscapes.
Key responsibilities
- Oversee and manage IT & OT cybersecurity management systems in compliance with industry standards.
- Lead multiple full-cycle implementations of ISA 62443 and ISO 27001:2022 ISMS frameworks.
- Conduct and report on comprehensive IT & OT cybersecurity risk assessments and propose mitigation strategies.
- Perform internal audits, compliance checks, and site security gap assessments across multiple locations.
- Manage the ISO 27001 certification and surveillance audit process.
- Develop, review, and maintain cybersecurity governance documentation and policies.
- Act as a subject matter expert in ISO 27001 and ISA 62443, advising on secure system design, deployment, and operations.
- Collaborate with cross-functional teams to deploy and maintain a secure IT/OT environment.
- Conduct cybersecurity training, awareness sessions, and mentor internal teams.
- Ensure effective execution of the client's Cybersecurity Discipline Controls Assurance Framework (DCAF).
Qualifications & experience
- Graduate or postgraduate degree, or equivalent experience in ISMS and cybersecurity.
- 20+ years of experience in IT cybersecurity management systems.
- 10+ years in IT/OT auditing and cybersecurity reporting.
- 5+ years in OT security, preferably within industrial or energy sectors.
- Demonstrated experience in:
- At least 2 ISA 62443 implementations.
- At least 5 ISO 27001:2022 implementations.
- Strong project management skills with expertise in cybersecurity risk management and mitigation.
- Excellent written and verbal communication skills in English.
Mandatory certifications
- ISO 27001:2022 Lead Auditor
- Certified Information Security Manager (CISM)
- Certified in Risk and Information Systems Control (CRISC)
- Certified in Governance of Enterprise IT (CGEIT)
- Global Industrial Cybersecurity Professional (GICSP)
- Shell OT Security & DCAF Trainings
- ITIL V3 Foundation
Preferred certifications
ISA 62443 (IC33M, IC34M, IC37M), GRID, GCIP, CEH, OSCP, GCIA, GCIH, Security+
What we're looking for
- Deep understanding of OT cybersecurity standards (ISA/IEC 62443, NIST, ISO 27000 family).
- Proven leadership in managing cybersecurity compliance programs within complex enterprise and industrial environments.
- Ability to work independently and collaboratively in a multicultural, cross-disciplinary setting.
- Strategic thinker with strong analytical, organizational, and mentorship capabilities.
Why join?
This is a unique opportunity to contribute to a forward-thinking cybersecurity strategy and play a pivotal role in protecting vital infrastructure. The role offers a challenging environment, cross-functional collaboration, and a chance to shape a secure digital future with a leading industry client.
About the Company
We lead in the creation and delivery of innovative workforce solutions and services that enable our clients to win in the changing world of work.
ManpowerGroup powers the success of many of the world's most dynamic organizations. We deliver innovative workforce solutions that enhance competitiveness, increase efficiency and spur productivity. Combining global reach with local expertise - 3600 offices in over 80 countries - we know the changing world of work and bring a deep understanding of the companies we work for and the industries we service.
ManpowerGroup entered the Middle East in December 2007 after acquiring local company Clarendon Parker, thus bringing 15 years in-depth local knowledge combined with a global footprint and industry shaping expertise and thought leadership. Manpower Middle East supports clients in the Middle East and North Africa regions. Our business is aligned to key skill specializations to ensure our clients requirements are met by expert and knowledgeable consultants that understand your industry and role requirement.
Our consultants are experts in finding the right talent across all industries in a broad-range of occupations including:
- IT & Telecommunications
- Engineering & Construction, Oil & Gas
- Banking, Finance & Legal
- Sales & Business Development
- Marketing, Public Relations & Communications
- Human Resources & Training
- Customer & Support Services (Secretarial and Administrative)
- Operational, Supply Chain & Logistics
- Executive Recruitment
- Emiratization Solutions
- Recruitment Program Outsourcing Solutions
- Managed Service Provider Solutions
- Talent Based Outsourcing Solutions
- Outsourced Staffing Solutions
Cybersecurity Defense Specialist
Giza Systems |
Saudi Arabia | 7 May |
![]() |
Network Security Engineer
Etimad Holding |
Abu Dhabi | 26 Mar |
![]() |
IT Manager
MENA Assistance |
Dubai | 28 Apr |
![]() |
Security Engineer
Westlakes Recruit |
Riyadh | 22 May |
![]() |
IT Manger
Volantes Technical Recruitment |
Dubai | 19 Mar |
![]() |