1 893 Cybersecurity Manager jobs in Bahrain

• Identify, assess, and manage information security risks.
• Conduct vulnerability assessments and penetration testing.
• Develop and implement security policies and procedures.
• Monitor security systems and respond to incidents.
• Ensure compliance with relevant security standards and regulations.
• Develop and execute incident response and disaster recovery plans.
• Provide security awareness training to employees.
• Collaborate with IT and business units on security initiatives.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 4 years of experience in information security, with a focus on risk management.
• Proficiency in cybersecurity frameworks (e.g., NIST, ISO 27001).
• Experience with vulnerability assessment and penetration testing tools.
• Strong understanding of network security, application security, and data protection.
• Excellent analytical, problem-solving, and communication skills.
• Relevant certifications such as CISSP, CISM, or CompTIA Security+ are a plus.
• Ability to work effectively in a remote team environment.

• Conduct comprehensive information security risk assessments across various systems, applications, and business processes.
• Develop and implement risk mitigation strategies and security controls in line with industry best practices and regulatory requirements (e.g., ISO 27001, NIST).
• Monitor and analyze security threats, vulnerabilities, and incidents, providing timely and effective responses.
• Develop and maintain information security policies, standards, and procedures.
• Perform security audits and compliance checks to ensure adherence to internal policies and external regulations.
• Manage vulnerability scanning and penetration testing programs, and coordinate remediation efforts.
• Design and implement security awareness training programs for employees.
• Collaborate with IT and business units to integrate security considerations into project lifecycles.
• Stay updated on the latest cybersecurity trends, threats, and technologies.
• Develop and manage incident response plans and conduct post-incident reviews.
• Analyze security metrics and key risk indicators (KRIs) to report on the organization's security posture.
• Provide expert advice and guidance on information security matters to stakeholders at all levels.
• Manage third-party risk assessments and ensure vendor compliance with security requirements.

• Bachelor's degree in Information Security, Computer Science, Cybersecurity, or a related field. Master's degree or relevant certifications are highly desirable.
• Minimum of 7 years of experience in information security, with a strong focus on risk management, vulnerability assessment, and compliance.
• Relevant certifications such as CISSP, CISM, CRISC, or CISA are strongly preferred.
• In-depth knowledge of cybersecurity frameworks (NIST, ISO 27001, SOC 2) and risk assessment methodologies.
• Experience with security technologies including SIEM, IDS/IPS, firewalls, and endpoint security solutions.
• Strong understanding of threat intelligence and incident response procedures.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Exceptional written and verbal communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences.
• Proven ability to work independently and manage multiple priorities in a remote work environment.
• Experience in the financial services or fintech industry is a plus.

• Lead, manage, and mentor a team of SOC analysts and engineers.
• Develop and implement the strategic roadmap for the SOC, including technology adoption and process improvements.
• Oversee the 24/7 security monitoring operations, ensuring timely and effective detection and response to security incidents.
• Manage the Security Information and Event Management (SIEM) platform, ensuring optimal performance and utilization.
• Develop and refine incident response playbooks and procedures.
• Coordinate and lead incident response activities during security breaches.
• Integrate threat intelligence feeds and proactively hunt for threats within the environment.
• Establish and monitor Key Performance Indicators (KPIs) and Service Level Agreements (SLAs) for the SOC.
• Collaborate with other IT and security teams to implement security controls and remediation efforts.
• Ensure compliance with relevant security frameworks and regulations.
• Manage vendor relationships for security tools and services.
• Develop and deliver regular reports on SOC activities, threat landscape, and incident trends to senior management.
• Conduct regular training and development for SOC personnel.
• Maintain and improve the effectiveness of security monitoring tools and technologies.

This role will be responsible for handling the implementation and maintenance of GFG and subsidiaries Information Security Management System in accordance with local laws, regulations and best practices.

1. Support Head Information Security in defining and implementation of information security governance documentation including policies, manual, SOPs and guidelines.
2. Support Head Information Security in conducting Risk-based Assessment of Information Security policies and operating procedures owned by other departments within the group against industry-recognized security standards and best practices, ensuring adequate preventive, detective and corrective controls to provide data integrity, confidentiality and availability.
3. Support Head Information Security in conducting analysis of security requirements and controls to identify gaps and provides recommendations of industry best practices, trends, and technology products.
4. Support Head Information Security in conducting on annual basis and continuous basis Information Security Risk Assessment, identify business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
5. Develop and maintain information register and ensure that the information is classified by data owners and protected in accordance with the information classification framework.
6. Conducting awareness sessions to the new and existing employees on information security policies and global trends as per the awareness program.
7. Support in defining information security requirements in information systems, projects and third parties in cooperation with the delivery departments i.e. ICT, and FM.
8. Support in conducting incident investigation for information security incidents and ensuring that the necessary actions and disciplinary actions are taken.
9. Support in defining information security requirements to be included in ICT Disaster recovery plans to ensure continuity of information security controls during disasters.
10. Support in conducting internal and external audits to ensure that BAC Information Security Management system complies with best practices and local regulations.
11. Improve the maturity of the information security management system through suggesting and supporting in the implementation of technologies such as DLP solutions, GRC solutions etc.

Bachelor’s degree in information technology.

Certified Information Security Auditor (CISA) (Preferred)

3+ years of Information Security experience

1. Proven ability to establish and manage “dotted-line” business relationships to deliver agreed outcomes/deliverables.
2. Ability to work effectively with all levels of personnel across the organization.
3. Proven ability to communicate clearly and appropriately based on audience with excellent facilitation and customer service skills.
4. Excellent written and verbal communications, critical thinking skills, effective interpersonal skills, strong formal presentation abilities.
5. Ability to be flexible and work effectively with ambiguity and change.

• Monitor security infrastructure for threats and anomalies using SIEM and other security tools.
• Conduct vulnerability assessments and penetration testing.
• Respond to and investigate security incidents, developing containment and eradication strategies.
• Implement and maintain security controls and policies.
• Develop and deliver security awareness training to employees.
• Analyze security logs and reports to identify potential risks and trends.
• Collaborate with IT teams to ensure security is integrated into system design and implementation.
• Stay current with the latest cybersecurity threats, vulnerabilities, and technologies.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 4 years of experience in information security or cybersecurity operations.
• Strong knowledge of network security, firewalls, IDS/IPS, and endpoint security solutions.
• Experience with SIEM platforms (e.g., Splunk, QRadar) and vulnerability management tools.
• Understanding of security frameworks (e.g., NIST, ISO 27001).
• Relevant certifications such as CISSP, CompTIA Security+, or CEH are highly desirable.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Strong communication and collaboration abilities, effective in remote settings.

• Monitor security alerts and events using SIEM and other security tools.
• Investigate security incidents and breaches, developing and executing response plans.
• Conduct vulnerability assessments and penetration testing.
• Implement and maintain security controls across networks and systems.
• Analyze threat intelligence to proactively identify and mitigate risks.
• Develop and update security policies, procedures, and documentation.
• Assist in security awareness training for staff.
• Ensure compliance with industry regulations and security best practices.
• Collaborate with IT teams to integrate security measures into infrastructure.
• Perform regular security audits and reviews.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• 2-4 years of experience in information security or cybersecurity analysis.
• Strong knowledge of network security, firewalls, IDS/IPS, and SIEM technologies.
• Familiarity with security frameworks (e.g., NIST, ISO 27001).
• Excellent analytical and problem-solving skills.
• Relevant certifications such as CompTIA Security+, CEH, or CISSP are a plus.
• Ability to work effectively in both on-site and remote environments.
• Strong written and verbal communication skills.