15 Information Security Manager jobs in Bahrain

Full Time

Knowledge in Finance and Accounting

Knowledge in reporting experience in systems like Excel and other MS Office applications

Experience: 1 - 3 years

• Conduct portfolio analytics and deep dives into the portfolio.
• Regulatory and Management Reporting
• Attention to detail and a commitment to accuracy and quality.
• Strong analytic capabilities.
• Problem solving skills
• Able to effectively work in a closely knit team.

• Risk Analysis
• Risk Assessment
• Spreadsheet Preparation
• Presentation Preparation
• Data Access and Reporting

Job Description

VAM Systems is currently looking for a Fraud Monitoring Analyst (Risk Management) for our Bahrain operations. The ideal candidate will have the following qualifications and responsibilities:

• Experience: 0-2 Years
• Education: Accounting, Banking & Finance, Economics, Fraud, or related fields

Job Responsibilities:

• Monitor customer transactions to identify unauthorized and fraudulent activities based on alerts from the fraud management system.
• Respond to alerts in the assigned queue as per service level agreements to minimize potential losses.
• Handle and resolve incoming fraud reports from customers promptly.
• Understand various fraud types and take responsibility in fraud monitoring roles.
• Communicate effectively in Arabic and English with customers and fraud risk management teams regarding findings.
• Willingness to work in a 24/7 shift role.

Terms and Conditions:

• Joining timeframe: 15-30 days

• Seniority Level: Executive
• Employment Type: Full-time
• Job Function: Finance and Sales
• Industries: IT Services and IT Consulting

Referrals increase your chances of interviewing at VAM Systems by 2x.

Get notified about new Fraud Analyst jobs in Manama, Capital Governorate, Bahrain .

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Job Description

Join Tsaaro as a Senior Data Protection Consultant

Lead with Purpose. Deliver Impact. Shape Privacy.

Are you an experienced

Job Description

Join Tsaaro as a Senior Data Protection Consultant

Lead with Purpose. Deliver Impact. Shape Privacy.

Are you an experienced privacy and security professional looking to take the next big step in your career?

At Tsaaro , we don’t just deliver compliance — we redefine how data privacy and security are implemented across industries.

We’re growing rapidly and are looking for Senior Data Protection Consultant who thrives in dynamic environments, understands complex regulatory frameworks, and has a track record of delivering real-world, high-impact solutions to clients.

About Tsaaro

At Tsaaro, privacy and security are not side functions — they are our core. Our team includes dedicated data privacy consultants and cybersecurity specialists, all collaborating to empower organizations with tailored, effective, and cost-conscious solutions.

We bring a practical, risk-based consulting approach, offering clients actionable insights and hands-on support to help them manage privacy risks, demonstrate compliance, and strengthen their data protection posture.

Your Role: Senior Data Protection Consultant

As a Senior Consultant, you will serve as a strategic advisor to our clients, leading engagements across privacy governance, compliance readiness, and risk management.

Key Responsibilities

• Design, implement, and oversee privacy and data protection programs tailored to client needs.
• Evaluate clients’ privacy and security controls, identifying gaps and building actionable roadmaps.
• Monitor compliance, maintain activity logs, liaise with PDPA, escalate breaches, uphold independence, get accredited
• Lead privacy gap assessments, PIAs, RoPA, DPIAs, and audits across diverse sectors.
• Provide strategic guidance on regulations including PDPA, GDPR, CCPA, Act, and emerging global laws.
• Develop and review privacy policies, training materials, and compliance documentation.
• Drive implementation of ISO 27001, ISO 27701, NIST, and other global frameworks.
• Support incident response planning, breach notification, and Data Subject Rights processes.
• Conduct internal audits, risk assessments, and ISMS documentation in alignment with certification requirements.
• Collaborate with cross-functional client teams to deliver end-to-end privacy solutions.
• Contribute to cybersecurity initiatives including GRC strategy, policy development, and audit readiness.
  
  

• 2+ years of hands-on experience in data privacy, protection, or cybersecurity consulting.
• Strong understanding of global privacy laws such as PDPL, GDPR, CCPA, and others.
• Solid grasp of ISO 27001, 27701, NIST, and related standards.
• Experience in privacy assessments, compliance projects, ISMS implementation, and client communication.
• Certifications such as CIPP/E, CIPM, CIPT, ISO/IEC 27001 LA/LI, ISO/IEC 27701 (preferred).
• Excellent written and verbal communication skills, client-facing confidence, and analytical thinking.
• A mindset that is solution-oriented, collaborative, and growth-driven.
  
  

• The candidate must be fully competent.
• Must hold at least a Bachelor’s Degree in Information Technology
• Possess a recognized professional certification in Information Security, Cybersecurity, or Information Security Audit. Alternatively, candidates with a minimum of two years of practical experience in any of these fields will also be considered.
• Should have a good reputation, with no final conviction for crimes involving breach of trust, honor, or professional ethics, unless legally reinstated.
• Must not have been dismissed from previous employment due to disciplinary actions, or had their professional license revoked/suspended based on a disciplinary ruling.
• Passport or CPR Copy
  
  

• Work with one of the most specialized and fast-growing privacy consulting firms in India.
• Exposure to multinational clients and global regulations.
• A clear career path with opportunities to lead projects and mentor junior consultants.
• Ownership of high-impact, strategic engagements from day one.
• Flexible work culture – hybrid options available.
• Ongoing support for certifications, professional development, and learning.
  
  

Join Tsaaro as a Senior Data Protection Consultant

Lead with Purpose. Deliver Impact. Shape Privacy.

Are you an experienced privacy and security professional looking to take the next big step in your career?

At Tsaaro , we don’t just deliver compliance — we redefine how data privacy and security are implemented across industries.

We’re growing rapidly and are looking for Senior Data Protection Consultant who thrives in dynamic environments, understands complex regulatory frameworks, and has a track record of delivering real-world, high-impact solutions to clients.

At Tsaaro, privacy and security are not side functions — they are our core. Our team includes dedicated data privacy consultants and cybersecurity specialists, all collaborating to empower organizations with tailored, effective, and cost-conscious solutions.

We bring a practical, risk-based consulting approach, offering clients actionable insights and hands-on support to help them manage privacy risks, demonstrate compliance, and strengthen their data protection posture.

Your Role: Senior Data Protection Consultant

As a Senior Consultant, you will serve as a strategic advisor to our clients, leading engagements across privacy governance, compliance readiness, and risk management.

Key Responsibilities:

Design, implement, and oversee privacy and data protection programs tailored to client needs.

Evaluate clients’ privacy and security controls, identifying gaps and building actionable roadmaps.

Monitor compliance, maintain activity logs, liaise with PDPA, escalate breaches, uphold independence, get accredited

Lead privacy gap assessments, PIAs , RoPA , DPIAs , and audits across diverse sectors.

Provide strategic guidance on regulations including PDPA, GDPR , CCPA , Act , and emerging global laws.

Develop and review privacy policies, training materials, and compliance documentation.

Drive implementation of ISO 27001, ISO 27701, NIST , and other global frameworks.

Support incident response planning, breach notification, and Data Subject Rights processes.

Conduct internal audits, risk assessments, and ISMS documentation in alignment with certification requirements.

Collaborate with cross-functional client teams to deliver end-to-end privacy solutions .

Contribute to cybersecurity initiatives including GRC strategy , policy development , and audit readiness .

2+ years of hands-on experience in data privacy, protection, or cybersecurity consulting.

Strong understanding of global privacy laws such as PDPL , GDPR, CCPA , and others.

Solid grasp of ISO 27001, 27701, NIST, and related standards.

Experience in privacy assessments, compliance projects, ISMS implementation , and client communication.

Certifications such as CIPP/E, CIPM, CIPT , ISO/IEC 27001 LA/LI, ISO/IEC 27701 (preferred).

Excellent written and verbal communication skills, client-facing confidence, and analytical thinking.

• A mindset that is solution-oriented, collaborative, and growth-driven .
  Must Have:

Must hold at least a Bachelor’s Degree in Information Technology

Possess a recognized professional certification in Information Security, Cybersecurity, or Information Security Audit. Alternatively, candidates with a minimum of two years of practical experience in any of these fields will also be considered.

Should have a good reputation , with no final conviction for crimes involving breach of trust, honor, or professional ethics, unless legally reinstated.

Must not have been dismissed from previous employment due to disciplinary actions, or had their professional license revoked/suspended based on a disciplinary ruling.

Passport orCPR Copy

Work with one of the most specialized and fast-growing privacy consulting firms in India.

Exposure to multinational clients and global regulations .

A clear career path with opportunities to lead projects and mentor junior consultants .

Ownership of high-impact, strategic engagements from day one.

Flexible work culture – hybrid options available.

Ongoing support for certifications, professional development, and learning.

From the Tsaaro Team:

"At Tsaaro, we’re building not just a consulting firm, but a community of privacy professionals who care about making a difference. If you’re ready to move beyond checklists and become a true advisor, we want you on our team."

Ready to Elevate Your Privacy Career?

Apply now and be a part of Tsaaro’s mission to revolutionize privacy and cybersecurity consulting .

Play a crucial role in ensuring compliance with data protection laws and regulations, establishing and maintaining robust data protection policies and procedures, and acting as a key contact person for all data protection matters within the organization. The ideal candidate should possess a deep understanding of data protection principles, excellent communication skills, and the ability to collaborate effectively across departments.

Responsibilities:

1. Conduct regular audits and assessments to evaluate the effectiveness of existing data protection measures and identify opportunities for enhancement.
2. Act as a liaison with regulatory authorities and external auditors during data protection audits, investigations, or inquiries.
3. Monitor and assess the organization's data processing activities to identify potential risks, compliance gaps, and areas for improvement.
4. Lead incident response and breach management activities, including conducting investigations, implementing containment measures, and ensuring timely reporting of data breaches as mandated by applicable laws.
5. Develop and implement comprehensive data protection policies, procedures, and guidelines to ensure full compliance with relevant data protection laws and regulations.
6. Collaborate with relevant departments to review and evaluate privacy impact assessments (PIAs) for new projects, systems, or processes involving the collection, use, or storage of personal data.
7. Provide expert advice and guidance to management and employees on data protection requirements, best practices, and the implementation of effective security measures.
8. Serve as the primary point of contact for all data protection-related queries, requests, and concerns from internal stakeholders, data subjects, and regulatory authorities.
9. Develop and deliver training programs and awareness initiatives to educate employees on data protection principles, policies, and practices.

Qualifications:

1. Bachelor's degree in a relevant field, such as law, information technology, or data protection.
2. Certification as a Data Protection Officer (CDPO) or equivalent is preferable.
3. In-depth knowledge of data protection laws and regulations, including GDPR, CCPA, and other relevant regional or industry-specific requirements.
4. Strong understanding of information security principles and best practices.
5. Excellent communication and interpersonal skills, with the ability to effectively convey complex data protection concepts to non-technical stakeholders.
6. Exceptional analytical and problem-solving abilities, with a capacity to assess risks, identify gaps, and propose suitable solutions.
7. Ability to work collaboratively across departments, exert influence, and engage stakeholders at all levels of the organization.
8. Experience in conducting data protection audits, assessments, and privacy impact assessments.

Job purpose

• Overseeing information security, cybersecurity and IT risk management programs based on industry-accepted information security and risk management frameworks.
• Responsible for the organization's data privacy and protection function to ensure compliance with various regulations and best practices.

2. Primary Duties Performed

• Develop and maintain the cybersecurity Risk Management Framework of the organization for addressing the overall approach for handling cybersecurity risks and managing them in a methodological manner.

• Evaluate employees' information security awareness and provide the necessary training whenever is needed.

• Conduct frequent reviews on Vulnerability Assessment and Penetration Testing (VAPT) and manage vulnerabilities.

• Define the necessary controls to ensure all regulatory requirements related to cybersecurity are met, designed effectively with clear documentation.

• Identify the critical assets of the organization and ensure implementation of risk identification and management strategies for these critical assets.
• To assess technology projects to ensure that cybersecurity is adequately addressed.
• Responsible to identifying and managing cybersecurity risk for all third-party technology engagements and all cloud computing engagements.
• Evaluates and recommends cybersecurity technologies and solutions.
• Review cybersecurity & Risk Management manual and recommend necessary updates.
• Act as Data Protection Officer to identify and evaluate the Company's data processing activities.
• Monitor data management procedures and compliance within the Company.
• Assess Company compliance with Data Protection Private Law.
• Provide advice and arrange training to employees on Data Protection.
• Review and recommend updates on Data Protection Manual.
• Serve as the point of contact between the company and the data protection authorities.
• Performs other related duties assigned by the department head.

3. Secondary Duties Performed

• Assist in implementing risk management framework, policies and programs covering business, financial, operational, technological, and regulatory risks.
• Assist in the development and management of controls and business contingency plans.
• Maintain and update organizational risk register.
• Oversee the regular validation and testing of the Company Business Continuity Plan.
• Review Risk Management manual and recommend necessary updates.

4. Work & Business Contacts

Internal

• Management team and staff.

External

• Regulatory Bodies: Central Bank of Bahrain and Personal Data Protection Authority.
• Law Firms and Legal Advisors.
• Internal and External Auditors.
• VAPT vendors.

Division / Department: Risk Management

Incumbent Reports to: Manager – Risk & Project Management

Zain is the pioneer of mobile telecommunications in the Middle East. We began life in 1983 in Kuwait as the region’s first mobile operator, and since the initiation of our expansion strategy in 2003, we have expanded rapidly. Read more here: Zain Overview

The Cyber Security Specialist is responsible for planning, executing, and finalizing projects according to strict deadlines and within budget. This includes acquiring resources and coordinating the efforts of team members and third-party contractors or consultants in order to deliver projects according to plan.

1. Manage and improve an integrated cyber security solution that helps to protect the core infrastructure, the network, and the applications that run within the network.
2. Conduct testing of network design.
3. Provide training and technical support for users with varying levels of IP and cyber security knowledge and competence.
4. Participate in the discovery of vulnerabilities and risks in networks, software systems, and data.
5. Safeguard information system assets by identifying and solving potential and actual security concerns.
6. Participate in procurement, installation, testing, and developing IT and security projects.
7. Establish and maintain the enterprise IT security policy.
8. Develop operations work plan to support all operations activities.
9. Evaluate infrastructure and security proposals and recommend the required solutions that meet the IP and security requirements.
10. Plan and manage the IP network growth and resiliency.
11. Implement and manage CDN infrastructure.
12. Setup peering with other entities to reduce latency and improve traffic flow.
13. Support the organization’s Enterprise requirements with solutions, testing, and operations.
14. Perform any other related duties as assigned or needed.

1. Possess solid network and security technical experience. Maintains technical expertise in all areas of network and computer hardware, software, routing, and switching. CCIE Routing & Switching is preferable.
2. Possess strong communication skills.
3. Effectively communicate by listening actively, sharing relevant information with others, and interacting with others to establish fair and effective relationships.
4. Identify customer’s requirements correctly, exceed customer expectations, and act proactively to ensure customer satisfaction.
5. Ability to develop cooperation and teamwork while working toward solutions that generally benefit all parties.
6. Capacity for recognizing one's feelings and those of others for motivating ourselves and managing emotions well in ourselves and in our relationships.

Bachelor's Degree in Computer Science, Cyber Security, or any relevant field.

3 to 5 years’ experience in a similar role, preferably in the Telecom field.

If you meet the criteria and you are enthusiastic about the role, we would welcome your application. To complete the application you would need the following document(s):

Position Overview:

We are seeking a talented and experienced Cybersecurity Engineer to design, implement, and manage robust security solutions across our enterprise infrastructure. The ideal candidate will possess a strong understanding of various cybersecurity domains, including network security, cloud security, endpoint protection, identity and access management, and incident response.

Key Responsibilities:

• Security Architecture & Design: Participate in the design, implementation, and review of security architectures for new and existing systems, applications, and cloud infrastructure. Develop and maintain security standards, policies, and procedures in alignment with industry frameworks (NIST, ISO 27001). Evaluate and recommend new security technologies and solutions to enhance our security posture.
• Vulnerability Management & Penetration Testing: Conduct regular vulnerability assessments and penetration tests on networks, applications, and systems. Analyze vulnerability scan results, prioritize risks, and collaborate with IT teams to implement effective remediation strategies.
• Incident Response & Threat Intelligence: Serve as a key member of the incident response team, participating in the detection, analysis, containment, eradication, and recovery from security incidents. Utilize SIEM tools to monitor security events, identify anomalies, and investigate potential threats, with experience in Microsoft and Cisco Solutions. Stay current with the latest threat intelligence, attack vectors, and security vulnerabilities, disseminating relevant information to the team.
• Security Operations & Tooling: Administer and maintain various security tools, including Fortinet FortiGate firewalls, Cisco Meraki security appliances, intrusion detection/prevention systems (IDS/IPS), Microsoft Defender for Endpoint and other EDR solutions, and DLP solutions. Configure and manage security controls for cloud environments, particularly Microsoft Azure. Develop and implement security automation scripts with PowerShell to streamline security operations and enhance efficiency.
• Data Governance & Compliance: Implement and manage data governance policies using Microsoft Purview to ensure data classification, retention, and protection across our digital estate. Support internal and external security audits by providing necessary documentation, evidence, and explanations of security controls. Ensure all security measures comply with relevant data protection regulations and industry standards.
• Identity & Access Management: Assist in the implementation and management of IAM solutions, including SSO, MFA, and PAM.
• Security Awareness: Contribute to the development and delivery of security awareness training programs for employees.

Required Skills & Qualifications:

• Bachelor’s degree in computer science, Cybersecurity or Information Technology.
• 8+ years of hands-on experience in a Cybersecurity Engineer, Security Analyst, or similar role.
• Strong technical proficiency across multiple cybersecurity domains, including: FortiGate firewalls, Cisco Meraki, Microsoft Defender for Endpoint and other EDR solutions.
• Cloud security with a focus on Azure and AWS
• Experience with Microsoft Purview for data governance and compliance.
• Security Information and Event Management (SIEM) solutions (Auvik, QRadar, Sentinel).
• Experience with PowerShell and PowerBI for automation and analysis.
• Solid understanding of Windows, Linux, macOS and their security configurations.
• Expertise with cybersecurity frameworks (ISO 27001 and NIST)
• Relevant Cybersecurity certifications
• Familiarity with DevOps security practices and Secure Software Development Life Cycle (SSDLC).

1. Establish & maintain Business Continuity Management System and its requirements, and maintain Business Continuity Plan for Security & Safety purposes.
2. Continuously assess the news and the region stability, and physically assess certain regions for security threats, as & when required (ex. Algeria, Nigeria & Iraq).
3. Support Crisis Management during pandemics and infectious diseases.
4. Conduct trainings (ex. Vismo, Business Trips, HEAT, …etc.).
5. Maintain the Crisis Management portal, review PCAS & projects security plans for level 3 & 4, Subsistence Allowance Claims review & approvals and manage travel requests.
6. Update & review Crisis Management QMS documents, and prepare & maintain Crisis Management records and contracts (ex. Vismo Privacy Statement, RKM & DTS, Annual Management Reviews, …etc.).
7. Conduct regular tests (Satellite phones, Vismo safety checks, AWS regional safety checks), sharing Crisis Management related announcements and being on call (24 hrs) for all emergencies, Vismo users, WhatsApp users and YMA Crisis Management phone callers.
8. Overall system continuous improvements & developments.

1. A Bachelor Degree with at least 5 years’ experience.
2. Good report writing in English & Arabic.
3. Preferably has a military, security or risk assessment background.
4. Business continuity management system implementation & maintenance.

1. Good English and Arabic language skills with strong editorial capability.
2. Strong Communication and Leadership Skills.
3. Project Management and Organizational Skills to handle multiple tasks & assignments.

1. Self-motivated with minimal Supervision.
2. Knowledgeable & adaptable on the key responsibilities and functions listed above.
3. A team player with pleasant people Skills.
4. Preferable to have military/government connections.
5. Bilingual ( Arabic & English ) is mandatory.