Cyber Security Officer

Cyber Security Officer Position – Abu Dhabi

I’m reposting this because the last three candidates we interviewed clearly just Googled “cyber security interview questions” five minutes before showing up. One guy couldn’t explain what a firewall actually does beyond “it blocks bad stuff.” Another one listed CISSP on his resume but didn’t know what the acronym stands for.

I’m not asking for miracles here. Just someone who’s actually worked in cyber security for a few years and won’t panic when something goes wrong. If you’re navigating the local market, see why job hunting in UAE isn’t what you think.

Here’s What Happened Last Week

Our email server started rejecting legitimate messages while letting obvious phishing attempts through. Our previous security guy would’ve spotted this in about ten minutes and fixed it. Instead, I spent half my Tuesday trying to figure out if we were under attack or if someone just misconfigured something.

That’s the kind of stuff you’d handle. Real problems. Not theoretical scenarios from certification study guides.

The Job (Without the Corporate Fluff)

You’d be our main security person. We’re not a massive company – about 200 employees, mix of office workers and remote people. Most of them are pretty good about security, but you know how it is. Someone always clicks the wrong link or tries to download something sketchy.

What you’d actually spend your time doing:

Watching our systems – We’ve got Splunk set up, plus some other monitoring tools. They work fine, but they generate a lot of alerts. You need to know which ones matter and which ones you can ignore.

Keeping the bad guys out – Firewalls, antivirus, all that basic stuff. Plus dealing with whatever new attack method someone comes up with next week.

Cleaning up messes – When someone does something bad (and they will), you figure out how bad it is and fix it. Last month someone in accounting opened a zip file they shouldn’t have. Took our last guy about an hour to sort out.

Paperwork and compliance stuff – We work with some banks and government agencies, so there are audits and certifications we need to maintain. It’s boring but necessary.

Training people – Monthly security meetings, sending out reminders about password policies, that kind of thing. Most people actually listen if you explain things properly instead of just lecturing them.

What You Need to Know

You should have worked in cyber security for at least three years. Doesn’t matter if it was at a big corporation or a small company like ours – experience is experience.

Technical stuff you should be comfortable with:

• Setting up and managing firewalls (we use Fortinet mostly)
• SIEM tools – if you’ve used Splunk, great. If not, it’s not that hard to learn
• Network basics – you don’t need to be a network engineer, but you should understand how data moves around
• Windows and Linux security – our environment is mixed
• Vulnerability scanning and actually doing something with the results

Nice to have but not required:

• Digital forensics experience
• Previous compliance work
• Any of the big certifications (CISSP, CISM, etc.)

The Realistic Stuff Nobody Mentions

This job has its annoying parts. You’ll get calls outside office hours sometimes. Not often, but it happens. Last month our website got hit with a DDoS attack on a Saturday. Took about two hours to sort out.

You’ll also deal with people who think cyber security is just about buying expensive software and hoping for the best. Part of your job is explaining why that doesn’t work.

Some days are really quiet. Other days everything breaks at once. That’s just how security work goes.

Money and Benefits

We pay market rate. I looked up what cyber security people make in Abu Dhabi, and we’re competitive. If you’re good at this job, the money will reflect that. Curious about your take-home value? Here’s what it actually costs to live in Dubai so you can plan ahead.

Health insurance is included. We’ll pay for relevant training and certifications if you want to get more qualified. Our last guy got his CISM certification on company time.

There’s a performance bonus at the end of the year if the company does well and we don’t have any major security incidents.

How This Works

Send me your CV, but please make it honest. Don’t list skills you don’t actually have – I’ll ask you about them in the interview.

If your background looks good, we’ll have a conversation. I’ll ask you about real situations you’ve dealt with, not textbook questions. If you’ve actually done this work, it should be straightforward. For a broader perspective on the tech job landscape, check out our complete guide to jobs in Dubai.

We’re hoping to hire someone in the next couple weeks. The job market for security people is pretty competitive right now, so if this sounds interesting, don’t wait too long to get in touch. See other urgent hiring jobs in Dubai if you’re exploring more opportunities.

One Last Thing

I’ve been doing IT management for about eight years now. I can usually tell within the first ten minutes of an interview whether someone knows what they’re talking about or if they’re just good at interviewing.

What I’m looking for is someone who’s solved real problems, made real mistakes, and learned from both. Someone who can explain technical stuff to non-technical people without being condescending about it.

If that sounds like you, let’s talk. If you’d rather work with a recruiter, here’s our list of the best recruitment agencies in Dubai.
apply direct here for Cyber Security