At Emirates, we believe in connecting the world, to and through, our global hub in Dubai; and in constantly innovating to ensure our customers ‘Fly Better’. Emirates Group IT thrives on the dynamic nature of technology. Being pioneers in aviation innovation, were always at the forefront, pushing boundaries. Were on the lookout for exceptional IT professionals to fortify our position as leaders in the industry. Embark on a journey with the world’s largest international airline and become a vital part of our cutting-edge information and technology team as Manager - CyberSecurity Resilience Risk

Join our CyberSecurity team where we ensure a world-class CyberSecurity organisation based on the key principles of People, Process and Technology underpinned with executive endorsement of a multi-year strategy to continuously improve and develop. The team protects our digital assets by monitoring for threats, responding to incidents, managing vulnerabilities, and ensuring compliance with security policies and regulations. If you are passionate about CyberSecurity, we invite you to apply to play a crucial role in shaping the future of our technology initiatives at the Emirates Group.

As Manager – Cyber Security Resilience Risk, you will lead the strategic design, governance and continuous evolution of the Emirates Group’s information and cyber security risk management framework, embedding a proactive, enterprise‑wide risk culture to keep risk within appetite. You will act as the primary authority on cyber and information security risk, drive First Line accountability, deliver executive and board‑level reporting, ensure regulatory and control alignment, and advance risk maturity through data‑driven and quantitative assessment approaches. You will also oversee risk through cyber risk scorecards covering technology, human, insider, and third-party risks, while partnering with business and IT stakeholders to embed a risk-based approach, provide advisory, and strengthen overall cyber resilience across the organisation.

In this role, you will:

• Lead the Information Risk Management Framework, aligning it with Group strategy, enterprise risk processes, and effective governance. Establish a scalable, principles‑based framework that enables consistent risk decision‑making across all Emirates Group entities.
• Drive the adoption of a “Risk Ownership” model, holding the First Line accountable for managing information risk. Establish a systematic, structured risk methodology across the Group, transitioning the organisation from qualitative assessments to advanced quantitative techniques such as probabilistic thinking, risk simulation, and calibrated loss modelling.
• Lead targeted, data‑driven cyber security awareness and behavioural change initiatives, including responses to emerging social engineering vectors.
• Ensure significant residual risks are formally accepted and signed off by senior executive management
• Lead the Group’s information-risk governance forums and act as the primary liaison for the cybersecurity risk committee. Deliver timely, board-ready reporting on the Group’s aggregated risk status and treatment priorities to enable rapid, strategic decision-making at the executive level.
• Lead the prioritisation and coordination of risk assessments across critical environments, including business processes, large scale technology products, and third‑party relationships. Address emerging risks such as Agentic AI, align with industry and regulatory developments, and collaborate closely with Group Peer risk functions including Safety, Internal Audit, and Enterprise Risk.

• Degree or Honours (12+3 or equivalent) in Cyber Security, Information Technology or Computure Science
• Preferred Master’s degree in Cybersecurity, Computer Science, Data Science, Engineering, or a related field
• CRISC (Certified in Risk and Information Systems Control) is essential/required
• CISM or CISA or equivalent Industry-recognised certifications are highly desirable.
• 10+ years of experience in cybersecurity, with a focus on governance and risk management, with a proven track record of designing and leading enterprise-wide risk programmes.
• Hands-on experience in governance and cybersecurity risk and control frameworks, and in managing and upskilling high-performing risk functions in complex, global environments.
• Ability to drive significant organisational change and move the business from passive compliance to active risk management
• Deep knowledge of quantitative risk calculation, data analysis, and the ISF (Information Security Forum) Standard of Good Practice
• Exceptional communication skills, with a demonstrated ability to translate complex cyber risk data into business impact for VP and above level technology, business and Board-level stakeholders
• Advanced knowledge of global data protection, privacy, and cybersecurity regulatory landscapes

Leadership Role: Yes

Join us in a management role and enjoy an attractive tax-free salary. On top of our generous travel benefits, including discounted flights and hotel stays around the world, this managerial role also has an excellent leave and healthcare package. That’s on top of transport benefits, life insurance and more. Find out what it’s like to live and work in our fast-paced, cosmopolitan home city in the Dubai Lifestyle section of our website www.emirates.com/careers