ADSS is a successful retail and institutional brokerage based in Abu Dhabi. The company is currently undergoing a multi-year transformation to become a fast growing, purpose-led, data-driven enterprise that delivers market-leading personalized content, propositions and experiences to traders. To reinforce client-centricity the company structure, technology and operations are being redesigned alongside the crafting of a high-performance culture underpinned by The ADSS Way. The objective is for ADSS to become a dynamic and innovative, trusted market leader as measured by feedback from clients, talent, shareholders and competitors.
The Senior Associate, Cybersecurity is responsible for supporting the implementation, monitoring, and continual improvement of ADSS's cybersecurity infrastructure and risk management strategies. Safeguards company data, systems, and networks by operating and enhancing security controls, responding to incidents, and delivering technical solutions that protect against evolving cyber threats and ensure regulatory compliance.
Role & Responsibilities
- Implement and maintain security measures and controls for network, server, cloud, and application infrastructures.
- Monitor security event logs, alerts, and incidents across ADSS systems; participate in SOC operations and incident response.
- Conduct vulnerability assessments, penetration testing, and risk reviews on both internal and external systems.
- Understanding the security infrastructure and assessing security gaps and issues, highlighting them to respective stakeholders.
- Assist with the deployment, configuration, and administration of cybersecurity solutions, including firewalls, IDS/IPS, endpoint protection, email/content filtering, access control, NAC and DLP tools.
- Respond quickly to security incidents, conducting root cause analysis, containment, and remediation actions.
- Document security issues, incident investigations, and recommendations for mitigation.
- Support the integration of security logs and monitoring solutions (SIEM/SOAR platforms); participate in their ongoing refinement and expansion.
- Familiar with scripting and automation of security solutions in the organization to bring efficiency to avoid manual repeated tasks.
- Co-ordinate security patching and system hardening measures, ensuring timely update and validation of all assets.
- Provide technical support in conducting cybersecurity risk assessments, impact analysis, and third-party security evaluations.
- Contribute to cybersecurity awareness programs and technical training for users and internal teams.
- Maintain knowledge of current cyber threats, attack methods, and industry best practices; recommend improvements and enhancements for the organization's overall security posture.
- Working knowledge on internal penetration testing and red team exercises using open source solutions.
- Assist in regulatory compliance reviews, audits, and maintain alignment with ISO27000 and other relevant frameworks.
- Work closely with IT, Compliance, Internal Audit, Legal, and other risk management team members.
Experience
- Bachelor's degree in cyber security, Computer Science, Information Technology, or related field.
- Professional certifications (CISSP, CEH, CISM, Security+, etc.) are advantageous.
- 7 years experience in cybersecurity, SOC operations, or IT security roles, ideally in financial services or regulated industry.
- Hands-on knowledge of security technologies, incident response, vulnerability management, and risk assessment.
Skills
- Technical proficiency across multiple security domains (network, endpoints, cloud, applications).
- Strong analytical, investigative, and problem-solving skills.
- Knowledge of security operations processes and incident management.
- Effective communicator and team collaborator.
- Commitment to confidentiality, integrity, and continuous improvement.
- Good team player, open to learn and share the work load with other team members.
