Are you ready to join a vibrant community of tech startups that are shaping the future of innovation?
The Hub71 careers portal connects you with the leading startups that are transforming industries at the heart of Abu Dhabi's Global Tech Ecosystem. Explore a diverse range of opportunities with high-potential startups that are scaling globally from the UAE capital.
Lean Technologies
Dubai, United Arab Emirates
Full time
Engineering
About the job
We are seeking an experienced Security Compliance Officer to join our growing team and ensure that our operations meet the highest standards of regulatory compliance and security frameworks. In this role, you will lead the implementation and continuous improvement of Lean’s information security compliance programs, collaborating closely with internal teams, regulators, and external auditors. You will play a key role in maintaining our security posture while supporting innovation in the fintech and open banking ecosystem.
Who are we
Lean enables companies to seamlessly connect to their users’ bank accounts to initiate real-time payments and retrieve their account information. Our products have garnered the trust of leading companies and enabled them to deliver powerful experiences when connected with a user’s bank account; allowing users to perform prudent financial planning, get better rates on loans, transfer money to friends, and more, without compromising on privacy or security.
Some of Lean’s clients include the likes of Binance, Etisalat Group, Careem, Sarwa, and many more, making it the region’s most valuable Open Finance platform. The company has now processed hundreds of millions of dollars, and its products are also connected with hundreds of thousands of accounts. Lean envisions a fully inclusive financial ecosystem that serves everyone, no matter where they bank or live in the MENA region.
Responsibilities
Compliance Program Management: Maintain security policies aligned with SOC 2, ISO 27001, UAE NESA, and UAE banking license requirements, ensuring regulatory adherence and continuous improvement.
License and Certification Management: Oversee audits, evidence collection, and recertification processes for SOC 2, ISO 27001, and NESA, ensuring timely submission of regulatory filings for the UAE banking license.
Risk Management and Incident Response: Identify security risks, manage mitigation plans, and ensure timely reporting and resolution of security incidents as per regulatory guidelines.
Internal and External Audits: Coordinate internal readiness reviews and external audits, ensuring audit findings are addressed with corrective action plans.
Third-Party and Vendor Management: Perform security assessments of vendors and third-party providers, ensuring their compliance with security standards and contractual obligations.
Employee Training and Awareness: Implement security awareness programs and ensure employees understand compliance roles and responsibilities.
Governance and Reporting: Provide regular compliance status updates and key performance metrics to senior management and regulatory bodies.
KSA-Specific Security Frameworks and Certifications: Provide support for security certifications, audits, and frameworks specific to the Kingdom of Saudi Arabia, including SAMA Cybersecurity Framework (CSF), Personal Data Protection Law (PDPL), CRFR and MVC
Minimum Qualifications
Bachelor’s degree in Information Security, Cybersecurity, or a related field.
At least 5+ years of experience in security compliance, audit management, or risk management in a regulated industry (preferably fintech, banking, or technology).
Strong understanding of SOC 2, ISO 27001, and regulatory frameworks like UAE NESA, and GDPR.
Proficiency in managing external and internal audits and implementing corrective action plans.
Strong knowledge of third-party risk management principles.
Preferred Qualifications
Security certifications such as ISO 27001 Lead Implementer/Auditor, CISA, CISM, or CRISC.
Experience with regulatory filings and interactions with financial regulatory bodies (e.g., UAE Central Bank, SAMA).
Familiarity with automated governance, risk, and compliance (GRC) tools.
Proven track record of coordinating cross-functional teams and working under tight timelines.
Soft Skill
Collaboration and Teamwork: Ability to work effectively across departments to align compliance initiatives with business goals.
Effective Communication: Strong ability to convey complex compliance requirements and audit findings to technical and non-technical stakeholders.
Accountability and Ownership: Takes responsibility for tasks and projects, ensuring timely delivery and transparency in actions.
Attention to Detail: Maintains precision in documentation, evidence collection, and policy updates to ensure full compliance.
Critical Thinking and Problem-Solving: Capable of identifying compliance gaps and implementing practical solutions under tight deadlines.
NB. While we think the above experience could be important, we’re keen to hear from people that believe they have valuable experience to bring to the role. If you identify with the team and mission, but not all of our requirements, then please still apply!!
Lean is the first regulated open banking and open finance company operating across the UAE and Saudi Arabia. Since 2019 we've been on a mission to become the pre-eminent A2A payments company in the Middle East - enabling our clients to seamlessly connect to their users’ bank accounts to initiate real-time payments and retrieve account information. Our products have garnered the trust of some of the leading companies in the region, including the likes of Etisalat Group, Careem, Binance, Tabby, Tamara, Tawuniya, and more.
To date, Lean has processed billions of dollars, and our products have connected with hundreds of thousands of accounts across the region. We've recently announced our $67.5 million Series B funding round led by General Catalyst, following earlier investment from Sequoia Capital. This funding marks a major milestone for Lean and the financial ecosystem across the MENA region. At Lean, we’re committed to driving the next generation of financial innovation by making financial data and payments more accessible and transparent for businesses and consumers alike.
To that end, we're always on the lookout for talented, driven, and entrepreneurial candidates to join us in our mission of enabling the next generation of financial innovation. If you're motivated by solving hard problems and leaving a lasting legacy while you're at it, Lean's where you need to be.
Not only do we offer competitive salaries, private healthcare, and flexible office hours, but we also insist that every member of the team hold a meaningful equity stake in the business to ensure long-term alignment. We'd love you to join us for this journey!
Lean is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status.
When applying for a job at Lean Technologies, we will need to collect, use and share Personal Data about you with different members of our team during the application process. This may mean transferring your data to members of the team in one of our office locations worldwide outside of the country you are in. Please refer to our Privacy Notice on our website for more information about how we may use and store your Personal Data
