ICT and Cybersecurity Specialist

at our site in Sliema, Malta

With Professional Experience | Permanent Employment

The Internal Controls Department supports and supervises the Executive and Business Management with a value-oriented approach and is seeking to strengthen its risk control and monitoring team, by adding a senior specialist in ICT and Security area. The ICT and Cybersecurity Specialist will join the Internal Controls (IC) Function and will execute, coordinate and/or supervise advisory, monitoring and review programs targeting IT/ICT & Cyber risks in operational processes related to PSP (payments) and e- money. 

Responsibilities:

  • In the position ICT and Cybersecurity Specialist you will actively participate in key implementation projects to ensure security-by-design principles are integrated into all project steps and actions as well as to collaborate with project teams to identify and mitigate potential security risks throughout the project lifecycle. 
  • Furthermore, it will be essential to take charge of coordinating both internal and external audit functions and reviews, specifically related to ISO standards and ICT regulatory requirements and ensure that the organization's ICT systems and cybersecurity practices align with industry standards and regulatory expectations. 
  • Moreover, one of the requirements for this position is to develop and conduct comprehensive training sessions for internal users, covering IT policies and best practices also it will be a necessity to provide support across all hierarchical levels, ranging from junior employees to members of the Board, to ensure a consistent understanding of security protocols. 
  • In order to be successful in the role, it will be required to assume ownership of assigned tasks and projects for monitoring new projects, technologies, release practices, regulatory changes, emerging risks, and incidents moreover, it will be efficient to apply a focused approach to prioritize and assess risks associated specifically with ICT, utilizing a thorough risk level scoring methodology. 
  • Additionally, it will be necessary to collaborate seamlessly with various stakeholders, including IT and Business Process Operators, Management, Audit Committee Members, and Regulators and foster effective communication channels to share insights, address concerns, and drive coordinated risk management efforts.

Qualifications:

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC)
  • Several years of experience in information security, cybersecurity, risk management, or a related field, with a significant portion of that experience in roles of increasing responsibility as well as experience in project management, especially related to security-focused implementations and risk assessments.
  • Proficiency in understanding and assessing cybersecurity risks and vulnerabilities in IT systems and infrastructure plus, knowledge of security frameworks (ISO 27001, NIST Cybersecurity Framework) and relevant regulations (GDPR, HIPAA, etc.). 
  • Familiarity with security-by-design principles and their application in project lifecycles. Understanding of emerging technologies and their potential security implications..
  • Excellent communication skills to effectively collaborate with different stakeholders. 
  • Leadership qualities to drive security initiatives and create a culture of security awareness within the organization.
  • Awareness of industry trends, best practices, and evolving threats in the realm of information security and risk management 
  • Demonstrated commitment to ongoing professional development and staying up-to-date with the evolving landscape of information security and risk management will be good to have.

What to expect:

  • Family-run group with a positive and international business environment  
  • Open door attitude and friendly corporate culture
  • High degree of personal responsibility 
  • A wide variety of career opportunities within the entire group 
  • Competitive salary and good benefits
APPLY NOW
Company

EPG Financial Services Limited

EPG Financial Services Limited (‘EPG’) is a Maltese licensed Financial Institution, authorised to offer an attractive portfolio of payment solutions as well as e-money products. As a regulated Institution, EPG merges technologies, services and security into optimised payments solutions for its customers. Our company group offers entertainment, innovation and international and cutting-edge technology to millions of people worldwide. We have almost 15,000 people working under our MERKUR sun committed to our company’s ideals. Come join us.

Contact

Calvin Cassar