Connecting Linkedin...


Senior IT Security & Compliance Manager

Senior IT Security & Compliance Manager

  • Location


  • Sector:

    Public Sector

  • Contract Type:


  • Salary:


  • Contact:

    Veronique Amaira

  • Job Reference:


  • Published:

    14 days ago

  • Expiry:


  • Client Details:


  • Consultant:

    Veronique Amaira

  • Skills tags:

    ISO 27001

Senior IT Security and Compliance Manager is required to join an established firm in Malta within Public Administration

Main responsibilities:

  • Overseeing the IT compliance and governance functions that are responsible for testing, documenting, evaluating, remediating and improving regulatory controls and processes for effectiveness and operational efficiency
  • Designing enhancement for internal controls such as segregation of duties, production change management, compliance, network security, incident handling, risk assessment and transmission integrity
  • Coordinating and facilitating Disaster Recovery planning, policies and failover tests
  • Managing ISO, security compliance certifications and industry standards
  • Reviewing and updating existing documentation, including Internal Control Standards
  • Conducting regular Information Security Risk Assessments, including interviews of applicable stakeholders ensuring appropriate security controls are in place to mitigate risks
  • Managing vulnerability scanning, penetration testing, coordinating with external vendor conducting tests, and coordinating all remediation and prioritization activities
  • Monitoring regulatory risk assessments performed on business and operational processes, procedures and policies, providing recommendation for mitigation or remediation
  • Keeping abreast with technical and strategic developments and trends within the ICT industry and specific business area/s
  • Preparing tender documentation requirements and specifications
  • Monitoring technological and operational changes to IT systems activities accordingly
  • Reporting on security issues, audits & project assignments

Skills and Experience required:

  • Minimum of 3 working years experience in an ICT security field in possession of a valid CISSP or CCNP certification OR In possession of a recognized qualification at MQF Level 6 in Computing
  • Hands-on experience with CISCO firewalls, routers & switches
  • Hands-on development and maintenance of an information security control framework
  • Knowledge of ISO 27001 & ETSI standards
  • Experience in testing, evaluating, and documenting controls of compliance
  • Advanced knowledge on secure transport protocols, secure authorization protocols, certification authorities & digital certificates
  • Proficiency in Vulnerability Assessment, penetration and intrusion detection tools
  • Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent
  • Experience in the implementation and review of policies and procedures.
  • Excellent written, verbal, interpersonal business and technical communication skills.