Senior Manager

within Cyber Security and ICT Risk


VIEW JOB DETAILS

Senior Manager

within Cyber Security and ICT Risk


VIEW JOB DETAILS
  • Grade:

    5
  • Type:

    Indefinite
  • Closing Date:

    29/06/2019
  • Job code:

    CSI/002/19
  • Team:

    ICT RIsk
  • Date Posted:

    17/06/2019

About Cyber Security and ICT Risk


The Cyber security and ICT risk function provides specialist services and support to Authorisation and supervision teams at the Authority across all financial sectors as part of the overall supervisory framework.

It is responsible for the assessment of fit and proper cyber security posture, ICT strategic alignment to Business strategy, ICT governance, and general ICT risk profile, exposures and controls of Licenced Holders and applicants seeking Authorisation based on established regulatory frameworks, technical standards and guidelines.

The function therefore provides the necessary technical risk assessments and guidance as part of the Authority’s holistic risk-based supervision model. It also supports the development of policy and supervisory work related to cyber security and ICT risk. Furthermore, the function provides technical support and coordination in terms of cyber security forensics, supervisory investigations or enforcement actions as required.

The Role


Reporting to the Head (Cybers ecurity and ICT risk), the team will leverage your expertise in the area of ICT governance, ICT strategic development, and general ICT risk profile management, for ongoing supervisory reviews and assessments based on established regulatory frameworks, technical standards and guidelines.
You will carry out on-site and off-site reviews and conduct meetings with in-house and external auditors of Licence Holders as necessary, as well as managing analysts reporting to you and supervising their work.
You will also review and follow-up on issues identified through external auditors’ management letters to Licence Holders or applicants under consideration for Authorisation.
Your role may also involve active participation in investigations or enforcement actions in close collaboration with other supervisory teams.
You will also actively support the ongoing development of policy and guidelines across all supervisory sectors and collaborate with other stakeholders on cross-sectorial security awareness and education campaigns.

About You


We are looking for candidates with a bachelor’s degree in computer information systems or information technology at MQF level 6 or higher, as well as five years’ work experience in IT risk management or audit. You will have professional certification such as CISA or CRISC.
You will have professional experience in the use of IT audit frameworks such as COBIT and ISO, while ideally having had direct prior experience in IT operations, management of Information Systems and/or software development. The ideal candidate would also have a good grasp of IaaS, SaaS and PaaS Cloud Service Models.

How to apply

or query further information


Candidates are to forward a copy of their Curriculum Vitae (C.V.) and an accompanying covering letter providing the motivation for the application to vacancies@mfsa.com.mt.

Other Important Information


Candidates are to forward a copy of their Curriculum Vitae (C.V.) and an accompanying covering letter providing the motivation for the application to vacancies@mfsa.com.mt.

The MFSA is an Equal Opportunities Employer as certified by the NCPE (National Commission for the Protection of Equality) and is committed to a policy of equal opportunity in all aspects of employment and will take care to avoid any form of discrimination in its recruitment procedures. The MFSA reserves the right to withdraw this call at any time and not to select any of the Candidates.

It is the responsibility of applicants in possession of qualifications awarded by Universities and other similar institutions outside Malta to produce a recognition statement on comparability of qualifications issued by the Malta Qualifications Recognition Information Centre (MQRIC). Applicants should do so preferably at application stage or otherwise at the preliminary interview should an applicant be selected for such interview. Details can be obtained by accessing the National Commission for Further and Higher Education website on www.ncfhe.org.mt under MQRIC heading.

The MFSA shall ensure that any processing of personal data is in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation), the Data Protection Act (Chapter 586 of the Laws of Malta) and any other relevant European Union and national law. For further details, you may refer to the Data Protection Policy on the MFSA webpage www.mfsa.com.mt.

Candidates are to note that the submission of any false statement/s or omission, even if unintended, may lead to the cancellation of their application and may render the candidate's appointment liable to termination.

Furthermore, please note that candidates may be asked to submit any documentation in support of the information provided, including but not limited to, proof of qualifications and Police Conduct Certificates.