Job Description

The Internal Controls Department supports and supervises the Executive and Business Management with a value-oriented approach and is seeking to strengthen its risk control and monitoring team, by adding a senior specialist in ICT and Security area. The ICT and Cybersecurity Specialist will join the Internal Controls (IC) Function and will execute, coordinate and/or supervise advisory, monitoring and review programs targeting IT/ICT & Cyber risks in operational processes related to PSP (payments) and e- money. Responsibilities:

• In the position ICT and Cybersecurity Specialist you will actively participate in key implementation projects to ensure security-by-design principles are integrated into all project steps and actions as well as to collaborate with project teams to identify and mitigate potential security risks throughout the project lifecycle.
• Furthermore, it will be essential to take charge of coordinating both internal and external audit functions and reviews, specifically related to ISO standards and ICT regulatory requirements and ensure that the organization's ICT systems and cybersecurity practices align with industry standards and regulatory expectations.
• Moreover, one of the requirements for this position is to develop and conduct comprehensive training sessions for internal users, covering IT policies and best practices also it will be a necessity to provide support across all hierarchical levels, ranging from junior employees to members of the Board, to ensure a consistent understanding of security protocols.
• In order to be successful in the role, it will be required to assume ownership of assigned tasks and projects for monitoring new projects, technologies, release practices, regulatory changes, emerging risks, and incidents moreover, it will be efficient to apply a focused approach to prioritize and assess risks associated specifically with ICT, utilizing a thorough risk level scoring methodology.
• Additionally, it will be necessary to collaborate seamlessly with various stakeholders, including IT and Business Process Operators, Management, Audit Committee Members, and Regulators and foster effective communication channels to share insights, address concerns, and drive coordinated risk management efforts.

Qualifications:

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC)
• Several years of experience in information security, cybersecurity, risk management, or a related field, with a significant portion of that experience in roles of increasing responsibility as well as experience in project management, especially related to security-focused implementations and risk assessments.
• Proficiency in understanding and assessing cybersecurity risks and vulnerabilities in IT systems and infrastructure plus, knowledge of security frameworks (ISO 27001, NIST Cybersecurity Framework) and relevant regulations (GDPR, HIPAA, etc.).
• Familiarity with security-by-design principles and their application in project lifecycles. Understanding of emerging technologies and their potential security implications..
• Excellent communication skills to effectively collaborate with different stakeholders.
• Leadership qualities to drive security initiatives and create a culture of security awareness within the organization.
• Awareness of industry trends, best practices, and evolving threats in the realm of information security and risk management
• Demonstrated commitment to ongoing professional development and staying up-to-date with the evolving landscape of information security and risk management will be good to have.

What to expect:

• Family-run group with a positive and international business environment
• Open door attitude and friendly corporate culture
• High degree of personal responsibility
• A wide variety of career opportunities within the entire group
• Competitive salary and good benefits

Interest?Then we look forward to receiving your application! Please also indicate your possible starting date and your salary expectations.

EPG Financial Services Ltd.

More Info

Education