Information Security Officer

Our client within the Fintech industry is on the lookout for an Information Security Officer to join their team in Malta and help with enhancing our clients IT Security framework.

Reporting to the Head of IT, your responsibilities will include:

• Keeping up to date with the latest vulnerabilities and threats and assessing their impact;
• Performing periodical vulnerability scans to find technical flaws and work with the IT team on resolving them;
• Working with the Head of IT Security on providing internal user awareness to all employees;
• Ensuring the enforcement of all information security and data protection-related policies via regular audits and assessments, interacting with other business functions when required;
• Reporting any identified information security issues which may result in increased risk;
• Manage IT Security incidents and findings through IT security reviews, continuous
  monitoring, regular reporting, and ownership in implementing remediation measures
  to such incidents and findings.
• Assisting the Head of IT Security with ensuring adherence to data protection
  regulations, including but not limited to protection of data, minimisation of data
  related risks, and co-ordination with Data Protection Officer.
• Participating in regulatory interviews and questionnaires around Cyber Security.
• Working with 3rd party service providers tasked with assisting the organisation with
  management of ICT and security resources.

• 3+ years of experience in a combination of IT, Risk Management and Information Security related roles;
• Knowledge in IT infrastructure and networking principles;
• Knowledge in application security (with focus on web application security);
• Knowledge of data protection principles (GDPR);
• Keen interest in keeping up to date with latest security news and updates;
• Knowledge in Azure Cloud infrastructure (conditional access policies, PIM, MDM, MAM, NSGs, WAF, Log Analytics Workspaces etc) and Microsoft 365 technologies;
• Experience working with SIEM and SOAR technologies.

• A Degree in a technology related field and/or certification in one of the following: CISSP, GIAC GSEC, CCSP, CompTIA Security+, Azure Security Engineer Associate, ITIL. This is not a must-have.

• Health insurance;
• Career progression;
• Hybrid-work model;
• Wellness allowance;
• Be part of an open-minded, passionate and fun-working culture.