IT RISK AND COMPLIANCE MANAGER

Job description
The IT Risk & Compliance Manager will play a pivotal role in supporting Compliance 360's clients with their technology-related governance, risk, and compliance needs. This role focuses on assessing clients' IT environments, identifying risks, strengthening controls, and ensuring alignment with regulatory expectations, including DORA and applicable EU/Malta frameworks. The selected candidate will contribute directly to the delivery of high-quality client engagements, work closely with senior stakeholders within client organisations, and support the ongoing development of Compliance 360's service offering in the IT governance and cyber-risk domain.

Key Responsibilities -Assume ICT-related roles or responsibilities on behalf of clients, including duties linked to DORA, ICT governance, ICT risk oversight, and related regulatory expectations, ensuring that all obligations are executed in line with supervisory standards and industry best practice. -Develop a thorough understanding of the clients' IT landscape, including risks, controls, and business requirements -Conduct IT audit programs based on risk assessments, identifying critical risk areas, and providing tailored recommendations -Conduct cybersecurity-focused audit reviews, including assessments of security controls, access management, vulnerabilities, and incident-response readiness -Lead initiatives related to cybersecurity governance, risk management, and compliance -Conduct internal audits focused on IT risk and compliance for a diverse client portfolio, ensuring timely delivery consistently high-quality outputs -Contribute to the development of innovative solutions that align with client needs and market trends -Ensure timely completion of client projects and meet deadlines -Identify and pursue new business opportunities

Requirements Qualifications -A degree in Information Technology, Computer Science, Business Administration, or a related field -Certifications such as CISA, CISM, CISSP, CRISC, ISO 27001 Lead Auditor, or ISO 27001 Lead Implementer will be considered an asset

Vacancy additional information Experience

• At least five years' experience in IT governance, risk management, compliance, and/or auditing under Malta and EU regulations -A strong understanding of IT regulatory standards, including DORA

Skills -Able to work both independently and collaboratively within project teams to deliver high-quality outcomes -Show strong interpersonal skills and the ability to build productive relationships with clients and team members -Proficient in conducting complex analyses and presenting findings clearly and effectively to diverse audiences with varying technical expertise and seniority levels -Possess solid project management skills -Proactive, self-motivated and able to take initiative -Excellent communication skills in English -Able to work with minimal supervision

Training provided On the job training will be provided to the selected candidate

Any other benefits Health Insurance Wellness benefits Hybrid working Summer hours Flexible hours Study leave Assistance in pursuit of studies

How will the interviews be held
Preferably online but will adapt according to circumstances