Senior Technical Expert

within Supervisory ICT Risk and Cybersecurity


Senior Technical Expert

within Supervisory ICT Risk and Cybersecurity

  • Grade:

  • Type:

  • Job code:

  • Team:

    Supervisory ICT Risk and Cybersecurity

About Supervisory ICT Risk and Cybersecurity

As the Financial Services industry experiences a widespread increase in the use of, and reliance on Information and Communications Technology (ICT), and as ICT including emerging technologies, is enabling innovation within the industry including the introduction of new sectors altogether, the relevance of ICT Risk and Cybersecurity continues to persist.

The Supervisory ICT Risk and Cybersecurity Function forms part of the MFSA's Supervision Directorate, it is cross-sectorial, and has been established to focus on one of the Authority's outlined key strategic priorities – Cybersecurity and Resilience. As a supervisory function, its portfolio of activities include effective supervision, which aims to ensure that regulated firms within the industry, are effectively managing their ICT risks, and have a resilient cybersecurity framework in place, in line with Acts, Regulations, rules and sector-specific guidelines. The function participates and contributes in various Working Groups, Task Forces and Committees at local and international levels, and develops policies and guidelines for the industry.

The Supervisory ICT Risk and Cybersecurity Function provides expert advice on ICT and Cybersecurity matters to other functions within the MFSA as required. It is also a contributor on emerging strategies especially those that are technology focused. The function is also the contact point for cyber incident reporting by regulated firms.

The Role

The selected candidate will work in a dynamic team within the Supervisory ICT Risk and Cybersecurity function. The role encompasses:

  • Contributing to the strategic direction, objectives setting, capacity building, evolution and planning of the function;
  • Acting on, implementing and executing the strategy and plans of the function as directed;
  • Managing a work stream or a project as the case may be, in the field of Supervisory ICT Risk and Cybersecurity, and taking responsibility for the respective outcome, to time, cost and quality targets;
  • Being the Technical Expert within the function and carrying out an extensive range and variety of technical and/or professional work activities within area of responsibility/expertise;
  • Advising on available standards, methods, tools, applications and processes relevant to area of responsibility/expertise;
  • Mentoring, providing guidance to, and sharing knowledge with, fellow colleagues;
  • Participating in, representing the Authority, and following up closely the, activities and developments of, Working Groups, Task Forces and Committees at local and international levels within the respective field, particularly but not exclusively, within the European System of Financial Supervision, the European Central Bank and the European Union Agency for Cybersecurity;
  • Building effective working relationships with peers across the organisation, with the relevant national public entities, and with National Competent Authorities in other European Member States;
  • Engaging and coordinates with other subject matter experts to resolve complex issues;
  • Participating in outreach activities with Authorised Persons and other external stakeholders with a view of influencing, incentivising, and shaping digital operational resilience;
  • Organising training and awareness initiatives in area of responsibility/expertise alongside the Malta Financial Supervisors Academy;
  • Proactively contributing to the implementation of appropriate working practices and culture, by building effective processes, continually improving them, and ensuring documented procedures are in place within area of responsibility/expertise;
  • Developing and adopting clear and coherent outward facing Policies following a consultation process in area of responsibility/expertise;
  • Producing management reporting as required;
  • Taking initiative to advance own skills and identifying and managing development opportunities in area of responsibility/expertise, keeping abreast with emerging technologies, the threat landscape, regulatory developments and market evolution;
  • Carrying out supervisory activities using a risk-based approach in the field of ICT Risk and Cybersecurity, as the case may be and as required;
  • Any other responsibilities that may be assigned by the Deputy Head, Head of function or Chief Officer Supervision from time to time.

About You

The selected candidate will need to have a solid academic background in financial services and/or ICT law and/or computer information systems, information technology, or information security, as well as a sound knowledge of the financial services regulatory framework. Industry Certifications in ICT Risk and/or Cybersecurity and/or a relevant post-graduate degree would be considered an advantage.

The role calls for an academic qualification in a relevant field of study at National Qualification Framework Level 6 or better, duly certified by the Malta Qualification Recognition Information Centre (MQRIC).

The selected candidate is expected to demonstrate excellent communication and problem-solving skills. The individual is required to have a high level of technical proficiency within the area of expertise. The individual is also required to have a strong understanding of risk.

You will also possess a minimum of eight (8) years working in the area of financial services and/or ICT.

If you do not have the necessary academic or professional qualifications but you have at least fifteen (15) years of relevant experience within a relevant field, we would still be interested in speaking with you.

How to apply

or query further information

Candidates are to forward a copy of their Curriculum Vitae (C.V.) and an accompanying covering letter providing the motivation for the application to [email protected]

Other Important Information

The MFSA is an Equal Opportunities Employer as certified by the NCPE (National Commission for the Protection of Equality) and is committed to a policy of equal opportunity in all aspects of employment and will take care to avoid any form of discrimination in its recruitment procedures. The MFSA reserves the right to withdraw this call at any time and not to select any of the Candidates.

It is the responsibility of applicants in possession of qualifications awarded by Universities and other similar institutions outside Malta to produce a recognition statement on comparability of qualifications issued by the Malta Qualifications Recognition Information Centre (MQRIC). Applicants should do so preferably at application stage or otherwise at the preliminary interview should an applicant be selected for such interview. Details can be obtained by accessing the National Commission for Further and Higher Education website on under MQRIC heading.

The MFSA shall ensure that any processing of personal data is in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation), the Data Protection Act (Chapter 586 of the Laws of Malta) and any other relevant European Union and national law. For further details, you may refer to the Data Protection Policy on the MFSA webpage

Candidates are to note that the submission of any false statement/s or omission, even if unintended, may lead to the cancellation of their application and may render the candidate's appointment liable to termination.

Furthermore, please note that candidates may be asked to submit any documentation in support of the information provided, including but not limited to, proof of qualifications and Police Conduct Certificates.

Public Call Permit: 149/2022