Risk Manager (GRC)

• Demonstrate effective leadership by mentoring and supporting team members to achieve strategic goals.
• Manage and develop team members to enhance performance and professional growth.
• Contribute to the development and execution of the departmental strategy.
• Confidently handle complex situations and make informed judgments under pressure.
• Provide strategic oversight in the development and maintenance of risk management and internal control frameworks, identifying areas for improvement and advising clients on strengthening their risk management functions.
• Provide strategic oversight in the development and maintenance of cyber security control frameworks, identifying areas for improvement and advising clients on strengthening their cyber security and data protection functions.
• Lead risk analysis projects and address Malta Financial Services Authority thematic risk considerations to ensure clients are equipped to manage potential financial and operational challenges.
• Research regulatory trends and developments, offering insights and practical guidance on evolving risk and compliance obligations, governance frameworks, and risk management standards for licensed entities.
• Advise on policies, processes, procedures, and internal controls, making recommendations to enhance risk mitigation strategies, optimise operational efficiency, and ensure regulatory alignment.
• Deliver proactive insights into emerging risks, providing structured recommendations that enable clients to navigate an increasingly complex regulatory landscape.
• Plan, manage, and execute risk management projects, acting as a trusted advisor to clients to ensure compliance objectives are met while driving meaningful improvements in their risk and governance functions.
• Ensure that client companies comply with the General Data Protection Regulation (GDPR), including advising on data protection obligations, monitoring compliance, acting as a point of contact for data subjects and supervisory authorities, and conducting DPIAs and audits.
• Provide training sessions to team members and clients, develop policies, and promote a strong data protection culture within client companies.
• Undertake any other responsibilities as assigned from time to time.

• A degree in Cyber Security, Risk Management, Finance, Law, or a related field.
• 3–5 years of relevant experience as an Assistant Manager or Advisor in cyber security, enterprise risk management, regulatory compliance, internal audit, or advisory.
• Strong knowledge of enterprise risk management frameworks, internal control systems, and cyber security standards such as ISO 27001, NIST, or COBIT.
• Sound understanding of GDPR requirements, data protection obligations, and regulatory frameworks applicable to licensed entities.
• Professional certifications such as CISA, CRISC, CISSP, CISM, CIPP/E, CAMS, ACCA, or equivalent will be considered an asset.
• Proven ability to manage projects independently and engage effectively with clients.
• Strong analytical, problem-solving, and communication skills, with a professional and client-focused approach.

JobsinMalta