Senior Expert - Cybersecurity

Malta Communications Authority

  • Malta Island
  • Permanent
  • Full-time
  • 7 days ago
PRIME FOCUSThe Technical Expert – Cybersecurity role combines deep technical expertise in cybersecurity with a strong understanding of the policy drivers underpinning relevant EU regulations and particularly the EU Digital Identity Regulation. This individual will be responsible for translating complex technical cybersecurity concepts, with a focus on the trust services market, into actionable requirements, while also providing senior-level technical guidance and oversight on critical cybersecurity initiatives.MAIN RESPONSIBILITIES
  • Lead the development, review, and implementation of cybersecurity policies, standards, and procedures, ensuring alignment with industry best practices, regulatory requirements, and organizational risk appetite within the context of the EUDI regulation.
  • Provide senior-level technical expertise and guidance on complex cybersecurity issues, including architecture, engineering, incident response, and vulnerability management.
  • Conduct in-depth technical analysis of cybersecurity threats and vulnerabilities, and translate findings into clear policy recommendations and technical solutions.
  • Collaborate with technical teams to design and implement secure systems and applications, ensuring adherence to established security policies and standards.
  • Advise senior management and stakeholders on cybersecurity risks, policy implications, and strategic initiatives.
  • Develop and deliver technical and policy-focused training and awareness programs to various audiences within the organization.
  • Help ensure that the national EUDI ecosystem complies with the EUDI regulation and related standards through the development and upkeep of certification systems and schemes.
  • Define the cybersecurity and functional requirements applicable to providers of EUDI-compliant solutions in Malta.
  • Lead the monitoring and assistance process in the response to security incidents involving QTSPs and wallet issuers, ensuring appropriate measures are taken to mitigate risks.
  • Collaborate with stakeholders and represent MCA within the national and international technical fora.
  • Stay abreast of the latest cybersecurity technologies, threats, and policy developments, and integrate relevant insights into the national EUDI wallet scheme.
DIRECT ACCOUNTABILITY
  • Maintain professionalism in interactions with third parties.
  • Manage information and documentation effectively.
  • Deliver projects to achieve MCA’s objectives.
  • Ensure quality and adherence to standards and regulations.
  • Implement projects and activities efficiently.
  • Follow applicable policies and procedures meticulously.
INTERNAL CONTACTS
  • Maintain contact and when required assist the rest of the Units to ensure sound and holistic policy formulation.
  • Support the MCA’s Customer unit in relation to the provision of answers to general queries.
  • Contribute to the overarching MCA policy development effort particularly in the area of trust services.
EXTERNAL CONTACTS
  • Maintain ongoing contact with regulated operators.
  • Communicate with conformity assessment bodies as required.
  • Liaise with other parties within the EUDI ecosystem as needed.
  • Inform regulated operators of any matters that may be of interest to them including amongst others cybersecurity related information.
KEY SELECTION CRITERIA
  • Either of the following:
o A Bachelor’s degree (MQF Level 6) in Computer Science, Information Technology, Information Security or a related technical field plus 8 years of industry experience in cybersecurity, trust services, electronic ID, regulatory compliance, or a related area focusing on digital services.ORo A Master’s degree (MQF Level 7) in Computer Science, Information Technology, Information Security or a related technical field plus 7 years of industry experience in cybersecurity, trust services, electronic ID, regulatory compliance, or a related area focusing on digital services.
  • Preference will be given to candidates with a comprehensive understanding of National and EU Digital Policy frameworks, including EUDI, eIDAS, NIS 2 and the CRA.
  • Preference will be given to candidates who possess relevant cybersecurity related certifications like CISSP, SecurityX and other security-oriented vendor certifications.
  • Preference will be given to candidates with knowledge of conformity assessment procedures and certification schemes (e.g. EUCC);
  • Preference will be given to candidates with knowledge of technologies related to digital wallets, electronic identification and trust services i.e. identity-related technologies, remote identification/authentication, application/hardware related to eIDAS (smartcards, secure elements), cryptographic algorithms, PQC, privacy-enhancing techniques;
  • Ability to deliver technical advice at the tactical level, including those of scientific or technical nature, on issues relevant to cybersecurity certification, including in the abovementioned areas of relevance for this purpose.
  • Excellent research, analytical, and problem-solving skills.
  • Strong written and verbal communication skills in English and preferably also in Maltese.
  • Proficiency in Microsoft Office applications.
ADDITIONAL NOTES*A recognized Qualification comparable to the number of credits, as applicable, is only accepted subject to an MQRIC formal recognition statement.*By the closing time and date of this call for applications, applicants must be:a) citizens of Malta; orb) citizens of other Member States of the European Union who are entitled to equal treatment to Maltese citizens in matters of employment by virtue of EU legislation and treaty provisions dealing with the free movement of workers; orc) citizens of any other country who are entitled to equal treatment to Maltese citizens in matters related to employment by virtue of the application to that country of EU legislation and treaty provisions dealing with the free movement of workers; ord) any other persons who are entitled to equal treatment to Maltese citizens in matters related to employment in terms of the law or the above-mentioned EU legislation and treaty provisions, on account of their family relationship with persons mentioned in paragraph (a), (b) or (c); ore) third country nationals who have been granted long-term resident status in Malta under regulation 4 of the ‘Status of Long-Term Residents (Third Country Nationals) Regulations, 2006’ or who have been granted a residence permit under regulation 18(3) thereof, together with family members of such third country nationals who have been granted a residence permit under the ‘Family Reunification Regulations, 2007’; orf) in possession of a residence document issued in terms of the “Residence Status of United Kingdom Nationals and their Family Members in Malta in accordance with the Agreement on the Withdrawal of the United Kingdom and Northern Ireland from the European Union and the European Atomic Energy Community Regulations”.The advice of the Citizenship Unit within Community Malta Agency and the Expatriates Unit within Identita` should be sought as necessary in the interpretation of the above provisions.

JobsinMalta