Information Security Compliance Officer

About KPMG in Malta

Multicultural with diversity at the core, employing over 500 employees offering a flexible workplace to our people – KPMG in Malta is a global people-focused audit, tax and advisory firm thriving on a high-performing and trust culture. Our multidisciplinary experience ranges from multinationals to promising start-ups, private to public sector undertakings, local to international clientele. Our values remain at the heart of all we do, ESG and CSR are our commitment to invest together towards a better future for our people, clients and communities. KPMG's ESG commitments and achievements are reported in Our Impact Plan.

The Role:

The Information security compliance officer (ISCO) will be responsible to; assist with the operation of Information security controls, work with our internal partners to establish protocols for identifying and remediating threats, work alongside the security liaisons to establish, review and enforce the KPMG information security policies and local laws to protect KPMG’s reputation, computer infrastructure, networks and data. The ISCO will support our response to security breaches, review system logs and escalate as necessary based on established procedures.

The officer will support the training and awareness programs for all employees. The role should demonstrate\communicate good practices and explain the risks of poor information security practices, such as using weak passwords, sensitive data in emails, or using data that is not encrypted in laptops or other mobile devices that could be lost or stolen.

The role is expected to support the security team in achieving compliance with the KPMG Information Security policies, and assisting with the operation of controls in the Information Security Management Systems (ISMS).

The Information Security Compliance officer (ISCO) will participate in executing information security projects, will support the enforcement of security requirements while working with the IT teams, Risk Management, Data Privacy, Human Resources and legal counsel, and others as needed.

Responsibilities:

Security Compliance

• The ISCO will support the ongoing compliance efforts with KPMG’s Information Security Policies by maintaining the required documentation, conducting periodic reviews and impact assessments.

• Work with the team to support varies audit programs.

• Work with the team to ensure the remediation of any findings, report and escalate issues as appropriate. Evaluate the effectiveness of existing tools, processes, and solutions to identify potential areas of improvement to further enhance quality of the security posture.

• Work with the team to prepare and maintain documentation and diagrams for working areas to support ongoing compliance efforts with KPMG’s Information Security Policies.

Monitoring

• Monitor and maintain various inventories,

• Work with the IT Services team to provide supporting procedural documents for daily operations.

Looking to advance your Cyber Security career with relocation support? Explore Cyber Security Jobs with Relocation Packages that include comprehensive packages to help you move and settle in your new role.

• Prepare statistics and metrics reporting.
• Conduct periodic reviews to support business as usual operations.
• Maintain document libraries.

Training and Awareness

• Assist the team to deliver Information security training.Assist the team to implement and maintain a comprehensive awareness program.

Information Risk Management and Security Assessments

• Work with the team in assessing information security risks and document risks .

Incident Response management

• Follow established processes for responding to security incidents, closely monitor the incident, and escalate to the CISO where applicable.

Vendor/Third party providers

• Assist the team in performing suppliers and product assessments

Requirements:

• A holder of a Bachelor of Science in Information Technology, Computer Science, Computer Engineering, Management Information Systems, or a related discipline.
• Will hold or be working towards a CompTIA Security + or equivalent.
• 3 years working experience in Information Technology and/or information security.

Skills:

• Knowledge of project management principles and practices will be an asset.

Discover our full range of relocation jobs with comprehensive support packages to help you relocate and settle in your new location.

• Strong interpersonal and written communication skills, with the ability to present both technical and non-technical ideas to a diverse group of professionals, present risks and propose remediation initiatives.

Special Working Conditions:

• Occasionally work long hours to meet project implementation deadlines.

Competencies:

• Able to communicate effectively with non-technical staff and with members of interdisciplinary teams.
• Must be organized, with a strong attention to detail.
• Excellent oral and written communication skills; able to clearly communicate issues and solutions to their project leader, on both a formal and informal basis.
• Strong interpersonal skills and professional maturity; demonstrated ability to effectively interact and build relationships with a diverse group of stakeholders and colleagues.

What we offer:

• Opportunity to work on international client engagements;
• Health Insurance;
• Flexible working;
• Expat relocation package, with active support communities, as applicable;
• Immigration assistance and advice, if applicable;
• Buddy system and induction sessions;
• A Performance Manager will coach you to establish, periodically review and ensure you get to meet your business and personal development goals;
• Continuous Learning through multiple online platforms;
• Technical training and support;
• Ability to work in proximity of other European countries.

Are you looking for a challenge and willing to learn? Please click on the 'Apply for this Job' icon to submit your application.