ICT Regulatory Officer

As an ICT Regulatory Officer, you will be responsible for overseeing IT risk management and ensuring regulatory compliance across our IT landscape. You will play a crucial role in safeguarding our systems and data, while also ensuring adherence to industry standards and frameworks.

Responsibilities: -

-Ensuring compliance with relevant regulatory requirements and industry standards, including GDPR, DORA, and PCI-DSS;

-Conducting regular audits and assessments to identify and mitigate potential risks;

-Collaborating with cross-functional teams to ensure security measures are integrated into all IT projects;

-Maintaining up-to-date knowledge of regulatory changes and emerging security threats; -Developing and maintaining documentation related to IT policies and procedures;

-Ensuring policies and procedures are up-to-date and reflect current regulations and best practices;

-Participating in incident response activities related to IT security breaches and compliance violations; -Being responsible for business continuity planning and disaster recovery testing;

-Monitoring and reporting on compliance status;

-Analyzing audit findings and recommend corrective actions;

-Working closely with IT, Risk, and other departments to ensure alignment of IT security and compliance efforts; -Collaborating with external auditors and regulatory agencies;

-Staying informed of emerging IT risks and compliance requirements.

Experience and Skills:

-Bachelor's degree in Information Technology, Computer Science, or a related field;

-Minimum of 2 years of experience in IT risk management and regulatory compliance;

-Knowledge of ITIL/COBIT framework and other relevant industry standards;

-Strong knowledge of IT security principles, risk management frameworks, and compliance regulations;

-Understanding of GDPR, DORA, and PCI-DSS regulations;

-Familiarity with business continuity planning and disaster recovery;

-Excellent analytical and problem-solving skills;

-Strong communication and interpersonal skills;

-Ability to work independently and as part of a team;

-Relevant certifications (e.g., CISSP, CISM, CRISC, CISA) are a plus.