We're a leading financial institution, a key player in the Maltese market and part of a highly diversified multi-national group of companies. Employing a team of over 270 employees, the bank offers a full range of lending and savings solutions to both personal and business customers. We strive to offer a highly personalised service through our network of thirteen retail branches spread across the Maltese Islands. 

‍We are a team of inspired people who believe that opportunities start with a conversation. 

‍Duties & Responsibilities

The Information Security Manager leads the Information Security Unit and is responsible for safeguarding the Bank’s information assets and ensuring alignment with organisational objectives. 

You will be responsible for:

• Set, maintain, and communicate the Bank’s information security strategy, roadmap, and objectives.
• Establish, review, and oversee security policies, standards, and procedures.
• Lead security risk management, including assessments, vulnerability testing, and audits.
• Ensure compliance with regulatory and industry frameworks (ISO27001, GDPR, DORA, NIS2, PCI-DSS).
• Direct the incident response programme and manage major security incidents.
• Oversee threat intelligence, monitoring capabilities, and operational security controls.
• Supervise, mentor, and develop ISU staff, ensuring capability growth and performance.
• Provide security leadership across departments, ensuring alignment with IT, Risk, Operations, and Compliance.
• Drive security awareness initiatives and organisation‑wide training.
• Select, implement, and oversee security technologies and third‑party providers.
• Approve all ISU outputs including architecture proposals, risk assessments, and policy updates.
• Report security posture, emerging risks, and KPI/KRI trends to senior management.
• Carry out any other duties assigned to him by the Head of Department.

Competencies & Experience

The potential candidate should be reliable and trustworthy, well-organised with a disposition to learn and have a team-oriented approach. The candidate should demonstrate excellent written and verbal communication skills in English , with the ability to communicate effectively using a high level of business English.

You must:

• Possess strong leadership, communication, and stakeholder‑management capabilities.
• Have expertise in information security frameworks (ISO27001, NIST) and regulatory requirements.
• Possess advanced knowledge of security technologies (SIEM, EDR, IAM, DLP, network security).
• Have strong incident response, risk management, analytical, and decision‑making skills.
• Be able to translate complex technical risks into clear, business‑focused language.
• Have proven project management and vendor‑management skills.
• Hold a Bachelor’s degree in Cyber Security, Computer Science, or related field; Master’s preferred.
• Bring at least 8+ years’ experience in information security, including 4+ years in leadership roles.
• Possess professional certifications: CISSP or CISM, required; CRISC or ISO27001 Lead Implementer/Auditor preferred.
• Demonstrate understanding of evolving cyber threats, technologies, and regulatory environments.
• Have experience managing teams, cross‑functional initiatives, and major security incidents.

‍What we Offer

• Ongoing personal development; 
• Preferential interest rates on home loans, personal loans and home value loans; 
• Comprehensive support for academic advancement through fully subsidized staff study loans; 
• Private clinic health insurance coverage, extendable to dependants; 
• Life insurance and personal accident cover; 
• Free ophthalmic examinations; 
• Private counselling sessions in collaboration with Richmond Foundation; 
• Additional full-day leave for birthday celebrations; 
• Annual performance appraisals and salary reviews; 
• €400 annual wellness allowance; 
• Complimentary mammogram screenings for female employees aged over 40 and PSA screenings for male employees aged over 40; 
• Flexible work arrangements (role permitting); and 
• Various corporate discounts. 

BNF Bank plc is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.