Information Technology Security Manager in CYPRUS

About the company

Hapic is a financial ecosystem that cares about each customer, each partner, and each employee. Our team is creating global digital settlement services for small and medium-sized enterprises in the European Union. As of now, we are awaiting license approval from the Central Bank of Cyprus.

Job Description 

Hapic is seeking a highly experienced IT Security Manager to safeguard our digital infrastructure and ensure compliance with regulatory requirements such as GDPR, DORA, and PSD2. The ideal candidate will be responsible for developing and implementing security policies, managing security tools, and leading our IT security initiatives both in the cloud and on-premises. This role requires a proactive approach to cybersecurity and a commitment to maintaining the highest security standards for our customers and employees.

Responsibilities:

• Development of the information security function, including staff recruitment and budget management.
• Development of rules and methods for cyber fraud prevention.
• Implementation of encryption tools for sensitive corporate data and communication channels.
• Implementation of best security practices in logical and physical security of the company.
• Monitoring of communication channels and network events for data leakage prevention.
• Development and launch of an induction security training program for new employees.
• Perform security assessment of third-party software and its functional modules.
• Perform regular reviews of user accounts, privileged accounts, and access rights.
• Development and implementation of the Information Classification Policy.
• Audit of user access rights in corporate systems.
• Participation in the organization of penetration tests.
• Implementation of a Security Information and Event Management (SIEM) system.
• Development and implementation of an incident management process, including the investigation of malicious emails, transactions, and network events.
• Provide advice and recommendations to other functional and business lines with respect to Information Security aspects.
• Ensure compliance with GDPR by implementing robust data protection measures and privacy policies.
• Oversee adherence to DORA requirements, focusing on operational resilience, incident reporting, and business continuity.
• Manage compliance with PSD2, ensuring secure handling of payment data, authentication processes, and fraud prevention.

Requirements:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Minimum of 5 years of experience in IT security, with a focus on cloud environments, preferably AWS.
• Strong knowledge of security frameworks such as NIST, ISO 27001, and CIS Controls.
• Experience with security tools and technologies, including SIEM, IDS/IPS, and encryption technologies.
• Proven ability to develop and implement security policies, standards, and procedures.
• Experience in performing security risk assessments and audits.
• Knowledge of regulatory requirements and industry standards related to financial services.
• Strong problem-solving and analytical skills.
• Excellent communication and interpersonal skills.
• Professional certifications such as CISSP, CISM, or CEH are highly desirable.

What We Offer:

• Full-time work with lunch compensation in a cozy new office in the center of Limassol.
• Competitive and fair compensation package.
• Health insurance coverage after the probationary period.
• Relocation support.
• Registration of a work visa.
• 1-day vacation as a Birthday present.