Head of Information Security
St. Julian's, St. Julian's, Malta
ComeOn Group
ComeOn Group is a leading iGaming operator, powering top online casino and sportsbook brands. Explore our innovative platforms, industry partnerships, and commitment to responsible gaming.ComeOn Group in short
Founded in 2008, ComeOn Group is a leading global player in the rapidly growing iGaming market. Having launched its first online brand in 2010, ComeOn Group offers 15 brands across multiple markets on its proprietary platform providing a secure, innovative and entertainment-led player experience across casino and sports betting. ComeOn Group is an international employer within the iGaming industry and has over 550 talented employees across 7 main locations.
Location St. Julian's, Malta (Hybrid)
As the Head of Information Security, you will be responsible for leading the company’s information security initiatives—balancing high-level strategy with direct hands-on involvement. You’ll ensure our platforms, data, and operations are secure, compliant, and resilient, while guiding the team and collaborating with stakeholders across the business.
This is a high-impact, hands-on leadership role in a fast-paced, regulated industry. You'll work closely with IT, DevOps, Compliance, and Product teams to embed security across the organization. Your team currently consists of one Information Security Officer located in Malta.
Key Responsibilities
Strategic & Leadership Responsibilities:
- Define and own the company’s information security strategy and roadmap.
- Lead security governance, risk management, and compliance (GRC) efforts.
- Educate and advise senior leadership and staff on cybersecurity threats, trends, and best practices.
- Develop, enforce, and maintain security policies, standards, and procedures.
Hands-On Responsibilities
- Oversee implementation of technical security controls, tools and incident response procedures.
- Conduct and manage internal/external security assessments, vulnerability scans, and penetration tests.
- Lead incident response and forensics in the event of a breach or security issue.
- Monitor and analyze logs, alerts, and threats using SIEM and other tools.
- Ensure compliance with relevant regulations (e.g., GDPR, ISO 27001, PCI-DSS, and local licensing requirements)
Qualification
Required:
- 7+ years in Information Security, with at least 2 years in a leadership role.
- Strong knowledge of cloud-based environments (AWS, GCP, etc.), network security, application security, and DevSecOps.
- Experience in regulated industries (ideally iGaming, fintech, or similar).
- Deep understanding of security frameworks and compliance standards (ISO 27001, GDPR).
Proven incident response and risk assessment experience. - Ability to work independently, set priorities, and manage multiple projects.
Preferred:
- Experience working in or with iGaming operators.
- Certifications such as CISSP, CISM, CEH, or equivalent.
- Experience integrating security into CI/CD pipelines.
Benefits
So what can you expect from ComeOn as a place of work? - A competitive remuneration package including a company bonus scheme! 💰
- Fantastic quarterly team events and weekly company events 😎
- A one-time bonus to help you set up a comfortable workstation at home (we’re truly Hybrid!)
- On top of our Hybrid work arrangement, up to 40 days a year to work fully remote from anywhere 🌎
- Wellbeing allowance
- A comprehensive, International Private Health Insurance
- Breakfast at the office on Tuesdays
- Lunch at the office on Mondays and Wednesdays
At ComeOn, we've embraced a Hybrid Work model, giving our employees the flexibility to work some days at home. Our offices are thoughtfully designed to support this model, featuring practical workspaces for focused efforts and collaborative zones for dynamic creative exchanges. We believe in the power of collaboration to drive innovation and success. While our offices are known for their vibrant atmosphere, rest assured that our primary focus is on achieving results together. We prioritize efficiency and maintain a balance between hard work and camaraderie. When you visit our offices, expect a warm welcome and professional support. Choose ComeOn for your next career move, and experience a workplace that values productivity, teamwork, and the spirit of collaboration.
At ComeOn Group we value diversity and we take concrete action to ensure fairness in our recruitment process. We are committed to assessing candidates on their merit without discriminating against any applicant for whatever reason that is protected by law. We truly value you, as you are.
Want to know more about us just visit our website www.comeon-group.com or any of our social media channels to take a deep dive into our culture!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS CEH CI/CD CISM CISSP Cloud Compliance DevOps DevSecOps FinTech Forensics GCP GDPR Governance Incident response ISO 27001 Network security Risk assessment Risk management Security assessment Security strategy SIEM Strategy Vulnerability scans
Perks/benefits: Health care Home office stipend Salary bonus Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.