About ComReg

The Commission for Communications Regulation (ComReg) is the statutory body responsible for regulating fixed and mobile communications, postal and premium rate services in Ireland. ComReg also manages Ireland’s radio spectrum resource on behalf of the State.

Our mandate, which until recently has been to create a competitive marketplace, to protect and inform consumers, and to encourage innovation, is expanding into new areas as we take on statutory responsibilities in the fields of accessibility, cybersecurity, physical resilience, AI, cloud and data.

This is an exciting time of growth for ComReg as we will shortly take on new statutory responsibilities covering digital matters arising from EU legislation, including: the 2022 Network and Information Systems (NIS2) Directive, the Critical Entities Resilience (CER) Directive – addressing cybersecurity and network resilience – together with the EU Data Act, the EU AI Act, and the European Accessibility Act (EAA).

We are a professional, multi-disciplinary and diverse organisation, operating in a dynamic digital regulatory environment that is constantly evolving as we begin to regulate companies and organisations operating in the digital technology sector.

While our regulatory role is evolving, our fundamental mission remains the same. ComReg’s mission is to implement effective regulation that supports the delivery of widespread, modern and resilient digital infrastructure, including communications networks, products, and services which, ultimately, benefit users.

Further information on ComReg is available here.

Cybersecurity and Resilience Division

ComReg has been designated as the NIS2 Directive National Competent Authority for the Digital Infrastructure, Digital Provider, ICT Service Management and Space sectors. Additionally, ComReg has been designated as the CER Directive National Competent Authority for the Digital Infrastructure Sector.

The designation of ComReg as the National Competent Authority for NIS2 and CER requires a new division to execute these additional regulatory functions. This division will be the known as the Cybersecurity and Resilience Regulation Division.

The Cybersecurity and Resilience Regulation Division responsibilities will include:

• NIS2 compliance & enforcement
• CER function delivery – National Resilience Strategy
• Engagement activities – national and international
• Strategic Planning

Full details on our NIS2 and CER responsibilities are here

The role

The Operational Director of Cybersecurity Regulation is a critical role that will be accountable for operational aspects of ComReg’s NIS2 functions and provide senior level support to the Director of Cybersecurity and Resilience Regulation.

The Operational Director can play a significant role in establishing Ireland as a leader in digital infrastructure security and resilience.

The Operational Director of Cybersecurity will have an extensive operational senior role including:

Strategy & Leadership, Teamwork

• Provide strategic leadership and accountability for the development, adoption and implementation of operational strategy/s to deliver NIS2 functions including operational frameworks, processes, procedures, public consultations etc;
• Responsible for the development of the Cybersecurity unit including co-creation of the strategic and operational plans for recruitment, development of required competencies and training pipelines;
• Foster the creation of a cohesive, high-performing cybersecurity regulation team that integrates seamlessly within ComReg;
• Actively shape a culture of regulatory and technical excellence mirroring ComReg’s existing exemplary regulatory reputation;
• Management of Senior Managers in the Cybersecurity unit including delegation of appropriate responsibilities;
• Communicate operational strategy and strategic direction to internal and external senior stakeholders as required.

Technical Knowledge & Continuous Improvement

• Accountable for the implementation of the operational regulatory framework for the supervision and enforcement of entities in scope for NIS2;
• Deliver oversight of multiple operational Cybersecurity Units including compliance, enforcement, and other technical units (each unit will have a Head of Unit post and combined all units will total up to 60 staff);
• Provide senior level governance to all NIS2 supervision and enforcement actions in the Digital Infrastructure, Digital Providers, ICT Service Management and Space sectors.

Other

• Act as one of the potential Deputies for the Divisional Director as/if required including executive level support and representation to Commission and Leadership Team when required;
• Provide governance and leadership for financial planning for all operational units, including budgeting, and forecasting to ensure fiscal responsibility and sustainability for the unit;
• Support broader divisional needs during the ‘startup’ phase for the division which may include additional temporary responsibilities such as, for example, overseeing some engagement activities and requirements or some legal and economic oversight.

Please note: The above is a general guide to the key duties and responsibilities of the role and is not an exhaustive description, therefore other/additional duties and responsibilities appropriate to the role may be assigned.

Location & remuneration

• Salary €124,731 to €155,911 (Candidates should note that entry will be at the minimum of the scale unless transferring from a current public sector role. The total remuneration may be adjusted from time to time in line with Government pay policy as applying to public servants generally). Subject to satisfactory performance, increments may be awarded annually.
• Dublin city centre location on Luas line
• Blended working environment
• 28 days Annual Leave per year
• Fully paid Maternity, Paternity and Parent’s leave
• Income protection scheme
• Further Education and Training Opportunities
• Professional membership fee pay
• Membership of the Single Public Service Pension Scheme*
• ComWell Wellbeing Programme
• Travel tax saver scheme, access to Cycle to Work Scheme
• Access to Employee Assistance Programme
• Access to a members’ run sports and social club

* Superannuation – An individual who is a new entrant for the purposes of the Public Service Pensions (Single Scheme and Other Provisions) Act 2012 will be a member of the Single Public Service Pension Scheme, which commenced from 1 January 2013.  An individual who was a member of a “pre-existing public service pension scheme” as construed by the Public Service Pensions (Single Scheme and Other Provisions) Act 2012 and who does not qualify as a new entrant for the purposes of that Act will be a member of the ComReg superannuation scheme.

Essential criteria

• An Honours degree (equivalent to level 8 on the National Framework of Qualifications – NFQ), third level qualification or significant relevant senior experience, in Cybersecurity, science, technology, engineering, or other equivalent area/s;
• Proven recent experience (5+ years) in senior role/s with demonstrable evidence of working within a regulatory/regulated environment in the area of cybersecurity and/or resilience with a focus on operational aspects – within the Digital Infrastructure, Digital Providers, ICT Service Management and Space sectors is advantageous;
• Extensive experience applying cybersecurity, risk and regulatory frameworks (e.g. ISO 27001, NIST, DORA, GDPR) in complex environments with a record of building and leading high-performing teams;
• Experience of development of new operational functions and obligations, preferably within a regulatory/regulated environment including the ability to lead and inspire operational multidisciplinary teams, and foster a culture of collaboration and innovation;
• Proven ability to provide representation to top level management, Board or Commissioner level with excellent communication, interpersonal, and negotiation skills, and the ability to influence stakeholders at all levels;
• Proven experience in the governance and management of financial planning, budgeting, and forecasting processes to ensure fiscal responsibility and sustainability for a divisional structure.

Desired criteria

• Master’s degree (equivalent to level 9 on the NFQ) in science, technology, engineering, data analytics or another equivalent area/s and/or Cybersecurity leadership qualification;
• Proven senior operational focused experience in the strategic development for new cybersecurity and/or resilience functions particularly in a regulatory /regulated environment;
• Demonstrable senior level experience of regulatory supervision and enforcement in a cybersecurity and/or resilience environment;
• Experienced in executive level engagements (CEO, Divisional Director, Commissioner, Secretary and Assistant Secretary General) regarding cybersecurity and/or resilience, in particular with central government departments and EU bodies/agencies.

 Core Competencies & Skills for the Role

• Strategy and Leadership – Articulates future developments and applies this to operational situations. Creates a climate of cooperation and respect, where people strive to achieve common organisational goals and share knowledge. Takes a broad view.
• Communication and Influencing – Communicates clearly, confidently and respectfully. Engages and influences others to follow a particular course of action. Ensures all relevant parties are appropriately updated and notified.
• Decision Making and Judgement – Effectively uses evidence to support the decision-making process. Assesses alternative positions while using sound judgement to adapt to specific and challenging requirements of the organisation.
• Analytical and Critical Thinking – Objectively analyses and evaluates information in order to identify patterns between situations that are not obviously related. Develops and clearly articulates solutions to complex problems.
• Technical Knowledge & Continuous Improvement – Possesses a command over the technical and professional skills for a particular discipline. Keeps an open mind. Demonstrates commitment to continuous improvement.
• Teamwork – Promotes and enhances team performance through working collaboratively and in cooperation with others to achieve goals. Interacts in a manner that builds respect and fosters trust.

Contact details

For a conversation in confidence, please contact: Freya McMorrow, Research Consultant, Freya.McMorrow@odgers.com