IT Security Manager

Mission

In this role, you will oversee the design, implementation, and evolution of IT security strategies, architectures, and policies. You will ensure that all security measures comply with internal guidelines and external regulatory requirements, while also supporting M&A activities.
You will manage security audits, incident response, and risk management processes. We are looking for a proactive and strategic professional with a strong understanding of IT security and risk management, capable of ensuring the company’s information security posture remains robust and compliant with relevant regulations and standards.

Key Accountabilities

1. IT Strategy and Framework:
- Participate in the design and implementation phases of the IT strategy and operating framework.
2. Advanced Security Solutions Support:
 - Provide advanced support in designing security solutions and architectures.
3. Policy and Architecture Evolution:
- Assist in evolving the IT security architecture and related policies.
- Ensure the management and monitoring of IT security requirements.
4. Governance and Standards:
- Support governance efforts to set and enforce standards for IT security.
5. M&A Analysis and Integration:
- Support M&A activities through Due Diligence analysis and PMI projects.
6. Legal and Regulatory Compliance:
- Translate legal and regulatory requirements into information security requirements.
- Support the DPO in GDPR compliance activities.
7. Data Security Implementation:
- Implement technical and procedural measures to ensure data security.
8. Audit Coordination:
- Support internal and external auditing activities for compliance.
9. Vulnerability Management:
- Manage periodic Vulnerability Assessments and Penetration Testing.
- Define and oversee remediation activities.
10. Incident Management:
- Manage and report IT security incidents.
- Collaborate with the DPO for personal data breaches.
11. Risk Management:
- Adopt and support a structured risk management process for projects and IT activities.

Education

Qualifications

• 5 years of experience in IT security support or a similar role.
• Experience in supporting the design and implementation of security architectures and policies.
• Good knowledge of IT security technologies, tools, and best practices.
• Familiarity with vulnerability assessments, penetration testing, and incident management.
• Understanding of GDPR, ISO27001, NIS2 and other relevant data protection regulations.
• Ability to support translating regulatory requirements into security policies and procedures.
• Demonstrated leadership skills, with the ability to independently manage projects and stakeholder relationships adeptly.
• Fluency in Italian and English is mandatory.

Competencies