Cyber Governance Risk

4 giorni fa

Milano, Italia Amplifon A tempo pieno

**Who we are**
**Amplifon is an Italian multinational company and the global leader in hearing care solutions and services for retail expertise, customization and consumer care. More than 17,000 professionals every day in a network of 11,000 points of sale / service centers / affiliates, give back the joy of hearing, feeling and living to thousands of people across the world.**
**In Amplifon we believe people are the most important component of our success. Thanks to our best-in-class Hearing Care Professionals and front and back office Teams, we are able to put the everyday taps, pops and splashes back into the lives of our customers. We believe that it’s only through strong investment in talent engagement, continuous professional development, support and recognition that our people can exceed every limit and build a fulfilling career.**

**What we are looking for**
**Reporting to the Global Cybersecurity Manager, we are looking for a talented Corporate Cybersecurity Cybersecurity Governance, Risk & Compliance Specialist to oversee the company security.**
**The Corporate Cybersecurity Governance, Risk & Compliance Specialist 's job is composed of a variety of activities, including very tactical, operational and strategic activities in support of the Security program initiatives, such as**:

- **Strategic support**:

- **Security liaison**:

- **Architecture/engineering support**:

- **Operational support
***The incumbent will be responsible to protect the Company from any cyber threats in compliance with corporate policies and regulations (eg. GDPR, HIPAA ), best practices (NIST, ISO, MITRE,etc ) and new/upcoming technologies (cloud, artificial intelligence, machine learning, etc), in coordination with our security partners.**
**He/she will be responsible to identify, evaluate and manage external threat sources, cyber risks; will guarantee the adoption of effective the security measures; will test preparedness and responsive capability of the security capabilities. will oversee security reporting.**
**Key responsibilities including but not limited to**:

- **Development of security policy and standards to guide security decisions within the organization and inspire change**:

- **Ensure that the organization is compliant with regulatory requirements and internal policies.**:

- **Create a project plan to achieve ISO 27001 Compliance by working with a consultant partner.**:

- **Review and assess the results of ISO 27001 compliance assessments, controls, and processes. Then, recommend, document, and monitor the implementation of any prescribed corrective actions.**:

- **Serve as project lead within IT security projects upon project plan and remediation efforts**:

- **Assist with presentations to management and enterprise committees.**:

- **Build on security existing processes and focuses on continuously monitoring to support the improvement the security posture of the organization including the branches**:

- **Defines actions to protects the organization from inadvertent human mistakes and malicious insider actions**:

- **Facilitate IT security/risk training curriculum**:

- **Promote awareness of applicable regulatory standards, upstream risks and industry best practices across the Company**:

- **Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, publishing test results and making changes necessary to address deficiencies**:

- **Address questions from internal and external audits and examinations
**What you'll need**
**- Bachelor’s Degree, Information Systems, Computer Science, Information Security or related field required - 5+ years IT security or information security experience with a proven ability to engage with Senior Management and regulators**:

- **Knowledge of technical infrastructure, networks, databases and systems in relation to IT Security and IT Risk**:

- **ISO 27001 Lead Auditor, or related certification preferred**:

- **Project management skills preferred**:

- **Prior experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)
**Mandatory knowledge: framework and international standard of**:

- **Information Security, IT Risk & Security Assessment, Governance & Compliance, Data Privacy/Data Protection**:

- **International and local ICT and Cyber Risk regulations**:

- **Best practices (e.g. NIST, ISO 27001, SOC Type I & Type 2 MITRE Att&ck)**:

- **Security tools (i.e. SIEM, Identity & Access Governance, Data Security&Protection, IDS/IPS, Fraud Detection, Data Masking&Tokenization, PKI)
**Forward-thinking interpersonal skills: you can persuasively express your point of view whether it’s through a written or face-to-face presentation**
**Proficiency in performing risk, business impact, control, and vulnerability assessments, and in defining treatment strategies.

  • Cyber Security Governance and Risk Specialist

    7 mesi fa

    Milano, Italia A2A S.p.A. A tempo pieno

    **Chi cerchiamo** Per la nostra sede di **Milano **siamo alla ricerca di una persona da inserire come **Cyber Security Governance and Risk Specialist **all’interno del team **Cyber Defence **. La struttura ha la responsabilità per tutto il Gruppo di definire la strategia Cyber e assicurare il governo della Cyber Security, anche mediante il processo di...

  • Cyber Security Governance And Risk Specialist

    3 giorni fa

    Milano, Italia A2A S.P.A. A tempo pieno

    **Chi cerchiamo**Per la nostra sede di **Milano **siamo alla ricerca di una persona da inserire come **Cyber Security Governance and Risk Specialist **all'interno del team **Cyber Defence **.La struttura ha la responsabilità per tutto il Gruppo di definire la strategia Cyber e assicurare il governo della Cyber Security, anche mediante il processo di cyber...

  • Cyber Governance Risk

    7 giorni fa

    Milano, Italia Vodafone A tempo pieno

    **Descrizione**: Role purpose: To support the Cyber GRC team mission including the enforcement of compliance to security standard and frameworks, Cyber Risks Management, Identity and Access Management, Cyber Governance. - Key accountabilities and decision ownership: - Assess the level of compliance of the company technology assets versus Cyber Security...

  • Cyber Governance Risk

    5 giorni fa

    Milano, Italia Vodafone A tempo pieno

    **Descrizione**:Role purpose: To support the Cyber GRC team mission including the enforcement of compliance to security standard and frameworks, Cyber Risks Management, Identity and Access Management, Cyber Governance.- Key accountabilities and decision ownership:- Assess the level of compliance of the company technology assets versus Cyber Security...

  • Cyber Governance Risk

    2 giorni fa

    Milano, Italia Amplifon A tempo pieno

    **Who we are****Amplifon is an Italian multinational company and the global leader in hearing care solutions and services for retail expertise, customization and consumer care.More than 17,000 professionals every day in a network of 11,000 points of sale / service centers / affiliates, give back the joy of hearing, feeling and living to thousands of people...

  • Governance, Risk

    3 mesi fa

    Milano, Italia BIP - Business Integration Partners A tempo pieno

    Entra nel nostro mondo. _ - Trasforma insieme a noi. _ **Governance, Risk & Compliance Expert **_"Mitigare i rischi cyber derivanti dalla trasformazione digitale? Questo è il mio mestiere!" _** Se ti rivedi in questa descrizione, continua a leggere per scoprire chi siamo e quali opportunità possiamo offrirti! Hai già sentito parlare di BIP CyberSec? È...

  • Cyber Risk Analyst

    3 giorni fa

    Milano, Italia Sky Italia A tempo pieno

    **Cyber Risk Analyst** **Main responsibilities** - Support the team in the implementation and maintenance of a a risk-based approach to prioritize development of secure patterns for high-risk assets or activities. - Cooperation with the group structures for cyber risk management activities. - Use of the corporate cyber risk management platform to manage the...

  • Cyber Risk Analyst

    1 giorno fa

    Milano, Italia Sky Italia A tempo pieno

    **Cyber Risk Analyst****Main responsibilities**- Support the team in the implementation and maintenance of a a risk-based approach to prioritize development of secure patterns for high-risk assets or activities.- Cooperation with the group structures for cyber risk management activities.- Use of the corporate cyber risk management platform to manage the...

  • Cyber Risk Advisor

    5 mesi fa

    Milano, Italia Resilience A tempo pieno

    Resilience is seeking a Cyber Risk Advisor in London/Europe to enhance our customers' cyber risk management capabilities. As part of our comprehensive cyber risk solution, you'll utilize our state-of-the-art SaaS platform to assist clients in understanding, evaluating, and mitigating cyber threats. This role requires collaboration with clients to guide them...

  • Cyber Risk Advisor

    3 settimane fa

    Milano, Italia Resilience A tempo pieno

    Resilience is seeking a Cyber Risk Advisor in London/Europe to enhance our customers' cyber risk management capabilities. As part of our comprehensive cyber risk solution, you'll utilize our state-of-the-art SaaS platform to assist clients in understanding, evaluating, and mitigating cyber threats. This role requires collaboration with clients to guide them...

  • Junior Consultant Cyber Security

    7 giorni fa

    Milano, Italia Grant Thornton A tempo pieno

    All’interno di Grant Thornton Digital siamo alla ricerca di un Junior Consultant nell’area Cyber Security. Il ruolo prevede lo svolgimento diattività di consulenza ai clienti nei seguenti ambiti: - Partecipazione a progetti di risk assessment in tema di cyber risk e compliance e definizione dei relativi piani di remediation - Analisi e verifica del...

  • Junior Consultant Cyber Security

    5 giorni fa

    Milano, Italia Grant Thornton A tempo pieno

    All'interno di Grant Thornton Digital siamo alla ricerca di un Junior Consultant nell'area Cyber Security.Il ruolo prevede lo svolgimento diattività di consulenza ai clienti nei seguenti ambiti:- Partecipazione a progetti di risk assessment in tema di cyber risk e compliance e definizione dei relativi piani di remediation- Analisi e verifica del disegno dei...

  • Cyber Insurance Risk Specialist

    4 settimane fa

    Milano, Lombardia, Italia FourStars Impresa Sociale S.r.l. A tempo pieno

    Job Title: Cyber Insurance Risk SpecialistAbout the Role:We are seeking a highly skilled and motivated Cyber Insurance Risk Specialist to join our team at FourStars Impresa Sociale S.r.l. As a key member of our underwriting team, you will play a crucial role in assessing risks and developing personalized insurance solutions for our clients.Key...

  • Internship - Cyber Security Governance

    7 mesi fa

    Milano, Italia Be Group A tempo pieno

    **_Be | Shaping the Future_**_, parte del gruppo Engineering, è tra i principali player in ambito Management Consulting e ICT Solutions. La Società fornisce servizi di Business Advisory, Information Technology e Digital Engagement. Grazie alla combinazione di competenze specialistiche, tecnologie proprietarie avanzate e un patrimonio di esperienza...

  • Stage - Enterprise & Cyber Risk Management

    7 mesi fa

    Milano, Italia Vittoria Assicurazioni A tempo pieno

    Stiamo cercando una figura neo-laureata o laureanda da inserire all’interno dell’Ufficio **Risk Management e Sicurezza delle Informazioni**, a supporto dell’operatività del team e dei progetti interni, volti a garantire un elevato grado di resilienza della Compagnia e un continuo presidio dei rischi emergenti, in particolare quelli legati al...

  • Stage - Enterprise & Cyber Risk Management

    2 settimane fa

    Milano, Italia Vittoria Assicurazioni A tempo pieno

    Stiamo cercando una figura neo-laureata o laureanda da inserire all'interno dell'Ufficio **Risk Management e Sicurezza delle Informazioni**, a supporto dell'operatività del team e dei progetti interni, volti a garantire un elevato grado di resilienza della Compagnia e un continuo presidio dei rischi emergenti, in particolare quelli legati al cambiamento...

  • Junior - Risk Management & Governance - Corporate

    7 mesi fa

    Milano, Italia CLA Consulting A tempo pieno

    Junior - Risk Management & Governance - Corporate, Private & Public sector (-1 anno di esperienza) **Junior - Risk Management & Governance - Corporate, Private & Public sector **(**-1** ann**o** di esperienza)** *** **Sei pronto a **#MakeAnImpactThatMatters **nel** **nostro team** **Governance & Risk Management CPP?** *** **Entrando nel Team **di **Risk...

  • Governance, Risk and Compliance consultant

    4 giorni fa

    Milano, Italia Avanade A tempo pieno

    Job Description Together we go beyond. Our Security team is now looking for a Governance, Risk and Compliance Consultant to join our ever-growing team. As a Governance, Risk and Compliance Consultant, you will be working on some of the largest and leading-edge projects. This role is a customer facing and you will play an active role in...

  • Cybersecurity Governance Specialist

    7 mesi fa

    Milano, Italia Azienda Trasporti Milanesi S.p.A A tempo pieno

    ATM, nel contesto di realizzazione del nuovo piano strategico, in un’ottica di miglioramento continuo del servizio e con l’obiettivo di potenziare la Direzione Generale, ricerca un/a Cybersecurity Governance Specialist. La risorsa, a diretto riporto del CISO, si occuperà di gestire le seguenti attività: - implementazione del sistema di gestione della...

  • Cyber Resilience Specialist

    7 mesi fa

    Milano, Italia BIP - Business Integration Partners A tempo pieno

    Entra nel nostro mondo. _ - Trasforma insieme a noi.**_“Mitigare i rischi cyber derivanti dalla trasformazione digitale? Questo è il mio mestiere!" - ** Se ti rivedi in questa descrizione, continua a leggere per scoprire chi siamo e quali opportunità possiamo offrirti! Hai già sentito parlare di BIP CyberSec? È il Centro di Eccellenza di BIP Group...