Head of Cyber Security and Data Protection

Key responsibilities include:

- **Cybersecurity Strategy**: Develop and implement a robust cybersecurity strategy aligned with business objectives and industry regulations and stay up to date of the latest cybersecurity threats, trends, and technologies to continuously improve the security posture.
- **Risk Management**: Conduct and evaluate regular risk assessments and vulnerability analyses to identify potential threats and vulnerabilities; develop and implement risk mitigation strategies to protect against cyber threats.
- **Security Architecture**:Design and implement a secure and scalable cybersecurity architecture for the organization's IT systems and networks and ensure that security measures align with industry best practices and regulatory requirements.
- **Incident Response and Recovery**: Develop and oversee incident response and recovery plans, ensuring a rapid and effective response to security incidents and conduct post-incident analyses to identify areas for improvement.
- **Compliance and Regulatory Oversight**: Ensure compliance with relevant cybersecurity and data protection regulations, standards and frameworks, and stay informed about changes in regulations and implement necessary adjustments to policies and procedures.
- **Security Awareness and Training**: Develop and implement cybersecurity awareness programs to educate employees about security best practices and Provide training to enhance the organization's overall security posture.
- **Vendor and Third-Party Risk Management**: Oversee the assessment and management of cybersecurity risks associated with third-party vendors and partners and ensure that contractual agreements include appropriate cybersecurity requirements.
- **Security Monitoring and Analysis**: Implement and manage Security Information and Event Management (SIEM) systems for continuous monitoring of IT systems And Analyse security data to detect and respond to emerging threats.

Required Knowledge, Skills and Experience

Mandatory requirements
- Degree in Computer Science, Information Technology, or a related field.
- Proven experience within cybersecurity-related role within the manufacturing industry.
- Demonstrated ability to develop and implement effective cybersecurity strategies.
- Strong understanding of cybersecurity threats, standards, and regulations.
- Proven ability to manage complex IT projects and deliver results on time and within budget.
- Excellent leadership, communication, and interpersonal skills. Excellent verbal and written communications skills. Fluent English and Italian is a must.
- **Beneficial experience and qualifications**
- Professional certifications such as CISSP, CISM, or CISA are highly desirable.
- M&A experience to understand how Private Equity works both in terms of mindset, approach and operations given that this is the backdrop to the portfolio / program.
- Knowledge or hands-on experience with business process mapping in the automotive or discrete manufacturing industry.

**Benefits**:

- You will be given creative opportunities and the chance to use your ideas and experience to drive innovative developments and directly influence the company's success
- We offer you an unrivalled opportunity for personal growth in a well-organised, international, healthy and future
- oriented company with excellent development opportunities on a global scope
- You can look forward to an enthusiastic company, characterised by a motivating team spirit and interculturality, which provides you security and continuity
- Your commitment will be rewarded with an attractive renumeration appropriate for the responsibility of this position
- The ability to work (partly) remotely or from home office
- We place a high value on equal opportunities and non-discrimination. You should feel comfortable and secure in your work, with the good feeling that all your facets are respected and valued by your colleagues

**About the company**:

- The company is continuously growing and extending its business. With a global network of production and engineering sites, customers from all over the world are offered a broad range of high-technology products.
- But it’s not simply about growth and profit. The company is all about pioneering and innovation. It’s about creating the future.