36 Posti di lavoro per Securitas in Italia

Contratto: Assunzione Diretta
Luogo di lavoro: ROMA
Apertura selezione: 7/10/2025
Termine ricezione candidature: 22/10/2025

Corporate Security Officer

L'Istituto per il Credito Sportivo e Culturale (ICSC) è la banca di promozione e sviluppo dello Sport e della Cultura con il mandato istituzionale di favorire la crescita del Paese.
Con una lunga storia di impegno verso la valorizzazione delle attività sportive e culturali, l'ICSC supporta progetti e istituzioni che contribuiscono al benessere collettivo e allo sviluppo dei territori e delle comunità.

L'obiettivo è l'inserimento di una risorsa senior che, riportando direttamente al Responsabile della Direzione Digitale e Operativa e in collaborazione con il Team, assuma un ruolo di coordinamento della Sicurezza Corporate della Banca.

L'obiettivo è l'inserimento di una figura con responsabilità trasversali su Sicurezza Fisica, Cybersecurity e Data Governance, operante in un contesto altamente regolamentato come il settore bancario. Il candidato ideale ha maturato almeno 10-15 anni di esperienza, con un minimo di 5 anni in ruoli manageriali, preferibilmente in ambito bancario, pubblica amministrazione o grandi imprese soggette a normative stringenti.

Capace di operare in contesti complessi e multilivello, mantenendo il giusto equilibrio tra rigore normativo, innovazione tecnologica e comunicazione efficace con top management e autorità di vigilanza.

• Definizione della strategia di cybersecurity in conformità alle normative vigenti (Es. 285, GDPR, NIS2, DORA).
• Implementazione di standard e best practice in materia di sicurezza.
• Identificazione e gestione delle vulnerabilità in sistemi e servizi ICT.
• Sviluppo di metodologie e test di sicurezza.
• Monitoraggio dei controlli crittografici e gestione sicura delle reti e dispositivi.
• Gestione di incidenti informatici e risposta tempestiva alle crisi.
• Congiuntamente alla funzione HR definizione di percorsi formativi continui del personale sulle minacce emergenti e sulle buone pratiche.
• Definizione di regole di sicurezza nei rapporti con i fornitori e nel ciclo di vita delle applicazioni.
• Inclusione del rischio ICT nei progetti aziendali, con misure di prevenzione e controllo.
• Progettazione di infrastrutture IT resilienti, in linea con requisiti di sicurezza.

• Gestione della sicurezza fisica di sedi e infrastrutture critiche.
• Implementazione di sistemi di controllo accessi (fisici e logici) e videosorveglianza.
• Verifica periodica e gestione degli accessi in linea con il principio del minimo privilegio.
• Coordinamento di piani di continuità operativa (BCO), disaster recovery e gestione emergenze.
• Identificazione di servizi critici e definizione di strategie per la resilienza operativa.
• Collaborazione con forze dell'ordine, autorità pubbliche e organismi di controllo.
• Monitoraggio, in sinergia con il Risk Management, degli indicatori di rischio e delle minacce.

• Guida del sistema di Data Governance aziendale: strategia, struttura, ruoli e responsabilità.
• Presidio continuo della qualità dei dati (Data Quality), con definizione e aggiornamento dei controlli.
• Sviluppo, presidio e rendicontazione dello stato del sistema di Data Governance.
• Identificazione delle esigenze aziendali in tema di dati, prioritizzazione e implementazione.
• Coordinamento con la funzione IT per lo sviluppo di strumenti analitici e di governance dei dati.
• Supervisione della normativa interna in coerenza con l'evoluzione esterna.
• Promozione della cultura del dato attraverso iniziative interne e relazioni esterne.
• Advisory strategico e operativo alle strutture aziendali per la valorizzazione del patrimonio informativo.
• Congiuntamente alla funzione HR definizione di percorsi formativi per potenziare le competenze in ambito data governance.

• Conoscenza approfondita delle principali normative, standard e best practice di sicurezza, inclusi NIST, GDPR, ISO 27001, DORA, NIS2, EBA Guidelines, D.Lgs. 231/01.
• Padronanza delle metodologie di valutazione dei rischi ICT, Cyber e Informatici, per valutare l'impatto di eventuali interruzioni sui servizi.
• Competenza nella definizione di strategie di gestione delle crisi, disaster recovery e procedure operative dettagliate.
• Conoscenza e monitoraggio delle minacce informatiche, e tecniche di mitigazione e gestione del rischio ICT.
• Capacità di sviluppo e implementazione di test di sicurezza, tra cui Penetration Testing e Vulnerability Assessment.
• Conoscenze specialistiche di Information Governance e comprovata esperienza nella Data Governance aziendale.

• Leadership consolidata in ambienti regolamentati, con capacità di indirizzo strategico e decisionale.
• Capacità comunicative e relazionali, con attitudine al confronto sia tecnico sia istituzionale.
• Capacità di pianificazione e controllo del budget in coerenza con gli obiettivi aziendali.
• Sintesi e rappresentazione di fenomeni complessi a supporto del top management.
• Project Management, con attenzione agli economics e alla sostenibilità operativa.
• Problem solving, orientamento all'innovazione e valorizzazione del dato come asset strategico.
• Integrità e accountability in linea con il ruolo pubblico e fiduciario.
• Negoziazione e mediazione per la gestione di team interdisciplinari e relazioni con stakeholder ad alto livello (CdA, revisori, autorità di vigilanza).
• Proattività nel favorire lo sviluppo professionale e il potenziamento delle competenze interne.
• L'appartenenza alla Lista delle Categorie Protette.

Sede di lavoro : Roma centro

Il presente annuncio è rivolto a candidati ambosessi (L.903/77 - D.Lgs. n.198/2006). La ricerca è rivolta a professionisti con una solida esperienza nel supporto direzionale, desiderosi di operare in un contesto stimolante e in continua evoluzione. La capacità di anticipare le esigenze del management e di gestire con efficacia situazioni complesse è fondamentale per il successo in questo ruolo.

Ci impegniamo a creare un ambiente sicuro e inclusivo, basato sul rispetto reciproco e la valorizzazione delle diversità, offrendo pari opportunità di lavoro a tutte le candidate e i candidati qualificati. In generale, le candidate e i candidati il cui profilo sia in linea con la posizione aperta, saranno contattati dalla Società che segue la Selezione e riceveranno un feedback tempestivo.

Contratto: Assunzione Diretta
Luogo di lavoro: ROMA
Apertura selezione: 7/10/2025
Termine ricezione candidature: 22/10/2025

Corporate Security Officer

L'Istituto per il Credito Sportivo e Culturale (ICSC) è la banca di promozione e sviluppo dello Sport e della Cultura con il mandato istituzionale di favorire la crescita del Paese.
Con una lunga storia di impegno verso la valorizzazione delle attività sportive e culturali, l'ICSC supporta progetti e istituzioni che contribuiscono al benessere collettivo e allo sviluppo dei territori e delle comunità.

L'obiettivo è l'inserimento di una risorsa senior che, riportando direttamente al Responsabile della Direzione Digitale e Operativa e in collaborazione con il Team, assuma un ruolo di coordinamento della Sicurezza Corporate della Banca.

L'obiettivo è l'inserimento di una figura con responsabilità trasversali su Sicurezza Fisica, Cybersecurity e Data Governance, operante in un contesto altamente regolamentato come il settore bancario. Il candidato ideale ha maturato almeno 10-15 anni di esperienza, con un minimo di 5 anni in ruoli manageriali, preferibilmente in ambito bancario, pubblica amministrazione o grandi imprese soggette a normative stringenti.

Capace di operare in contesti complessi e multilivello, mantenendo il giusto equilibrio tra rigore normativo, innovazione tecnologica e comunicazione efficace con top management e autorità di vigilanza.

• Definizione della strategia di cybersecurity in conformità alle normative vigenti (Es. 285, GDPR, NIS2, DORA).
• Implementazione di standard e best practice in materia di sicurezza.
• Identificazione e gestione delle vulnerabilità in sistemi e servizi ICT.
• Sviluppo di metodologie e test di sicurezza.
• Monitoraggio dei controlli crittografici e gestione sicura delle reti e dispositivi.
• Gestione di incidenti informatici e risposta tempestiva alle crisi.
• Congiuntamente alla funzione HR definizione di percorsi formativi continui del personale sulle minacce emergenti e sulle buone pratiche.
• Definizione di regole di sicurezza nei rapporti con i fornitori e nel ciclo di vita delle applicazioni.
• Inclusione del rischio ICT nei progetti aziendali, con misure di prevenzione e controllo.
• Progettazione di infrastrutture IT resilienti, in linea con requisiti di sicurezza.

• Gestione della sicurezza fisica di sedi e infrastrutture critiche.
• Implementazione di sistemi di controllo accessi (fisici e logici) e videosorveglianza.
• Verifica periodica e gestione degli accessi in linea con il principio del minimo privilegio.
• Coordinamento di piani di continuità operativa (BCO), disaster recovery e gestione emergenze.
• Identificazione di servizi critici e definizione di strategie per la resilienza operativa.
• Collaborazione con forze dell'ordine, autorità pubbliche e organismi di controllo.
• Monitoraggio, in sinergia con il Risk Management, degli indicatori di rischio e delle minacce.

• Guida del sistema di Data Governance aziendale: strategia, struttura, ruoli e responsabilità.
• Presidio continuo della qualità dei dati (Data Quality), con definizione e aggiornamento dei controlli.
• Sviluppo, presidio e rendicontazione dello stato del sistema di Data Governance.
• Identificazione delle esigenze aziendali in tema di dati, prioritizzazione e implementazione.
• Coordinamento con la funzione IT per lo sviluppo di strumenti analitici e di governance dei dati.
• Supervisione della normativa interna in coerenza con l'evoluzione esterna.
• Promozione della cultura del dato attraverso iniziative interne e relazioni esterne.
• Advisory strategico e operativo alle strutture aziendali per la valorizzazione del patrimonio informativo.
• Congiuntamente alla funzione HR definizione di percorsi formativi per potenziare le competenze in ambito data governance.

• Conoscenza approfondita delle principali normative, standard e best practice di sicurezza, inclusi NIST, GDPR, ISO 27001, DORA, NIS2, EBA Guidelines, D.Lgs. 231/01.
• Padronanza delle metodologie di valutazione dei rischi ICT, Cyber e Informatici, per valutare l'impatto di eventuali interruzioni sui servizi.
• Competenza nella definizione di strategie di gestione delle crisi, disaster recovery e procedure operative dettagliate.
• Conoscenza e monitoraggio delle minacce informatiche, e tecniche di mitigazione e gestione del rischio ICT.
• Capacità di sviluppo e implementazione di test di sicurezza, tra cui Penetration Testing e Vulnerability Assessment.
• Conoscenze specialistiche di Information Governance e comprovata esperienza nella Data Governance aziendale.

• Leadership consolidata in ambienti regolamentati, con capacità di indirizzo strategico e decisionale.
• Capacità comunicative e relazionali, con attitudine al confronto sia tecnico sia istituzionale.
• Capacità di pianificazione e controllo del budget in coerenza con gli obiettivi aziendali.
• Sintesi e rappresentazione di fenomeni complessi a supporto del top management.
• Project Management, con attenzione agli economics e alla sostenibilità operativa.
• Problem solving, orientamento all'innovazione e valorizzazione del dato come asset strategico.
• Integrità e accountability in linea con il ruolo pubblico e fiduciario.
• Negoziazione e mediazione per la gestione di team interdisciplinari e relazioni con stakeholder ad alto livello (CdA, revisori, autorità di vigilanza).
• Proattività nel favorire lo sviluppo professionale e il potenziamento delle competenze interne.
• L'appartenenza alla Lista delle Categorie Protette.

Sede di lavoro : Roma centro

Il presente annuncio è rivolto a candidati ambosessi (L.903/77 - D.Lgs. n.198/2006). La ricerca è rivolta a professionisti con una solida esperienza nel supporto direzionale, desiderosi di operare in un contesto stimolante e in continua evoluzione. La capacità di anticipare le esigenze del management e di gestire con efficacia situazioni complesse è fondamentale per il successo in questo ruolo.

Ci impegniamo a creare un ambiente sicuro e inclusivo, basato sul rispetto reciproco e la valorizzazione delle diversità, offrendo pari opportunità di lavoro a tutte le candidate e i candidati qualificati. In generale, le candidate e i candidati il cui profilo sia in linea con la posizione aperta, saranno contattati dalla Società che segue la Selezione e riceveranno un feedback tempestivo.

Join to apply for the Chief Information Security Officer role at Haier Europe

The challenge
An exciting opportunity has arisen to contribute to Haier Europe. The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals. We are looking for an individual who demonstrates the core values of the Haier’s attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking. A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.

Job Posting Title
Chief Information Security Officer
The challenge
An exciting opportunity has arisen to contribute to Haier Europe. The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals. We are looking for an individual who demonstrates the core values of the Haier’s attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking. A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.

What You Will Do
The CISO will be responsible for implementing and running the enterprise information security program. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives

A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. He or she will proactively work with business units and ecosystem partners to implement practices that meet agreed-on policies and standards for information security. The CISO should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the board of directors and other senior stakeholders

If you’re a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply. In addition to being a key leadership role, we offer a chance to become a key player in protecting our company’s future.

Objectives of this role

• Develops an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensures senior stakeholder buy-in and mandate
• Overseeing the protection of company data, intellectual property, and technology assets from cyber threats.
• Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements.
• Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.
• Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines
• Manages and contains information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputation
• Monitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action
• Collaborating with cross-functional teams to integrate security measures into the company’s IT and business operations.
• Manages the budget for the information security function, monitoring and reporting discrepancies

Your tasks

• Develop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations.
• Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure.
• Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.
• Manage the security architecture, tools, and technologies deployed across the organisation’s IT infrastructure.
• Works with the vendor management office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations
• Collaborates and liaises with the data privacy officer to ensure that data privacy requirements are included where applicable
• Coordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.
• Monitor security metrics and report on the organisation’s security posture to executive leadership.
• Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation.
• Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.

What You Need To Succeed

• Bachelor’s degree in Information Security, Computer Science, or a related field.
• 10+ years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role.
• Extensive knowledge of information security principles, cybersecurity frameworks (e.g., NIST, ISO 27001), and risk management practices.
• Working knowledge of security auditing, vulnerability assessments, and risk mitigation.
• Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols.
• Solid knowledge of data privacy regulations and compliance requirements.
• Ability to develop and implement complex security strategies.
• Project management skills: financial/budget management, scheduling and resource management
• Strong leadership and communication skills, with the ability to influence decision-making at the executive level.
• Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities.
• Ability to manage a team of security professionals and work cross-functionally with IT, legal, and compliance teams.

Preferred Skills And Qualifications

• Master’s degree in Cybersecurity, IT, or related fields.
• Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).
• Experience with cloud security and securing cloud infrastructure.
• Familiarity with incident management and disaster recovery planning.
• Knowledge of ethical hacking and penetration testing techniques.
• Background in regulatory compliance and data privacy laws in the industry.
• Hands-on experience with SIEM tools, firewalls, and intrusion detection systems.
• Expertise in secure software development and DevSecOps practices.
• Understanding of artificial intelligence and machine learning applications in security.
• Multilingual proficiency for international security collaboration.

Haier Europe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.

Descrizione del posto vacante

Per un nostro prestigioso cliente operante nel settore manifatturiero, siamo alla ricerca di un CISO (Chief Information Security Officer) da inserire presso la sede di Parma.

Responsabilità principali

• Sviluppare e mantenere il framework di sicurezza informatica in linea con le normative italiane ed europee (es. GDPR, NIS2).
• Valutare i rischi IT e definire piani di mitigazione per la sicurezza logica, fisica e operativa.
• Coordinare le attività di incident response e gestione delle vulnerabilità.
• Monitorare e gestire audit di sicurezza interni ed esterni.
• Gestire relazioni con terze parti, vendor e autorità di vigilanza su temi di cybersecurity.
• Redigere e aggiornare policy, procedure e piani di continuità operativa.

Requisiti richiesti

• Laurea in Informatica, Ingegneria, Sicurezza delle Informazioni o campi affini.
• Almeno 5 anni di esperienza in ruoli di responsabilità nella cybersecurity.
• Conoscenza approfondita di normative come GDPR, ISO/IEC 27001, NIS, DORA.
• Esperienza con strumenti di sicurezza (SIEM, DLP, EDR, IAM, ecc.).
• Capacità di leadership, comunicazione e gestione di team.
• Ottima conoscenza della lingua italiana e buona conoscenza dell’inglese tecnico.

Job Posting Title

The challenge

What you will do

The CISO will be responsible for implementing and running the enterprise information security program. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives

A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. He or she will proactively work with business units and ecosystem partners to implement practices that meet agreed-on policies and standards for information security. The CISO should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the board of directors and other senior stakeholders

If you’re a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply. In addition to being a key leadership role, we offer a chance to become a key player in protecting our company’s future.

Objectives of this role

• Develops an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensures senior stakeholder buy-in and mandate

• Overseeing the protection of company data, intellectual property, and technology assets from cyber threats.

• Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements.

• Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.

• Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines

• Manages and contains information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputation

• Monitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action

• Collaborating with cross-functional teams to integrate security measures into the company’s IT and business operations.

• Manages the budget for the information security function, monitoring and reporting discrepancies

Your tasks

• Develop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations.

• Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure.

• Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.

• Manage the security architecture, tools, and technologies deployed across the organisation’s IT infrastructure.

• Works with the vendor management office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations

• Collaborates and liaises with the data privacy officer to ensure that data privacy requirements are included where applicable

• Coordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.

• Monitor security metrics and report on the organisation’s security posture to executive leadership.

• Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation.

• Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.

What you need to succeed

Required skills and qualifications

• Bachelor’s degree in Information Security, Computer Science, or a related field.

• 10+ years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role.

• Extensive knowledge of information security principles, cybersecurity frameworks (e.g., NIST, ISO 27001), and risk management practices.

• Working knowledge of security auditing, vulnerability assessments, and risk mitigation.

• Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols.

• Solid knowledge of data privacy regulations and compliance requirements.

• Ability to develop and implement complex security strategies.

• Project management skills: financial/budget management, scheduling and resource management

• Strong leadership and communication skills, with the ability to influence decision-making at the executive level.

• Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities.

• Ability to manage a team of security professionals and work cross-functionally with IT, legal, and compliance teams.

Preferred skills and qualifications

• Master’s degree in Cybersecurity, IT, or related fields.

• Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).

• Experience with cloud security and securing cloud infrastructure.

• Familiarity with incident management and disaster recovery planning.

• Knowledge of ethical hacking and penetration testing techniques.

• Background in regulatory compliance and data privacy laws in the industry.

• Hands-on experience with SIEM tools, firewalls, and intrusion detection systems.

• Expertise in secure software development and DevSecOps practices.

• Understanding of artificial intelligence and machine learning applications in security.

• Multilingual proficiency for international security collaboration.

#LI-GG1

Haier Europe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.

Join to apply for the Chief Information Security Officer role at Haier Europe

The challenge
An exciting opportunity has arisen to contribute to Haier Europe. The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals. We are looking for an individual who demonstrates the core values of the Haier’s attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking. A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.

Job Posting Title
Chief Information Security Officer
The challenge
An exciting opportunity has arisen to contribute to Haier Europe. The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals. We are looking for an individual who demonstrates the core values of the Haier’s attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking. A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.

What You Will Do
The CISO will be responsible for implementing and running the enterprise information security program. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives

A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. He or she will proactively work with business units and ecosystem partners to implement practices that meet agreed-on policies and standards for information security. The CISO should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the board of directors and other senior stakeholders

If you’re a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply. In addition to being a key leadership role, we offer a chance to become a key player in protecting our company’s future.

Objectives of this role

• Develops an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensures senior stakeholder buy-in and mandate
• Overseeing the protection of company data, intellectual property, and technology assets from cyber threats.
• Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements.
• Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.
• Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines
• Manages and contains information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputation
• Monitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action
• Collaborating with cross-functional teams to integrate security measures into the company’s IT and business operations.
• Manages the budget for the information security function, monitoring and reporting discrepancies

Your tasks

• Develop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations.
• Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure.
• Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.
• Manage the security architecture, tools, and technologies deployed across the organisation’s IT infrastructure.
• Works with the vendor management office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations
• Collaborates and liaises with the data privacy officer to ensure that data privacy requirements are included where applicable
• Coordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.
• Monitor security metrics and report on the organisation’s security posture to executive leadership.
• Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation.
• Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.

What You Need To Succeed

• Bachelor’s degree in Information Security, Computer Science, or a related field.
• 10+ years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role.
• Extensive knowledge of information security principles, cybersecurity frameworks (e.g., NIST, ISO 27001), and risk management practices.
• Working knowledge of security auditing, vulnerability assessments, and risk mitigation.
• Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols.
• Solid knowledge of data privacy regulations and compliance requirements.
• Ability to develop and implement complex security strategies.
• Project management skills: financial/budget management, scheduling and resource management
• Strong leadership and communication skills, with the ability to influence decision-making at the executive level.
• Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities.
• Ability to manage a team of security professionals and work cross-functionally with IT, legal, and compliance teams.

Preferred Skills And Qualifications

• Master’s degree in Cybersecurity, IT, or related fields.
• Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).
• Experience with cloud security and securing cloud infrastructure.
• Familiarity with incident management and disaster recovery planning.
• Knowledge of ethical hacking and penetration testing techniques.
• Background in regulatory compliance and data privacy laws in the industry.
• Hands-on experience with SIEM tools, firewalls, and intrusion detection systems.
• Expertise in secure software development and DevSecOps practices.
• Understanding of artificial intelligence and machine learning applications in security.
• Multilingual proficiency for international security collaboration.

Haier Europe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.

Descrizione del posto vacante

Per un nostro prestigioso cliente operante nel settore manifatturiero, siamo alla ricerca di un CISO (Chief Information Security Officer) da inserire presso la sede di Parma.

Responsabilità principali

• Sviluppare e mantenere il framework di sicurezza informatica in linea con le normative italiane ed europee (es. GDPR, NIS2).
• Valutare i rischi IT e definire piani di mitigazione per la sicurezza logica, fisica e operativa.
• Coordinare le attività di incident response e gestione delle vulnerabilità.
• Monitorare e gestire audit di sicurezza interni ed esterni.
• Gestire relazioni con terze parti, vendor e autorità di vigilanza su temi di cybersecurity.
• Redigere e aggiornare policy, procedure e piani di continuità operativa.

Requisiti richiesti

• Laurea in Informatica, Ingegneria, Sicurezza delle Informazioni o campi affini.
• Almeno 5 anni di esperienza in ruoli di responsabilità nella cybersecurity.
• Conoscenza approfondita di normative come GDPR, ISO/IEC 27001, NIS, DORA.
• Esperienza con strumenti di sicurezza (SIEM, DLP, EDR, IAM, ecc.).
• Capacità di leadership, comunicazione e gestione di team.
• Ottima conoscenza della lingua italiana e buona conoscenza dell’inglese tecnico.

Job Posting Title

The challenge

What you will do

The CISO will be responsible for implementing and running the enterprise information security program. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives

A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. He or she will proactively work with business units and ecosystem partners to implement practices that meet agreed-on policies and standards for information security. The CISO should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the board of directors and other senior stakeholders

If you’re a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply. In addition to being a key leadership role, we offer a chance to become a key player in protecting our company’s future.

Objectives of this role

• Develops an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensures senior stakeholder buy-in and mandate

• Overseeing the protection of company data, intellectual property, and technology assets from cyber threats.

• Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements.

• Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.

• Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines

• Manages and contains information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputation

• Monitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action

• Collaborating with cross-functional teams to integrate security measures into the company’s IT and business operations.

• Manages the budget for the information security function, monitoring and reporting discrepancies

Your tasks

• Develop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations.

• Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure.

• Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.

• Manage the security architecture, tools, and technologies deployed across the organisation’s IT infrastructure.

• Works with the vendor management office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations

• Collaborates and liaises with the data privacy officer to ensure that data privacy requirements are included where applicable

• Coordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.

• Monitor security metrics and report on the organisation’s security posture to executive leadership.

• Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation.

• Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.

What you need to succeed

Required skills and qualifications

• Bachelor’s degree in Information Security, Computer Science, or a related field.

• 10+ years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role.

• Extensive knowledge of information security principles, cybersecurity frameworks (e.g., NIST, ISO 27001), and risk management practices.

• Working knowledge of security auditing, vulnerability assessments, and risk mitigation.

• Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols.

• Solid knowledge of data privacy regulations and compliance requirements.

• Ability to develop and implement complex security strategies.

• Project management skills: financial/budget management, scheduling and resource management

• Strong leadership and communication skills, with the ability to influence decision-making at the executive level.

• Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities.

• Ability to manage a team of security professionals and work cross-functionally with IT, legal, and compliance teams.

Preferred skills and qualifications

• Master’s degree in Cybersecurity, IT, or related fields.

• Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).

• Experience with cloud security and securing cloud infrastructure.

• Familiarity with incident management and disaster recovery planning.

• Knowledge of ethical hacking and penetration testing techniques.

• Background in regulatory compliance and data privacy laws in the industry.

• Hands-on experience with SIEM tools, firewalls, and intrusion detection systems.

• Expertise in secure software development and DevSecOps practices.

• Understanding of artificial intelligence and machine learning applications in security.

• Multilingual proficiency for international security collaboration.

#LI-GG1

Haier Europe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.

Join to apply for the Chief Information Security Officer role at Haier Europe

The challenge
An exciting opportunity has arisen to contribute to Haier Europe. The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals. We are looking for an individual who demonstrates the core values of the Haier’s attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking. A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.

Job Posting Title
Chief Information Security Officer
The challenge
An exciting opportunity has arisen to contribute to Haier Europe. The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals. We are looking for an individual who demonstrates the core values of the Haier’s attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking. A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem.

What You Will Do
The CISO will be responsible for implementing and running the enterprise information security program. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives

A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. He or she will proactively work with business units and ecosystem partners to implement practices that meet agreed-on policies and standards for information security. The CISO should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the board of directors and other senior stakeholders

If you’re a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply. In addition to being a key leadership role, we offer a chance to become a key player in protecting our company’s future.

Objectives of this role

• Develops an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensures senior stakeholder buy-in and mandate
• Overseeing the protection of company data, intellectual property, and technology assets from cyber threats.
• Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements.
• Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.
• Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines
• Manages and contains information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputation
• Monitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action
• Collaborating with cross-functional teams to integrate security measures into the company’s IT and business operations.
• Manages the budget for the information security function, monitoring and reporting discrepancies

Your tasks

• Develop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations.
• Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure.
• Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.
• Manage the security architecture, tools, and technologies deployed across the organisation’s IT infrastructure.
• Works with the vendor management office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations
• Collaborates and liaises with the data privacy officer to ensure that data privacy requirements are included where applicable
• Coordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.
• Monitor security metrics and report on the organisation’s security posture to executive leadership.
• Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation.
• Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.

What You Need To Succeed

• Bachelor’s degree in Information Security, Computer Science, or a related field.
• 10+ years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role.
• Extensive knowledge of information security principles, cybersecurity frameworks (e.g., NIST, ISO 27001), and risk management practices.
• Working knowledge of security auditing, vulnerability assessments, and risk mitigation.
• Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols.
• Solid knowledge of data privacy regulations and compliance requirements.
• Ability to develop and implement complex security strategies.
• Project management skills: financial/budget management, scheduling and resource management
• Strong leadership and communication skills, with the ability to influence decision-making at the executive level.
• Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities.
• Ability to manage a team of security professionals and work cross-functionally with IT, legal, and compliance teams.

Preferred Skills And Qualifications

• Master’s degree in Cybersecurity, IT, or related fields.
• Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).
• Experience with cloud security and securing cloud infrastructure.
• Familiarity with incident management and disaster recovery planning.
• Knowledge of ethical hacking and penetration testing techniques.
• Background in regulatory compliance and data privacy laws in the industry.
• Hands-on experience with SIEM tools, firewalls, and intrusion detection systems.
• Expertise in secure software development and DevSecOps practices.
• Understanding of artificial intelligence and machine learning applications in security.
• Multilingual proficiency for international security collaboration.

Haier Europe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.