867 Posti di lavoro per Vulnerability Assessment in Italia

LHH sta affiancando un’importante realtà della zona di Vicenza, operantenel settore dell’utilities e specializzata nel trattamento, trasporto edistribuzione del gas naturale, nella ricerca di un/a Information SecurityAnalyst.

La risorsa si occuperà di tutti i processi di mantenimento dellacertificazione ISO27001 e NIS2, oltre a collaborare con il Responsabile Privacyper i temi inerenti al GDPR. Parteciperà all’identificazione dei requisiti disicurezza dei sistemi ICT o alla realizzazione di progetti in tale ambitotecnico nonché a tutta la gestione operativa del team Sicurezza Informazioniinterno alla Funzione.

In particolare, le sue attività saranno:

• Gestire ilmantenimento della certificazione ISO 27001, occupandosi dell’analisi deirischi, della definizione delle relative misure di mitigazione e del riesameannuale con la direzione;
• Monitorare eformare gli utenti sui temi della sicurezza informatica, anche attraversocampagne di phishing;
• Condurre auditinterni e predisporre tutta la documentazione necessaria;
• Aggiornare lepolicy e le procedure interne di sicurezza;
• Fornire supportonelle verifiche di sicurezza verso i fornitori e collaborare alla redazione diNDA e documentazione tecnica;
• Verificare periodicamentela compliance alle normative NIS2 e GDPR;
• Completare lechecklist di qualifica lato Sicurezza delle Informazioni verso clienti epartner;
• Eseguire attivitàtecniche di monitoraggio e supporto, anche tramite strumenti di controllo eanalisi, per prevenire incidenti e identificare potenziali vulnerabilità;
• Proporre soluzionimigliorative in ambito sicurezza, in collaborazione con il team ICT.
• Laurea triennale e/o magistrale;
• Preferibile certificazione Auditor 27001;
• Conoscenza della italianae inglese (parlata e scritta);
• Preferibile conoscenza deglistandard/legislazioni e normative di sicurezza NIS2, ISO27001, Normativavigente GDPR

Sede: Vicenza

Si richiede disponibilità a trasferte (circa una settimana al mese).

Ottieni un lavoro migliore
più velocemente

Step into a world of endless possibilities, together let’s leave something for the future!

At IIT, we are committed to advancing human-centered Science and Technology to address the most urgent societal challenges of our era. We foster excellence in both fundamental and applied research, spanning fields such as neuroscience and cognition, humanoid technologies and robotics, artificial intelligence, nanotechnology, and material sciences, offering a truly interdisciplinary scientific experience. Our approach integrates cutting-edge tools and technology, empowering researchers to push the limits of knowledge and innovation. With us, your curiosity will know no bounds.

We are dedicated to providing equal employment opportunities and fostering diversity in all its forms, creating an inclusive environment. We value the unique experiences, knowledge, backgrounds, cultures, and perspectives of our people. By embracing diversity, we believe science can achieve its fullest potential.

THE ROLE

We’re looking for motivated professionals or recent graduates with a strong academic background in cybersecurity, eager to grow in either technical (SOC) or governance (GRC) areas — or both.

You will join a small but strategic team within IIT’s ICT Directorate, contributing to the protection of sensitive infrastructures and supporting national and international compliance efforts.

We’re looking for people who think, who care, and who take initiative.

Even if you are a recent graduate or an early-career professional, or if you have never held a formal security job, you could still be the right person for us if you have done something concrete, such as studying hard, building projects, breaking stuff to learn, contributing to a student CTF team, or simply going deeper than most.

YOU MIGHT BE A GOOD FIT IF :

• You hold (or are completing) a Master’s degree or equivalent in cybersecurity, computer science, engineering, or related fields;
• You’re interested in SOC, incident detection and response, or SIEM systems;
• Or you’re curious about cybersecurity policy, compliance, risk management, and want to work on real frameworks like ISO 27001, NIS2, GDPR;
• You like reasoning about complex systems, security trade-offs, and how to protect organizations in the real world;
• You’ve dabbled in red teaming, OSINT, or CTFs — even better!
• Task-oriented approach characterized by proactivity and flexibility.
• Possess Analytical Reasoning skills and a growth mindset.

We work in a high-trust, high-responsibility team, tackling complex problems in cybersecurity, compliance, and research infrastructure.

We need people who enjoy uncertainty, who grow by experimenting, and who speak up when they think something could be better.

COMPENSATION PACKAGE

• A yearly gross salary ranging approximately between 40,000 and 50,000 euros, depending on seniority and experience, plus a bonus option in a range between 15% and 20% of the real salary.
• Private health care coverage (depending on your role and contract).
• Wide range of staff discounts.
• Flexible work arrangements: up to 10 days per month of remote work (on request) to support work-life balance.
• Candidates from abroad or Italian citizens who permanently work abroad and meet specific requirements may be entitled to a deduction from taxable income of up to 90% for 6 to 13 years.

HOW TO APPLY

Please submit your application using the online form, attaching a detailed CV and a motivation letter. Your letter should describe your experience in at least one of the following fields:

• Projects where you have used SIEM or log analysis tools.
• Experience with cybersecurity standards such as ISO 27001 or NIS2, or experience contributing to the implementation of a security policy.

Fill in the form below and send your application.

I have read and accept the privacy policy

I have read and I accept the terms and conditions

J-18808-Ljbffr

Hai mai sentito parlare delle Gaming Technologies e dell’entusiasmante mondo che c’è dietro? Vorresti conoscere uno dei più grandi player internazionali, che ha scritto pagine nella storia dell’innovazione nel campo del gioco? Sei nel posto giusto!

NOVOMATIC da oltre 40 anni, in 100 paesi in tutto il mondo, è leader indiscusso del mercato dei servizi e delle tecnologie in ambito Gaming, fedeli al motto Winning Technology. In Italia, siamo il best provider VLT, 1° retailer e fintech company.

Come ci siamo riusciti? Ovviamente, grazie a tutti i professionisti che popolano le nostre tante sedi e filiali, tutti accomunati dalla nostra comune missione : non inseguire il cambiamento, ma essere i driver del futuro del Gaming! Sempre e comunque in un’ottica responsabile. A proposito, sai che siamo i primi in Italia ad essere certificati G4 per il Gioco Responsabile nel mondo retail?

• Ed ora è il tuo momento
• sei un / a Information Security Specialist e non vedi l’ora di sapere di più della nostra realtà? Non ti resta che approfondire.

Se inizieremo questo percorso insieme, sarai parte del nostro team di Information Security, in un contesto estremamente tech oriented. Potrai farlo in modalità ibrida e flessibile, ma sappi che non mancheranno le occasioni di incontro in ufficio e offsite, per condividere momenti insieme e divertirci.

• Ma vediamo più da vicino le attività in cui sarai coinvolto

Ti occuperai di implementare le best practice di Security collaborando con gli altri team per identificare potenziali rischi, sviluppare strategie di mitigazione e mantenere una solida strategia di sicurezza per la nostra organizzazione

Avrai la responsabilità di identificare e valutare potenziali rischi e vulnerabilità di sicurezza attraverso assesment regolari di sistemi, reti e processi

Contribuirai all’elaborazione e alla circolazione della documentazione, garantendo la diffusione di una cultura aziendale volta alla Security Awareness

Gestirai le attività di Security Incident Response Auditing and Compliance, supportando i team di sicurezza IT nello sviluppo, test e monitoraggio dei piani di risposta per affrontare violazioni della sicurezza e incidenti informatici

Effettuerai analisi per affinare e migliorare le strategie di risposta agli incidenti oltre che per mitigare future violazioni

Collaborerai con consulenti e revisori interni ed esterni per fornire evidenze di Compliance

• Ora un occhio alle caratteristiche che ricerchiamo

3-5 anni di esperienza in ruoli simili maturata in contesti innovativi

Conoscenza dei protocolli e delle tecnologie di rete

Competenza con strumenti e tecnologie di sicurezza, comprese soluzioni di gestione dell'identità e degli accessi, SIEM, soluzioni di sicurezza cloud, di protezione della rete e degli endpoint

Conoscenza approfondita dei frameworks di sicurezza, degli standard e delle best practice (NIST, ISO 27001, e simili)

Forti capacità di problem solving, attenzione ai dettagli e mentalità analitica

Preferibile conoscenza degli strumenti di monitoraggio (prodotti Quest)

Ottima comprensione dell’inglese - testi e documentazione técnica saranno in lingua

• Ti ritrovi nei nostri valori

Ti rivedi in tutto ciò? Allora potresti essere la persona che stiamo cercando!

È il momento di navigare sulla nostra pagina Vita Aziendale di Linkedin, per scoprire ancora qualcosa di noi. Dopo sarà impossibile non volerci conoscere! Noi non vediamo l’ora di incontrarti!

Security Specialist • Provincia di Rimini, Italia

Step into a world of endless possibilities, together let’s leave something for the future!

At IIT, we are committed to advancing human-centered Science and Technology to address the most urgent societal challenges of our era. We foster excellence in both fundamental and applied research, spanning fields such as neuroscience and cognition, humanoid technologies and robotics, artificial intelligence, nanotechnology, and material sciences, offering a truly interdisciplinary scientific experience. Our approach integrates cutting-edge tools and technology, empowering researchers to push the limits of knowledge and innovation. With us, your curiosity will know no bounds.

We are dedicated to providing equal employment opportunities and fostering diversity in all its forms, creating an inclusive environment. We value the unique experiences, knowledge, backgrounds, cultures, and perspectives of our people. By embracing diversity, we believe science can achieve its fullest potential.

We’re looking for motivated professionals or recent graduates with a strong academic background in cybersecurity, eager to grow in either technical (SOC) or governance (GRC) areas — or both.

You will join a small but strategic team within IIT’s ICT Directorate, contributing to the protection of sensitive infrastructures and supporting national and international compliance efforts.

We’re looking for people who think, who care, and who take initiative .

Even if you are a recent graduate or an early-career professional, or if you have never held a formal security job, you could still be the right person for us if you have done something concrete, such as studying hard, building projects, breaking stuff to learn, contributing to a student CTF team, or simply going deeper than most.

• You hold (or are completing) a Master’s degree or equivalent in cybersecurity, computer science, engineering, or related fields;
• You’re interested in SOC , incident detection and response, or SIEM systems;
• Or you’re curious about cybersecurity policy, compliance, risk management , and want to work on real frameworks like ISO 27001, NIS2, GDPR;
• You like reasoning about complex systems, security trade-offs, and how to protect organizations in the real world;
• You’ve dabbled in red teaming, OSINT, or CTFs — even better!
• Task-oriented approach characterised by proactivity and flexibility.
• Possess Analytical Reasoning skills and a growth mindset

We work in a high-trust, high-responsibility team , tackling complex problems in cybersecurity, compliance, and research infrastructure.
We need people who enjoy uncertainty, who grow by experimenting, and who speak up when they think something could be better.

• A yearly gross salary ranging approximately between 40,000 and 50,000 euros, depending on seniority and experience, plus a bonus option in a range between 15% and 20% of the real salary
• Private health care coverage (depending on your role and contract)
• Wide range of staff discounts
• Flexible work arrangements: up to 10 days per month of remote work (on request) to support work-life balance.
• Candidates from abroad or Italian citizens who permanently work abroad and meet specific requirements, may be entitled to a deduction from taxable income of up to 90% from 6 to 13 years.

Please submit your application using the online form, attaching a detailed CV and a motivation letter. Your letter should describe your experience in at least one of the following fields :

• Projects where you have used SIEM or log analysis tools.
• Experience with cybersecurity standards such as ISO 27001 or NIS2, or experience contributing to the implementation of a security policy.

Fill in the form below and send your application.

I have read and accept the privacy policy

I have read and I accept the terms and conditions

Focusing on cybersecurity and protection of digital assets. Safeguarding the Confidentiality, Integrity, and Availability of Data and Systems that empower its clients to innovate and generate growth for a global, sustainable digital world. Together with its Partners, the Company provides vendor-agnostic consulting services that help Enterprises achieve group-wide aligned, security-oriented solutions and culture.

Responsibilities :

• Provide consulting services within the Information Security sphere to a variety of existing and prospective clients.
• Have awareness of Hybrid and Multi-Cloud architecture models across AWS, Azure, GCP.
• Understand Zero Trust Framework fundamentals.
• Proactively identify opportunities to modernize and improve clients' security posture and offerings across complex challenges.

Benefits :

• Extensive training and learning opportunities.
• Opportunities to participate in Hackathons, Code Challenges, and Lab Camps.
• Opportunity to work on projects with some of the world's leading brands.

The company is building an inclusive and flexible working culture / environment. Even if you don’t have all the required skills but are interested in learning more, please apply.

Job Details :

• Type of employment : Full-time, Permanent
• Salary : Starting from €30,000 per year
• Benefits : Remote work
• Working hours : Monday to Friday
• Language requirements : Italian not required; English preferred

Qualifications :

• Cybersecurity experience : 2 years (mandatory)
• Language skills : Italian (mandatory), English (preferred)

Note: The job posting does not indicate that it is expired; it appears active.

Join to apply for the Information Security Specialist role at DNV

3 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

We are the independent expert in assurance and risk management. Driven by our purpose, to safeguard life, property, and the environment, we empower our customers and their stakeholders with facts and reliable insights so that critical decisions can be made with confidence.

As a trusted voice for many of the world’s most successful organizations, we use our knowledge to advance safety and performance, set industry benchmarks, and inspire and invent solutions to tackle global transformations.

As an Information Security Specialist in DNV Energy Systems, you will become part of a dedicated and collaborative team striving for operational excellence and continuous improvement in information security. The role reports directly to the Head of Section Information Security and supports the implementation of robust security practices across our business globally. Our team operates with a strong sense of trust, shared responsibility, and mutual support. We expect each team member to apply their expertise while remaining flexible and ready to support colleagues when circumstances require it. This collaborative approach helps us maintain continuity, resilience, and focus in a dynamic environment.

In this role, you will contribute to strengthening both the information security maturity and culture within DNV Energy Systems by working closely with internal stakeholders, colleagues across other DNV Business Areas, and, when relevant, external partners. Your objective is not only to identify risks and report on compliance but to actively contribute to resolving issues - by either offering direct support or by facilitating connections to ensure effective and timely outcomes. A customer-oriented mindset and strong interpersonal skills are therefore essential.

Your work will span advisory and operational tasks, including security reviews, audits, performance monitoring, and project delivery. You will also present results and insights to both leadership and peers. Most of the work will be conducted virtually, with regular in-person attendance at your local office expected. Flexibility is required to collaborate across time zones, with some international travel required, although limited in line with DNV’s sustainability commitments.

The successful candidate will be inventive, comfortable working in a quick-turnaround, deadline-driven environment, and adept at managing multiple projects and assignments simultaneously. Responsibilities include:

• Supporting the implementation of global and regional systems and improvement plans and contributing ideas to improve information security performance.
• Providing competent and professional information security advice on operational risks to all levels.
• Developing the information security capabilities of the organisation, improving risk awareness and providing specialist support to line management.
• Information security performance monitoring and reporting, including supporting external audits and undertaking audits as part of our internal audit programme.

We offer flexible working arrangements and a supportive culture that values work-life balance. DNV fosters an inclusive, respectful, and collaborative environment. Employees are encouraged to join professional and social networks that promote engagement across functions and geographies.

We believe in lifelong learning and provide extensive opportunities for professional development. You will be encouraged to broaden your competence and grow in line with both personal ambitions and the evolving needs of the team.

At DNV, you will be part of a purpose-driven organization committed to safeguarding life, property, and the environment. Our values - We Care, We Share, We Dare - guide how we work with one another and with our customers.

By joining DNV you become part of a world-leading company whose purpose is to safeguard life, property, and the environment. You will also be part of a culture where our values “we care, we share, we dare” characterize how we act towards each other, and our customers and perform our work.

We are seeking a professional with a T-shaped competence profile—someone who combines deep technical expertise with a broad understanding of organizational and operational contexts. A background in software development or systems engineering is highly valued. Beyond competence, we expect all team members to embrace a mindset of lifelong learning, with a willingness to adapt, contribute, and grow continuously in alignment with team and business priorities.

• Master’s degree in a relevant discipline.
• Recognized professional information security certification (e.g., CISSP, CISM).
• Minimum 4–5 years of experience in an information security role within a complex, operational business environment.
• Proven ability to contribute to and manage projects across multiple stakeholders and business units.
• Strong communication skills, with the ability to clearly convey complex issues to diverse audiences, including senior leadership.
• Demonstrated ability to work independently while building trust-based relationships across departments and regions.
• ISO 9001 or ISO 27001 auditor qualification is an advantage.

If you are motivated to contribute to the secure operation of a global organization, value collaboration, and are committed to both personal and collective growth, we encourage you to apply.

We consider this a global role, and our new team member can work from anywhere; however, this person should be based in a region with a DNV office, as our hybrid model involves 3 days a week in the office.

• Seniority level: Not Applicable
• Employment type: Full-time
• Job function: Information Technology
• Industries: Public Safety

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

4 days ago Be among the first 25 applicants

About Us

We are the independent expert in assurance and risk management. Driven by our purpose, to safeguard life, property, and the environment, we empower our customers and their stakeholders with facts and reliable insights so that critical decisions can be made with confidence.

About Us

We are the independent expert in assurance and risk management. Driven by our purpose, to safeguard life, property, and the environment, we empower our customers and their stakeholders with facts and reliable insights so that critical decisions can be made with confidence.

As a trusted voice for many of the world’s most successful organizations, we use our knowledge to advance safety and performance, set industry benchmarks, and inspire and invent solutions to tackle global transformations.

About The Role

As an Information Security Specialist in DNV Energy Systems, you will become part of a dedicated and collaborative team striving for operational excellence and continuous improvement in information security. The role reports directly to the Head of Section Information Security and supports the implementation of robust security practices across our business globally. Our team operates with a strong sense of trust, shared responsibility, and mutual support. We expect each team member to apply their expertise while remaining flexible and ready to support colleagues when circumstances require it. This collaborative approach helps us maintain continuity, resilience, and focus in a dynamic environment.

In this role, you will contribute to strengthening both the information security maturity and culture within DNV Energy Systems by working closely with internal stakeholders, colleagues across other DNV Business Areas, and, when relevant, external partners. Your objective is not only to identify risks and report on compliance but to actively contribute to resolving issues - by either offering direct support or by facilitating connections to ensure effective and timely outcomes. A customer-oriented mindset and strong interpersonal skills are therefore essential.

Your work will span advisory and operational tasks, including security reviews, audits, performance monitoring, and project delivery. You will also present results and insights to both leadership and peers. Most of the work will be conducted virtually, with regular in-person attendance at your local office expected. Flexibility is required to collaborate across time zones, with some international travel required, although limited in line with DNV’s sustainability commitments.

Responsibilities

The successful candidate will be inventive, comfortable working in a quick-turnaround, deadline-driven environment, and adept at managing multiple projects and assignments simultaneously. Responsibilities of the Information Security Specialist will include:

• Supporting the implementation of global and regional systems and improvement plans and contributing ideas to improve information security performance.
• Providing competent and professional information security advice on operational risks to all levels.
• Developing the information security capabilities of the organisation, improving risk awareness and providing specialist support to line management.
• Information security performance monitoring and reporting, including supporting external audits and undertaking audits as part of our internal audit programme.
  
  

4 days ago Be among the first 25 applicants

About Us

We are the independent expert in assurance and risk management. Driven by our purpose, to safeguard life, property, and the environment, we empower our customers and their stakeholders with facts and reliable insights so that critical decisions can be made with confidence.

About Us

We are the independent expert in assurance and risk management. Driven by our purpose, to safeguard life, property, and the environment, we empower our customers and their stakeholders with facts and reliable insights so that critical decisions can be made with confidence.

As a trusted voice for many of the world’s most successful organizations, we use our knowledge to advance safety and performance, set industry benchmarks, and inspire and invent solutions to tackle global transformations.

About The Role

As an Information Security Specialist in DNV Energy Systems, you will become part of a dedicated and collaborative team striving for operational excellence and continuous improvement in information security. The role reports directly to the Head of Section Information Security and supports the implementation of robust security practices across our business globally. Our team operates with a strong sense of trust, shared responsibility, and mutual support. We expect each team member to apply their expertise while remaining flexible and ready to support colleagues when circumstances require it. This collaborative approach helps us maintain continuity, resilience, and focus in a dynamic environment.

In this role, you will contribute to strengthening both the information security maturity and culture within DNV Energy Systems by working closely with internal stakeholders, colleagues across other DNV Business Areas, and, when relevant, external partners. Your objective is not only to identify risks and report on compliance but to actively contribute to resolving issues - by either offering direct support or by facilitating connections to ensure effective and timely outcomes. A customer-oriented mindset and strong interpersonal skills are therefore essential.

Your work will span advisory and operational tasks, including security reviews, audits, performance monitoring, and project delivery. You will also present results and insights to both leadership and peers. Most of the work will be conducted virtually, with regular in-person attendance at your local office expected. Flexibility is required to collaborate across time zones, with some international travel required, although limited in line with DNV’s sustainability commitments.

Responsibilities

The successful candidate will be inventive, comfortable working in a quick-turnaround, deadline-driven environment, and adept at managing multiple projects and assignments simultaneously. Responsibilities of the Information Security Specialist will include:

• Supporting the implementation of global and regional systems and improvement plans and contributing ideas to improve information security performance.
• Providing competent and professional information security advice on operational risks to all levels.
• Developing the information security capabilities of the organisation, improving risk awareness and providing specialist support to line management.
• Information security performance monitoring and reporting, including supporting external audits and undertaking audits as part of our internal audit programme.
  
  

• Master’s degree in a relevant discipline.
• Recognized professional information security certification (e.g., CISSP, CISM).
• Minimum 4–5 years of experience in an information security role within a complex, operational business environment.
• Proven ability to contribute to and manage projects across multiple stakeholders and business units.
• Strong communication skills, with the ability to clearly convey complex issues to diverse audiences, including senior leadership.
• Demonstrated ability to work independently while building trust-based relationships across departments and regions.
• ISO 9001 or ISO 27001 auditor qualification is an advantage.
  
  

• Seniority level Not Applicable

• Employment type Full-time

• Job function Information Technology
• Industries Public Safety

Referrals increase your chances of interviewing at DNV by 2x

Zone 1 of Milan, Lombardy, Italy 2 weeks ago

Zone 1 of Milan, Lombardy, Italy 1 month ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Step into a world of endless possibilities, together let’s leave something for the future!

At IIT, we are committed to advancing human-centered Science and Technology to address the most urgent societal challenges of our era. We foster excellence in both fundamental and applied research, spanning fields such as neuroscience and cognition, humanoid technologies and robotics, artificial intelligence, nanotechnology, and material sciences, offering a truly interdisciplinary scientific experience. Our approach integrates cutting-edge tools and technology, empowering researchers to push the limits of knowledge and innovation. With us, your curiosity will know no bounds.

We are dedicated to providing equal employment opportunities and fostering diversity in all its forms, creating an inclusive environment. We value the unique experiences, knowledge, backgrounds, cultures, and perspectives of our people. By embracing diversity, we believe science can achieve its fullest potential.

THE ROLE

We’re looking for motivated professionals or recent graduates with a strong academic background in cybersecurity, eager to grow in either technical (SOC) or governance (GRC) areas — or both.

You will join a small but strategic team within IIT’s ICT Directorate, contributing to the protection of sensitive infrastructures and supporting national and international compliance efforts.

We’re looking for people who think, who care, and who take initiative.

Even if you are a recent graduate or an early-career professional, or if you have never held a formal security job, you could still be the right person for us if you have done something concrete, such as studying hard, building projects, breaking stuff to learn, contributing to a student CTF team, or simply going deeper than most.

YOU MIGHT BE A GOOD FIT IF :

• You hold (or are completing) a Master’s degree or equivalent in cybersecurity, computer science, engineering, or related fields;
• You’re interested in SOC, incident detection and response, or SIEM systems;
• Or you’re curious about cybersecurity policy, compliance, risk management, and want to work on real frameworks like ISO 27001, NIS2, GDPR;
• You like reasoning about complex systems, security trade-offs, and how to protect organizations in the real world;
• You’ve dabbled in red teaming, OSINT, or CTFs — even better!
• Task-oriented approach characterized by proactivity and flexibility.
• Possess Analytical Reasoning skills and a growth mindset.

We work in a high-trust, high-responsibility team, tackling complex problems in cybersecurity, compliance, and research infrastructure.

We need people who enjoy uncertainty, who grow by experimenting, and who speak up when they think something could be better.

COMPENSATION PACKAGE

• A yearly gross salary ranging approximately between 40,000 and 50,000 euros, depending on seniority and experience, plus a bonus option in a range between 15% and 20% of the real salary.
• Private health care coverage (depending on your role and contract).
• Wide range of staff discounts.
• Flexible work arrangements: up to 10 days per month of remote work (on request) to support work-life balance.
• Candidates from abroad or Italian citizens who permanently work abroad and meet specific requirements, may be entitled to a deduction from taxable income of up to 90% from 6 to 13 years.

HOW TO APPLY

Please submit your application using the online form, attaching a detailed CV and a motivation letter. Your letter should describe your experience in at least one of the following fields:

• Projects where you have used SIEM or log analysis tools.
• Experience with cybersecurity standards such as ISO 27001 or NIS2, or experience contributing to the implementation of a security policy.

Fill in the form below and send your application.

I have read and accept the privacy policy

I have read and I accept the terms and conditions

J-18808-Ljbffr

Per guidare le iniziative di sicurezza informatica all'interno della Direzione IT, la Luiss è alla ricerca di un Information Security Manager , con una consolidata esperienza in contesti complessi.

L’Information Security Manager sarà responsabile di garantire la sicurezza delle informazioni, la conformità alle normative vigenti e l’adozione delle best practice di riferimento in ambito di cybersecurity.

Principali attività e responsabilità

1. Definire e seguire l’implementazione delle strategie di sicurezza delle informazioni, garantendone riservatezza, integrità e disponibilità.
2. Definire la strategia di Business Continuity e di Disaster Recovery, coordinando le attività di sviluppo dei relativi piani.
3. Individuare le migliori soluzioni tecnologiche (prodotti e servizi) ed organizzative, per elevare i livelli di protezione degli asset IT e ridurre il rischio cyber.
4. Organizzare le attività di monitoraggio continuo delle minacce alla sicurezza informatica, adottando misure proattive e preventive, per mitigare in maniera efficace i rischi cyber.
5. Definire, attuare ed aggiornare il Piano di gestione del rischio cyber, individuando le opportune azioni per mitigare il rischio, minimizzare gli impatti e ridurre le vulnerabilità.
6. Gestire gli incidenti di sicurezza informatica e coordinare le risposte agli attacchi, in conformità con le policy di Ateneo e la normativa vigente.
7. Definire il budget necessario per implementare le iniziative previste, monitorare e controllare la spesa in ambito cyber.
8. Garantire la sicurezza delle infrastrutture IT e delle applicazioni utilizzate.
9. Condurre assessment ed audit di sicurezza periodici, sia interni che verso fornitori ed outsourcer, valutandone il rischio cyber ed individuando le relative remediation.
10. Promuovere iniziative di formazione e sensibilizzazione del personale, per lo sviluppo di competenze in ambito di sicurezza delle informazioni.
11. Definire e monitorare l’attuazione di policy, processi e procedure in ambito cyber.
12. Garantire la conformità con le normative nazionali e internazionali in materia di sicurezza delle informazioni.

Requisiti necessari

• Laurea Magistrale in Informatica o discipline affini.
• Ottima conoscenza della lingua inglese, necessariamente con esperienze di studio e / o lavoro all’estero.
• Esperienza comprovata di almeno 3 anni in ruoli di responsabilità in ambito della sicurezza delle informazioni, preferibilmente in contesti strutturati.
• Certificazione Lead Auditor ISO 27001.
• Conoscenza approfondita delle normative e delle best practice di sicurezza informatica, nazionali ed internazionali, in particolare della Direttiva NIS 2.

Soft skills

• Attitudine al problem solving, analytical thinking e decision-making.
• Eccellenti capacità comunicative e relazionali.

Il presente annuncio è rivolto ad ambo i sessi, ai sensi delle Leggi 903 / 77 e 125 / 91 e a persone di ogni età e di ogni nazionalità ai sensi dei D. Lgs 215 / 03 e 216 / 03.

Si prega di consultare l’informativa sul trattamento dei dati personali accedendo alla seguente pagina :

Se ne conferma la presa visione al momento dell’invio della candidatura.