Information Security Specialist

Our Company About the Role We are looking for an experienced and skilled Information Security Specialist to develop, implement and check the information security strategy for our company. TheInformation Security Specialistwill provide leadership and direction for the development and implementation of security policies, procedures, and standards that align with the company’s overall goals and objectives. This role requires a good level of independence e strategic thinking – under the Information Security Officer (ISO) authority – and the ability to work effectively with multiple stakeholders across the organization. The candidate should have a solid understanding of on-prem and multi-cloud environments and should be able to provide guidance to the organization on how to secure data and applications. To be a successful Information Security Specialist, you should have a comprehensive knowledge of possible IT and device security risks and mitigate them. Ultimately, an Information Security Specialist should prepare the company, with the support of the Information Security Team (IST), for potential cyber-attacks and have a keen interest in business development, with a dedicated organizational structure Responsibilities Develop and implement together the IST a comprehensive information security program that aligns with the organization’s overall goals and objectives Establish and maintain security policies, procedures, and standards that are in compliance with industry best practices and regulatory requirements Identify, assess, and mitigate information security risks to the organization Stay current with emerging security threats and trends, and implement appropriate controls to protect the organization Communicate effectively with CISO and collaborate with every single resource of IST and its providers Manage relationships with external vendors and partners to ensure the organization’s information security needs are met Oversee incident response and disaster recovery planning and execution Review together the IST security designs for applications and infrastructure deployed on-prem and in the cloud Ensure compliance with regulatory requirements for data stored in the cloud (including but non limited to ISO 27001) Provide guidance on cloud security best practices and standards Co-work for the continuous monitor and review on-prem and cloud environments for potential security threats Investigate and determine – supporting CISO’s role – the cause of internal and external data breaches and suggesting appropriate corrective action Present regular feedback reports on IT and device network security to the CISO Manage the information security of company documents and process above all those connected with the R&D Department; Requirements MD in computer science, information technology, or a related field. An MBA is preferable, with a full marks path 4 years’ experience in risk management and information security Well structured understanding of scripting and source code programming languages, Node, .NET Core, and Java Knowledge of main information security management frameworks, such as ISO/IEC 27001 and NIST Expertise in cloud security best practices, standards and technologies, specifically Office365, AWS, Azure, and Google Cloud Experience with incident response, disaster recovery, and risk management Valid understanding of current legislation and regulations relevant to our organization First-rate written and verbal communication skills High English Level in addiction to Italian Passion for fitness, training & sports Results driven, positive problem solver and flexible on how to manage unpredictable events Strong “soft skills” for working in eterogenuos teams and under different hierarchies Demonstrable references Technogym is an Equal Opportunity Employer Technogym is an equal opportunities employer. We welcome applications from all members of society irrespective of age, sex, sexual orientation, race, religion or belief. Discover your potential with a career at Technogym, where work means loving what you do, taking on challenges, learning from others, sharing a vision and making it come true –